After receiving an alert regarding a rogue AP, a network engineer logs into Cisco Prime and looks at the floor map where the AP that detected the rogue is located.
The map is synchronized with a mobility services engine that determines the rogue device is actually inside the campus.
The engineer determines the rogue to be a security threat and decides to stop it from broadcasting inside the enterprise wireless network.
What is the fastest way to disable the rogue?
A. Go to the location the rogue device is indicated to be and disable the power.
B. Create an SSID on WLAN controller resembling the SSID if the rogue to spiif it and disable clients frim connecting to it.
C. Classify the rogue as malicious in Cisco Prime.
D. Update the status if the rogue to Cisco Prime to contained
I guess it would be D… cuz if the rogue AP is INSIDE the campus you can contain it without legal consequences. Instead of that you can change the status to malicious.
I also think D is the correct answer
If RLDP determines that the rogue access point is on the network, the controller marks the rogue state as Threat and classifies it as Malicious automatically, even if no rules are configured. You can then manually contain the rogue
(i.e. update the status to Contain)
https://www.cisco.com/c/en/us/td/docs/wireless/controller/7-4/configuration/guides/consolidated/b_cg74_CONSOLIDATED/b_cg74_CONSOLIDATED_chapter_010111001.html
I would say D
It‘s the fastest way, but not the best since it can have legal consequences.
Just to classify it won‘t do anything with the SSID …