Home
Support
Product Support
Cloud and Systems Management
Cisco Catalyst Center
End-User Guides

Cisco Catalyst Center Rogue Management and aWIPS Application Quick Start Guide, Release 3.2.x

Releases

3.2.x
3.1.x
2.3.7.x

View all Saved Content

PDF

Is this helpful?

Helpful Unhelpful

Feedback

Thank you for your feedback. Your response has been recorded.

Ask about this document

Cisco Configuration Guide, Release 4.2

Expand all sections

About this content

Catalyst Center Rogue Management and aWIPS Application

Introduction to the Rogue Management and aWIPS application
About Rogue Management
About Advanced Wireless Intrusion Prevention System
Scale information
Basic setup workflow

Install Catalyst Center Rogue Management Application Package

Application management
Download and Install the Rogue Management and aWIPS application package

Monitor the Rogue and aWIPS Dashboard

Access the Rogue Management and aWIPS application
Monitor the Rogue Management and aWIPS dashboard
Monitor network rogue threats
Get rogue AP and rogue client details from the Threat 360° view
Download aWIPS profile forensic capture from the Threat 360° view
View details of all rogue APs on a floor in a floor map
Deploy your device configurations now or later
Preview and deploy your device configurations

aWIPS Profiles

About aWIPS profiles
Create an aWIPS profile configuration workflow
View an aWIPS profile
Assign an aWIPS profile to the network device
Edit an aWIPS profile
Delete an aWIPS profile
Enable or disable aWIPS or aWIPS forensic capture

Rogue AP Containment on Wired and Wireless Networks

Rogue AP Containment overview
Wired rogue AP containment
Wireless Rogue AP Containment
Cisco Rogue AP Containment Actions Compatibility Matrix
View tasks and audit logs of rogue AP containment type

Custom Classification of Rogue APs

About the allowed list workflow
Set up the allowed list workflow
About custom rogue rule creation
Edit a rogue rule
Delete a rogue rule
Create a custom rogue rule
About rogue rule profiles
Edit a rogue rule profile
Delete a rogue rule profile
Create a rogue rule profile
View the allowed access points list
About the allowed vendor list
View vendor rule list information
Edit a vendor rule
Delete a vendor rule
Create a list of allowed vendors

Rogue and aWIPS Event Notifications

Information about the rogue and aWIPS event notifications

Monitor the Rogue and aWIPS Dashboard

Updated: May 5, 2026

Overview

Explains how to access the dashboard, monitor threats, and use the Threat 360 view for analysis.

Access the Rogue Management and aWIPS application

Provides instructions for accessing the Rogue and aWIPS dashboard within Catalyst Center. Explains how to navigate to the application from the Assurance menu and emphasizes that initial configuration is required before the system can be used for threat management.

Monitor the Rogue Management and aWIPS dashboard

Guides you through monitoring the Rogue Management and aWIPS dashboard in Catalyst Center. Details how to enable or disable telemetry subscriptions, analyze threat metrics via various dashlets, and use graphical views to identify and respond to high-priority network threats effectively.

Monitor network rogue threats

Provides instructions for monitoring network rogue threats in Catalyst Center by selecting specific sites and time ranges. Details how to utilize the Threats table to filter, customize, and analyze comprehensive information regarding rogue APs and aWIPS attacks across your network infrastructure.

Get rogue AP and rogue client details from the Threat 360° view

Details the Threat 360° view in Catalyst Center, which provides precise location mapping, threat analysis, and forensic data for rogue APs and clients. Guides you through using the floor map, interpreting map icons, and navigating tabs like Switch Port Detail and Forensic Captures to investigate network security threats.

Download aWIPS profile forensic capture from the Threat 360° view

Provides instructions for downloading forensic capture files of DoS attacks from the Threat 360° view inCatalyst Center. Details the requirements for verifying network connectivity and enabling forensic capture on AP profiles to successfully retrieve and analyze pcap files for security investigations.

View details of all rogue APs on a floor in a floor map

Guides you through viewing rogue AP details on floor maps within Catalyst Center. Explains how to select specific floors, interpret threat level legends, and access detailed information such as MAC addresses, threat types, and containment status for rogue devices detected in your network..

Deploy your device configurations now or later

When you reach the scheduling step of a workflow that supports Visibility and Control of Configurations, use this procedure to deploy your device configurations now or later.

Preview and deploy your device configurations

When you reach the scheduling step of a workflow that supports Visibility and Control of Configurations, use this procedure to preview and deploy your device configurations.

Need help?

Open a support case

(Requires a Cisco Service Contract)

Bias-free language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.