Cisco Catalyst Center Rogue Management and aWIPS Application Quick Start Guide, Release 3.1.x

PDF

Create a custom rogue rule

Updated: December 15, 2025

Want to summarize with AI?

Log in

Overview

test

You can create a rule with specific conditions and associate this rule to a rule profile.

Procedure

1.

From the main menu, choose Workflows > Create a Rogue Rule.
2.

In the Create a Rogue Rule window, click Get Started.
3.

In the Rule Name field, enter a unique name for the rule.

While creating new rogue rules, you cannot enter the rogue rule names that were deleted earlier.
4.

In the Description field, enter a description for the rule.
5.

Click Next.
6.

In the Create Rogue Rule window, select one of these threat level options: High, Potential, and Informational.
7.

(Optional) Check the Enable Auto-Containment check box to automatically contain the rogue rule.

Note

  • Cisco Catalyst 9800 Series Wireless Controllers have a limit of only 625 configurations for rogue containment at a time. After the limit is reached, containment won't work for any new rogue on those devices.

  • Automatic containment is only applicable to the rogue rules classified with the High threat level. By default, Enable Auto-containment is disabled for the Potential and Informational threat levels.
8.

From the Match drop-down list, choose either All to match all the conditions, or Any to match your choice of conditions.
9.

From the Add Condition drop-down list, choose the rule conditions.

You can add multiple conditions to a rule. The available rule conditions are: SSID, RSSI, Encryption Condition, , and Minimum Rogue Client Count.
10.

Click Next.
11.

(Optional) To assign this rule to an existing rule profile, click Yes in the Do you want to assign this rule to a rule profile? dialog box.

Note

Rogue rules must be assigned to a rule profile. A rogue rule cannot function on its own.
12.

In the Available rule profiles table, check the check box next to the corresponding profile name, and click Next.

You can select one or more rule profiles.

Note

You cannot assign more than five rules to a rule profile.
13.

In the confirmation dialog box, click Proceed.

The new rule is set to the lowest priority. You can edit the rule profile to change the priority.

Note

After the rogue rule is created, you cannot use the same rogue rule name to create another rogue rule.
14.

Review the rogue rule configuration in the Summary window.

Note

The existing classification based on earlier rules does not change, even if the new rule conditions apply. The updated rules affect only new data classification.
15.

(Optional) To create another rogue rule, click the Create Another Rogue Rule button and repeat the preceding steps in this procedure.
16.

(Optional) To view the created rogue rules, click View all Rogue Rules and Profiles.

The Rogue Rules tab lists all the rogue rules that have been created.

You can also view the created rogue rules by clicking the menu icon and choosing Assurance > Rogue and aWIPS > Rules > Rogue Rules.