Client Exclusion
-
Description—When the user fails to authenticate, the controller excludes the client. The client cannot connect to the network until the exclusion timer expires or is manually overridden by the administrator.
Client exclusion detects authentication attempts made by a single device. When the device exceeds a maximum number of failures, that MAC address is not allowed to associate any longer to the controller.
Client exclusion is enabled by default on the master AP allowing it to exclude clients from joining the controller during the above events.
-
Status:
-
Selected—Client exclusion is enabled for all events
-
Unselected—Client exclusion is disabled for all events
-
-
CLI Option—Enable client exclusion for all events by entering this command:
(Cisco Controller) >config wps client-exclusion all enable