Wireless Intrusion Detection System
The guide provides simple configuration instructions for enabling a Wireless Intrusion Detection System (WIDS) profile on FortiAP.
To enable a WIDS profile on the FortiWiFi and FortiAP GUI:
- Create a WIDS profile:
- In FortiWiFi and FortiAP, go to WiFi & Switch Controller > WIDS Profiles. Click Create New.
- In the Name field, enter the desired name.
- Under Intrusion Detection Settings, enable all intrusion types as desired.
- Complete the configuration, then click OK.
- Select the WIDS profile for the managed FortiAP:
- Go to WiFi & Switch Controller > FortiAP Profiles.
- Select the FortiAP profile applied to the managed FortiAP, then click Edit.
- Enable WIDS Profile. Select the profile created in step 1. Click OK.
To enable a WIDS profile using the FortiWiFi and FortiAP CLI:
config wireless-controller wtp-profile
edit "example-FAP-profile"
config platform
set type <FAP-model-number>
end
set handoff-sta-thresh 55
set ap-country US
config radio-1
set band 802.11n
set wids-profile "example-wids-profile"
set vap-all disable
end
config radio-2
set band 802.11ac
set wids-profile "example-wids-profile"
set vap-all disable
end
next
end