Legal Disclaimer: The resource assets in this website may include abbreviated and/or legacy terminology for HPE Aruba Networking products. See www.arubanetworks.com for current and complete HPE Aruba Networking product lines and names.
Generating Alerts for Security Events
HPE Aruba Networking Central supports configuring alerts for IDS Intrusion Detection System. IDS monitors a network or systems for malicious activity or policy violations and reports its findings to the management system deployed in the network. events.
For IDS events, you can generate alerts for infrastructure attacks and client attacks.
The following animation shows how to generate the alerts:
To generate alerts, complete the following steps:
- In the WebUI, use the filter to select .
- Under , click .
The page is displayed.
- In the page, click the icon.
The is displayed.
- Select tab to display the AP dashboard. HPE Aruba Networking Central supports three alert types for identifying interfering devices:
- Rogue AP Detected
- Infrastructure Attacks Detected
- Client Attack Detected
- Select an alert and click to enable the alert with default settings. To configure alert parameters, click the alert tile (anywhere within the rectangular box) and do the following:
- —Set the severity. The available options are Critical, Major, Minor, and Warning.
For a few alerts, you can configure a threshold value for one or more alert severities. To set the threshold value, select the alert and in the text box, enter the value. The alert triggers when one of the threshold values exceed the duration.
- —(Optional) You can restrict the scope of an alert by setting one or more of the following parameters:
- —Select a group to limit the alert to a specific group.
- —Select a label to limit the alert to a specific label.
- —Select a site to limit the alert to a specific site.
- —Select the check box and enter an email address to receive notifications when an alert is generated. You can enter multiple email addresses, separate each value with a comma.
- —Select the check box to receive the streaming notifications when an alert is generated.
- —Select the check box and select the Webhook from the drop-down list. For more information, see Webhooks.
- —Select the check box to receive the Syslog notifications when an alert is generated.
- Click .
- —Set the severity. The available options are Critical, Major, Minor, and Warning.
For more information on how to configure Alerts, see Configuring Alerts.
