Updated on 2024-01-25 GMT+08:00

ALM-3276800062 Tamper attack notify

Description

WLAN/4/STA_INVALID_CERT_ATTACK: OID [OID] User with invalid certificate inbreak network notify.(APMAC=[OPAQUE],APMAC=[OPAQUE],RadioID=[INTEGER],StaMac=[OPAQUE],APName=[OCTET],StaAssocBssid=[OPAQUE],Ssid=[OCTET], APID=[INTEGER])

A user with an invalid certificate accessed the network.

Attribute

Alarm ID

Alarm Severity

Alarm Type

3276800062

Warning

Equipment alarm

Parameters

Name

Meaning

OID

Indicates the MIB object ID of the alarm.

APMAC

Indicates the MAC address of an AP.

RadioID

Indicates the radio ID.

StaMac

Indicates the MAC address of a STA, which identifies the STA and functions as the index for querying information associated with the STA.

APName

Indicates the AP name.

StaAssocBssid

Indicates the BSSID associated with the STA.

Ssid

Indicates the SSID associated with the STA.

APID

Indicates the AP ID.

Impact on the System

STAs cannot go online.

Possible Causes

A user with an invalid WAPI certificate accessed the network.

Procedure

  1. Run the display wlan wapi certificate file-name file-name command to check whether the WAPI certificate is correct.

    • If so, go to Step 3.
    • If not, go to Step 2.

  2. Run the wapi import certificate { ac | asu | issuer } format pkcs12 file-name file-name password password or wapi import certificate { ac | asu | issuer } format pem file-name file-name command to import a correct WAPI certificate. Check whether the alarm persists.

    • If so, go to Step 3.
    • If not, go to Step 4.

  3. Collect alarm messages, log messages, and configurations, and then contact the technical support personnel.
  4. End.

Related Information

None