Going rogue 125 and manufacturing and not intended for general data use. Adding APs can disrupt RF planning, compromise security containment areas, and create a quality-of-service issue if the new users cut into bandwidth for the intended users of the system. Preventing this type of attack is straightforward. In an environment where wireless containment is critical, network managers should turn off auto-adopt and auto-provision of APs and VLANs. All organizations should set alerts that report on new APs and keep a detailed inventory of where every AP is, with its MAC address and physical location. In addition, regulated businesses may also use WIPS and RF sensors throughout their facilities or locations to alert for the presence of new RF in the environment. PCI DSS standards require this, and it's a good practice if a location shouldn't have wireless, to offer assurance that there is, in fact, no wireless: · · · · Disable AP auto-adoption on the controllers. Disable auto-provisioned VLANs on switches. Set specific alerts to notify a network admin of new APs. Use WIPS or RF sensors to monitor for new RF in protected areas. There are organizations that may have a business case for auto-adopt and auto- provisioning, so I wouldn't make the blanket statement that these features should