Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 213
  • Last Modified:

Locating a hidden access point in our facilities

We have a new wireless network in our facilities and the access points are detecting a rogue access point in the building. Apparently someone installed a wireless access point in the past with a hidden ssid and no one knew it was there.  Other then a couple of Android apps I've found, is there any way to locate a hidden broadcasting access point that is most likely not connected to the current network , but yet the radio is working and possibly it's trying to serve dhcp.....  We can isolate it to one part of our facilities because of the current access points it's conflicting with show us the area it's in. But there are a lot of places one could be hidden in this building. Is there something that by signal strength or something of that nature that would help us locate this device?
0
holcomb_frank
Asked:
holcomb_frank
3 Solutions
 
IT GuyCommented:
0
 
Don ThomsonCommented:
It sounds like one of your Employees has a Smartphone and has turned on WI-Fi hotspot. That allows you to use your Smartphone to turn on a mini wireless router on the phone

I use this all the time when I'm away from the office and need to access a WiFi signal for my laptop.

If you have access to an android Smartphone, download WifFiAnalyzer it should pick up the Wifi hotspot. Once you have identified the SSID  - change the view type to Signal Strength  and start walking around.

You should also put out a memo to all staff to make sure that when they at work - they should make sure that the WiFi Hotspot on their phone is turned off.

If it happens that the signal is coming from outside your offices, and is not password protected, you can use the WiFi Analyzer program to find where it's coming from and ask the owner to put a password on it.
0
 
Rob WilliamsCommented:
I did an article on locating rogue DHCP servers a while back.  The section on identifying the device may be helpful in determining what device you are looking for, but not where if not physically connected to the network.
http://blog.lan-tech.ca/2012/04/23/rogue-dhcp-servers/
0
 
Craig BeckCommented:
As DTHConsulting said, walking around with a signal meter is probably going to be the fastest way to locate a rogue AP.  NxJNY has done a great job of pointing you at some good tools to help you.

Your APs should be reporting the MAC address of the rogue, so all you need to do is use a WiFi scanning tool to sniff-out the AP.  Remember, negative values are used for signal-strength, so -91dBm is a weak-to-non-existent signal while -39dBm is a strong signal.
0
 
holcomb_frankAuthor Commented:
Well it was never a question of someone's phone working as a hot spot. We had our current wireless network reporting a rogue AP and it had a company name on it so we knew that it was a router placed somewhere in the building. The problem was that no one knew where it was located, and the installer did so not broadcasting the ssid.  I did some research prior to coming to the site here, and I did see the tools mentioned in NxJNY's suggestion, and again in Rob Williams suggestion. And I did try a couple of those tools, but was unsuccessful....Homedale for one.  Eventually, I just started climbing around in the crawl space's looking for power and Ethernet in the same area. I did eventually find a Linksys small business access point tucked away.

Thanks for the suggestions.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Upgrade your Question Security!

Your question, your audience. Choose who sees your identity—and your question—with question security.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now