A
rogue AP is unauthorized wireless — either an employee creating a backdoor or an attacker's evil twin AP to intercept traffic.
Wireless IDS (WIDS) detects rogue APs by monitoring for unauthorized SSIDs/BSSIDs. 802.1X prevents internal rogue APs from accessing the wired network (unauthenticated ports blocked). Regular wireless surveys map your RF environment.