Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
508
Views
1
Helpful
3
Replies

CSCvv16183 - support of DACL on 9800 WLC platform.

Go to solution
thedamntech
Level 1
Level 1

‎01-12-2024 11:34 AM

I was surprised dACLs just barely got partial support in the C9800 series. The C9800 platform has been out for 4 years. Anyone working with an very old 5508 or any of the newer platforms preceeding the C9800 series had dACLs, fully functioning, including flexconnect.

Flash back to 2012, we were told we can do hreap(flexconnect) with ACS5, no problem. And through the years flex controllers came out, many other wireless technologies, ISE and those worked with centralized security and dACLs, no problem.

What happened to the C9800 that broke the relationship with ISE and centralized security deployment? Is there another solution or is the C9800 platform still playing catchup after 4 years?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Haydn Andrews
VIP Alumni
VIP Alumni

‎01-14-2024 01:34 PM

You could always go down the path of SDA or SGT to make this happen, although not a quick as implementing a dACL would be.

*****Help out other by using the rating system and marking answered questions as "Answered"*****
*** Please rate helpful posts ***

View solution in original post

3 Replies 3

Go to solution
marce1000
VIP
VIP

‎01-12-2024 11:23 PM

 

 - Ref : https://www.cisco.com/c/en/us/support/docs/wireless/catalyst-9800-series-wireless-controllers/214855-ios-xe-wireless-feature-list-per-release.html
  >...

Dublin - 17.10.1

  • Downloadable ACL (dACL) support for central switched deployments. No support for dACLs in Flexconnect deployment or on EWC-AP platforms

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

Go to solution
Haydn Andrews
VIP Alumni
VIP Alumni

‎01-14-2024 01:34 PM

You could always go down the path of SDA or SGT to make this happen, although not a quick as implementing a dACL would be.

*****Help out other by using the rating system and marking answered questions as "Answered"*****
*** Please rate helpful posts ***

Go to solution
thedamntech
Level 1
Level 1
In response to Haydn Andrews

‎01-16-2024 08:46 AM

Ok, that makes sense they want people going SDA, which has been a bit of a slog so far. I was thrown off because there was a point in time Cisco was pushing FlexConnect hard, and it simply worked perfectly for us. However, there are some caveats, as with all things, when migrating. Thank you, for this suggestion.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card