Thanks Eric... We just upgraded from 7.4.100.60 to 7.4.110.0. We have either 1142's or the newer 2600's with Clean Air.
I'll take a look at the DNS ACL's...might be just what we need. Thanks Kyle -----Original Message----- From: Cisco Clean Access Users and Administrators [mailto:[email protected]] On Behalf Of Eric Kenny Sent: Thursday, August 8, 2013 7:27 AM To: [email protected] Subject: Re: NAC -> ISE Posture Remediation Hi Kyle, What version of wireless controller code are you running? 7.4 introduces some BYOD enhancements such as DNS based ACLs for this exact purpose. One caveat, however, is that it will not work with older access points such as 1242 series, even though they are supported by the controller code. The DNS ACL needs to be configured from CLI. Eric J. Kenny Network & Security Engineer Marist College 3399 North Rd. Poughkeepsie, NY 12601 845.575.3820
