Which authorization method is the Cisco best practice to allow endpoints access to the Apple App store or Google Play store with Cisco WLC software version 7.6 or newer?
A. dACL
B. DNS ACL
C. DNS ACL defined in Cisco ISE
D. redirect ACL
Which authorization method is the Cisco best practice to allow endpoints access to the Apple App store or Google Play store with Cisco WLC software version 7.6 or newer?
A. dACL
B. DNS ACL
C. DNS ACL defined in Cisco ISE
D. redirect ACL
Correect answer is D. how DNS ACL allow access to Play Store or App Store?
The DNS ACLs added to the WLC in version 7.6 work in an interesting way. The wireless access
point (WAP) itself performs DNS snooping to see the response that is sent to the endpoint. The WAP
does not have to examine all DNS requests and responses; instead, it is configured to consider only
certain domain names as “interesting.”
create two authorization profiles. One of the authorization profiles
is used for Android to accommodate a different ACL that permits Android devices to reach the
Google Play Store. The second profile is used for all other applicable OSes that do not need to reach
Google’s Play Store. Do the following:
Step 1. Navigate to Policy > Policy Elements > Results > Authorization > Authorization
Profiles.
Step 2. Add a new authorization profile, named Android NSP.
Step 3. Select Web Redirection (CWA, DRW, MDM, NSP, CPP).
Step 4. From the drop-down, select Native Supplicant Provisioning.
Step 5. Enter the Android-Marketplace in the ACL field.
Step 6. Click Submit.