Downloadable ACL

A Downloadable Access Control List (dACL) is a security rule dynamically downloaded from a central server to a network device (like a switch or router) at the exact moment a user or device connects.

Instead of manually typing lists of rules onto every single switch in a building, you store them in one central place—like Cisco ISE. When someone plugs in their laptop, the switch asks the server, "What can this person do?" and then downloads the specific rules for that user session.