You can configure UAM to deliver access control lists (ACL) to access devices for controlling user access to network resources. An access ACL is a set of permit or deny rules. Each rule contains a set of criteria for matching packets. The access device permits packets that match any permit rule to pass through, and drops packets that match any deny rule. The matching criteria available with UAM includes the destination IP address, protocol, and service port in the IPv4 header. After a user passes identity authentication, UAM delivers the access ACL for the Access Policy that the user is using to the access device.