Security

The main purpose of the license is to be able to blacklist MAC addresses and user devices from accessing the wireless
network as their have a large volume of users using their own PDAs and Smart Phones for personal purposes. please guide me how to create a policy to achieve the above goals.

It would be better to specify which devices are allowed on your network. You will never be able to block everything as every thime a user brings a new unknown device to the network, they will be allowed in. If all your allowed devices are a member of your AD domain for example, you can use this as authentication on the network. Another example is to whitelist all KNOWN ALLOWED mac addresses.

Actually I want to allow only employee with the know device that must be registered before accessing my wireless network and restrict all other unknown users and devices. Please give me suitable and easy solution.

So all employees are using BYOD devices?

If you need to decide which devices are allowed in. You could make a record of the MAC address for all the allowed devices to your whitelist and then enter them into your Controller. Another sollution, if you are for example only accepting PC's and you have a Windows Certificate server, you can install certificates on the users laptops and use that for 802.1x authentication

i will consider the first solution because we don't have any certificate or authentication server. but as per your solution that i should make record of all device MAC empolyee devices.,but i don't know how to create a whitelist and also tell me about the  mac-address authentication using internal database please.