Devices fail to honor compliance policy updates.

Cause

You might encounter this issue if the device compliance change event fails to reach the Tunnel server.

Solution

  1. In the Workspace ONE UEM console, navigate to All Settings > System > Advanced > Site Url.
    1. Verify the AirWatch Cloud Messaging connection.
  2. Perform the Tunnel test connection from the Tunnel configuration page.
  3. From the Tunnel server, verify the service status by running the following commands:
    1. systemctl status vpnd.
    2. systemctl status vpnreportd.
      Note: If you have multiple AirWatch Cloud Messaging that uses implicit clustering, configure the load balancer to use the cookie persistence that routes the AirWatch Cloud Messaging traffic.