Hi @equitax,   In cases where there is an MDM profile locking the ability to factory reset a device, you should be able to still perform a "Hard Reset" by utilizing Recovery Mode on the Android device. From the Recovery Mode menu, I believe you should be able to perform a wipe/factory reset, which will bypass the restriction set by the MDM.   I'd recommend searching online for steps on how to perform the "Hard Reset", and see if that works for you in this situation. ... View more

Hey @luckyphill,   The VPN registry is responsible for providing peer information to all of the MX's participating in the AutoVPN. Since it looks like the connectivity is good to the VPN registry servers, you'll want to focus on the traffic between the two peers that are unable to connect. Specifically, you'll want to make sure that both devices are able to communicate to one another via the public IP and port that is identified on the VPN status page under the 'NAT Type: Friendly' section.   If the devices are behind a NAT, which looks to be the case, you would check and make sure they can reach other via the NAT'd IP and port. For the spoke, it looks like at the very least it is communicating over UDP port 33333 and the Hub is communicating over UDP port 44377. To verify they can communicate, I would start with a packet capture on the active WAN interface of both MX's and confirm there is bidirectional communication between the two. If you're seeing unidirectional traffic on one end, that'll help you identify where the problem might be (routing, traffic filtering, etc.). ... View more

Hello!   I tried it but it wont work.    1) Did a change in restriction where diallowed installing application.  2) Then made a policy rule to allow only Skype application to install.  3) In device detail i see infomration like that   And at then end. I still can easily install any other app like IG, FB messenger, FB, Snapchat etc.    I just dont get it what am i missing.  ... View more