Hello all,
I'm making some tests on Connection Security Rules on Win 7 and experience a problem:
1. I configured a policy from GPO with connection security rule which "Requires inbound and outbound" kerberos authentication between 2 peers (Client A and Client B).
2. I tried to make a Remote Desktop connection from Client A to Client B with success (Main mode negotiation with IKEv2 established)
3. I added another rule to the policy, and then made an "gpupdate /force" in Client A, and my RDP connection dropped immediatly.
After some trobuleshooting i saw that when i add or change the connection security rules, the "gpupdate" action makes windows firewall to delete all the established SA's and create them again after applying the new policy from GPO.
There is any way to refresh the Connection Security Rules policy without deleting the SA's ? or maybe another resoultion for this problem ?