I have a crazy situation going on here that, for the life of me, I just can't seem to figure out.
There's a lot of detail and backdrop to the story... so I'll do my best to sum it up.
I'm trying to deploy Cloudflare WARP to a small, AzureAD joined environment. Microsoft Intune MDM is being used to push our the Microsoft Security Baseline policies - which is essentially CIS benchmarks if you are unfamiliar.
So here's the problem: Cloudflare WARP does create a couple of firewall rules to allow itself to communicate. But something is blocking them (my guess is a policy somewhere in Intune) from turning on fully (see screen shot below)
The top box is the old "allow an app through windows defender firewall"... on non AzureAD joined devices which are not controlled by Intune/MDM, that highlighted rule is checked and everything works fine. On my...