Technical Tip: Error on Communication Control in Console 'Policy enforcement malfunctions...'
| Description | This article describes what the 'Policy enforcement' Error means. |
| Scope | FortiEDR |
| Solution | When logging into the management console and error appears on Communication Control.
When the cursor is hovered over it user will see the following message:
'Policy enforcement malfunctions due to a large amount of non-default decisions. Modify or disable Communication Control rules'
This error means the communication control policy puts too many applications in deny when the policy is by default set to allow, or too many applications in allow when the policy is by default set to deny. This is probably not the desired behavior and can also cause performance issues in collectors, which is why the system protects against this case and this error appears.
Review polices for the following: 'Reputation is less than or equal to 3' is too wide and covers too many applications and should be adjusted. |