Access Policies are Applied only in new Browser

Type of App: Self-hosted
Access Group: Include - Device Posture - Gateway
Policies: Assign a Group - Access Group defined Above
App Settings: All as default
Policy Behavior: Allows only users enrolled to the Zero Trust by WARP
Time Elapsed after Policy Applied: 24 hours

Issue: Before adding the policy, I was able to reach the site using Chrome Browser. Then I added the policy. Policy was not applied on Chrome so I opened the site in Edge Browser and policy was applied.
I cleaned the cache in the site, in my Chrome, I cleaned cache and Cookies, in the app I clicked on Remove existing tokens, but I’m still able to reach the site. I also deleted the app and added again.

Is any missing configuration or a way to delete this session so policy is applied on previous access?

1 Like

Hello @bryan.ul,

It seems that your Chrome browser may still be caching an old session or a token that bypasses your new policy.

Have you tried opening your application using Chrome in Incognito Mode? If the application is presented with your new policy, it would be able to let us know if Chrome is still holding on to a cookie or session token.

In that case, you would need to clear your Chrome cookies and browser cache and restart Chrome.

CJ313

Hello @bujangnim,

I already see new policy applied in other browsers or incognito as you said, but, I don’t have idea of how to revoke Cookies or Tokens previous to my new Policy, nor how long they will take to expire.

This put my access on risk, because this will make that previous access that I don’t want anymore in my current policy can still have access.