My non-privileged account users have an issue where the Windows Firewall keeps turning on. For admins, it is also on and grayed out. Usually doing a gpupdate /sync or gpupdate /force will force the firewall off for non privileged accounts and for admins it will be enabled and set to off. Usually later in the day it turns back on requiring another gpupdate.
As of late, this no longer works for non-priveleged accounts AND for the local admin. The only other bizarre thing is, on those specific computers, even if logged in as local admin, restart is disabled. I am forced to log off, then restart at the login prompt. I checked all of the Domain Controllers and all of them have the FW settings set as "not configured" which means that the domain policy isn't controlling this setting anymore.
So I have no idea why it keeps reverting to on. This is causing major headaches as one of our applications wont work if the windows firewall is on (because non privileged accounts aren't able to make the exception of allowing it)