TA fails to download and apply a policy if the connection to the handler is lost or interrupted. TA performs its database transaction rollback, which then fails and applies a partially downloaded policy instead of rolling back to the last known policy.

Example: If there's a large ENS Firewall policy and the agent fails to download all the policy objects, you see errors similar to the following in the masvc_<computer>.log:

masvc(5096.5508) policy.Error: po_id: 2103 pso_id: 68290, pso validation failed
masvc(5096.5508) policy.Error: po_id: 2103 po validation failed
masvc(5096.5508) policy.Error: Assignment validation failed obj_id: 2103 product: ENDP_FW_1070 method: (null) param: (null)
masvc(5096.5508) policy.Error: Policy service start db validation failed, generating event for EPOAGENT3000
masvc(5104.5924) policy.Error: po_id: 2103 pso_id: 68290, pso validation failed
masvc(5104.5924) policy.Error: po_id: 2103 po validation failed
masvc(5104.5924) policy.Error: Assignment validation failed obj_id: 2103 product: ENDP_FW_1070 method: (null) param: (null)
masvc(5104.5924) policy.Error: Policy service start db validation failed, generating event for EPOAGENT3000

masvc(5456.5908) network.Notice: URL(https://0.0.0.0:443/policy/po.2103.ed16b6732eab48377ea8d18651a1fcea8511a0e0cb161axxxxxx) request failed with curl error <56>, response code <200>, http connect code 0
masvc(5456.5908) policy.Error: Length doesnot matches
masvc(5456.5908) policy.Error: Due to Hash Validation failure, calling policy handler stop rc - <1612>
masvc(5456.5908) sqlite.Error: mapolicy.db:ROLLBACK TRANSACTION:1

This error causes the default ENS Firewall to stop all policy objects from being applied, where it might cause network interruption until the agent can successfully retrieve the entire set of policy objects and apply them to the system on the next communication.