Thanks Rafeeq,
your post made me investing more time in the location thing which I was not quite familiar.
What I've checked out is, that the client stores only the policies from the group where it is in (that means all policies that are associated with locations in this group) right?
If so, and it is the behavior that I observe, it will not work.
Our infrastructure needs to have seperate policies for users and administrators independant of if they are inside our networks or outside our networks.
Probably my english made it difficult to understand, but the problem is: Before we give out a laptop, we prepare it inside our networks with an administrator account that is in the SEPM-group "admins". The laptop stores all location dependent Policies from that group.
If we shut down the laptop with the admin account, the policies from the "admins"-group will remain on it.
Users that will then use the laptop beyond our networks without connection to our SEPM, will use the policies from the "admins"-group and that is the problem, users are in the SEPM-Group "users" with a much more limiting policy.
Location awareness leads towards having inside and outside our networks the same policy for users and admins but thats not what we wont to have.
Best Regards
Malte