Microsoft Edge fails to connect with Endpoint Protection Web Security Service Integration enabled
Last Updated March 04, 2019
Microsoft's Edge browser fails to connect on Windows 8 and newer computers when the Symantec Endpoint Protection (SEP) client is configured to use Web Security Service (WSS) Traffic Redirection (WTR).
The SEP client's WTR functionality configures the client to send all Web traffic on port 443, and 80 to a local proxy service listening on port 2968. This traffic is then forwarded to the WSS infrastructure.
Edge runs as a Windows modern app different from IE and thus it is has network isolation by default for security reasons.
Create an exemption to allow the Work or school account Windows App to connect to localhost.
Close any open instances of the Edge browser, and error messages related to the browser.
Issue the following command from an elevated command-prompt: Build 10158, and newer: CheckNetIsolation.exe LoopbackExempt -a -n=Microsoft.MicrosoftEdge_8wekyb3d8bbwe Previous builds: CheckNetIsolation LoopbackExempt -a -n=Microsoft.Windows.Spartan_cw5n1h2txyewy
Confirm the application exemption applied correctly:
Issue the following command from an elevated command-prompt: checknetisolation.exe LoopbackExempt -s
The list of exempted applications will include the following on a successful attempt: Build 10158 and newer: Name: Microsoft.MicrosoftEdge_8wekyb3d8bbwe SID: S-1-15-2-3624051433-2125758914-1423191267-1740899205-1073925389-3782572162-737981194