Have an updated UAG SP4 (test) and UAG SP3 prod, we have published a VPN application, after updating test to SP4 VPN users get "You are not authorized to access this application."
Setup is fairly simple:
VPN users is authorized through a security Group, and the only "special" policy is:
Any_Anti_Virus And (eGapComponents_CertifiedEndpoint or (eGapComponents_AttachmentWiper_Installed And eGapComponents_AttachmentWiper_Running) or Corporate_Machine or Privileged_Endpoint)
In the log i can see the users is authenticated but gets the "You are not authorized to access this application.", I have then for testing marked "Authorize all users" then the users get"You are not authorized to access this application." BUT the VPN tunnel is open and works.
Have checked that the settings is the same in Production environment where it works.