We have Win10 workstations (v1909) that are intermittently not applying their group policies properly after a nightly restart. It seems to be centered only around the firewall policy.
After the restart we are noticing that the DOMAIN firewall profile is ON when we have specific group policies that turn that off.
When we see a workstation in this condition we run a "gpupdate /force" and the domain firewall profile gets disabled (per the policy).
Nothing stands out in the Event viewer of the workstations that show why the firewall policy is not being applied properly.
The workstations restart at midnight and we are still seeing the issue at 0530 in the AM so there has been plenty of time for the group policy to refresh.
I am not sure if this is a coincidence or not but we are not seeing this happen on workstations that have Win10 20H2 installed.