Thanks for the info. WorkplaceJoined (SEPLAG/MG) is blocking Cursor via Intune/Entra CSP policies.
Diagnostics for IT:
dsregcmd /status /verbose to check MDM
Event Viewer → DeviceManagement-Enterprise-Diagnostics-Provider for blocking logs
Fix (IT only):
- Intune → Application Control: add Cursor.exe to the allowlist
- Defender Application Control: exclude Cursor.exe
- Purview Endpoint DLP: exclude Cursor.exe (if used)
This isn’t a Cursor bug. It’s SEPLAG/MG corporate policy and it can only be fixed by your IT team.