Global Secure Access - Deleted Appliction still applies (and cannot be recreated)

Hello everyone,

we currently face an issue with Global Secure Access - Private Access - Enterprise applications.

An admin has delete and tried to recreate an enterprise application. When he tried added the ip address and the port he got an error, that this rule is already within another app. The link led to an "empty" app. It was found that under "app registrations" the previously deleted applicaiton is still there and it was permanently deleted.

However the problem stays.

If we try a connection to the ip address and port which was specified in the deleted policy, we can see an error in the GSA Event Log on the Client:

Could not authenticate using a cached token... Error: 9, Message: IncorrectConfiguration {"Description":"V2Error: invalid_resource AADSTS500011: The resource principal named <id of the deleted application> was not found in the tenant named <ourTenant>. This can happen if the application has not been installed by the administrator of the tenant or consented to by any user in the tenant. You might have sent your authentication request to the wrong tenant.

Unfortunatly, since the application is not permanently deleted, it cannot be restored.

We tried to completly disable and reenable private access (in Entra!) but this did not fix the problem. For some reason the deleted policy is stuck in GSA and we have no idea how to get it out.