Fortinet black logo

Release Notes

Home FortiADC 7.1.0 Release Notes

Known issues

7.1.0
7.4.3
7.4.2
7.4.1
7.4.0
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.1.4
7.1.3
7.1.2
7.1.1
7.1.0
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
6.2.0
6.1.6
6.1.5
6.1.4
6.1.3
6.1.2
6.1.1
6.1.0
6.0.4
6.0.3
6.0.2
6.0.1
6.0.0
5.4.4
5.4.4
5.4.3
5.4.2
5.4.1
5.4.0
5.3.7
5.3.6
5.3.5
5.3.4
5.3.3
5.3.2
5.3.1
5.3.0
5.2.8
5.2.7
5.2.6
5.2.5
5.2.4
5.2.3
5.2.2
5.2.1
5.2.0
5.1.7
5.1.6
5.1.5
5.1.4
5.1.3
5.1.2
5.1.1
5.1.0
5.0.4
5.0.3
5.0.2
5.0.1
5.0.0
4.8.8
4.8.7
4.8.6
4.8.5
4.8.4
4.8.3
4.8.2
4.8.1
4.8.0
4.7.4
4.7.3
4.7.2
4.7.1
Copy Link
Copy Doc ID 60bbd930-1844-11ed-9eba-fa163e15d75b:454516
Download PDF

Known issues

This section lists known issues in version FortiADC 7.1.0, but may not be a complete list. For inquiries about particular bugs, please contact Fortinet Customer Service & Support.

Bug ID

Description
0829750 fnginxctld crash based on issue with longer loading time for websites going through FortiADC.
0828572

200D/100F/200F/1000F/2000F/4000F incorrectly uses FortiADC-VM as the CN (Common Name) for the default certificate Subject, which may cause FortiSandbox Cloud connection issues.

This is expected to be fixed in the next release.
0827447 miglogd crash related to FortiAnalyzer.

0826540

In the GUI, failed to append child list when configuring Automation. This results when an alert type has reached the maximum entry capacity.

The current maximum is 256 entries for each alert type, as categorized in the backend CLI:

  • config system alert-policy

  • config system alert-action

  • config system alert

  • config system alert-email

  • config system alert-snmp-trap

  • config system alert-script

  • config system alert-webhook

  • config system alert-fortigate-ip-ban

  • config system alert-syslog

config system alert-policy configurations are often composed of multiple config system alert entries, making the config system alert most likely to exceed the entry capacity. Please use show full-configuration system alert for details in the CLI.

Workaround:

After figuring out which alert type has exceeded the 256 entry capacity from the backend CLI, remove any unused automation alerts from the GUI.
0824203 There are some defects with the Country and phone number on the local user page and system Administrator page.
0823021 Timeout issue when creating a 2FA-local user and 2FA Administrator.

0822565

CLI and GUI response is not the same when creating a 2FA-local user.

0822356

New mysqld (MariaDB 10.6.7) will crash when it meets a corrupted database table. This behavior did not occur in the previous version because the corrupted database table would have been ignored.

Workaround: Run the CLI command execute log rebuild to rebuild the Database.

0820293

FortiADC shows "bind failed(30002372)" warning during automation test.

0819547

When importing the automated local certificate through GUI, if the internet connection is down or too slow, it will cause the certificate generation to fail due to server timeout. It may take several seconds to receive the timeout error, during which the GUI will be non-responsive.

0816798

In an HA environment, if you are using a predefined automation configuration, resetting the configuration through the GUI (using the reset button) or unsetting comments through CLI will cause the HA synchronization to fail whenever a device reboots and rejoins the cluster.

Using the GUI reset button resets the predefined configuration values to the predefined default values, all except the comments value which is set to the default value on the backend. For example, if using the HA predefined configuration, the reset will result in set comments HAset comments comments. When a new device (or a rebooted device) joins the HA cluster, the synchronization will fail due to the mismatched set comments value between the device that has the predefined default value (set comments HA) and the reset device that has the default value (set comments comments).

In the CLI, if set comments in the predefined configuration has been unset and is the default value set comments comments, then the same HA synchronization issue will occur.

Workaround: In the CLI, edit set comments to ensure it is not the default value (set comments comments) and it matches the value of the predefined configuration (for example, set comments HA).

0811061

When using CLI command conf-sync to get a configuration file more than 10 MB, the operation may get stuck showing only "auth access", unable to retreive the file.

0798862

Health Check does not support RFC 7919 yet.

0782143

From the GUI, if the FortiAnalyzer is cloned, the OFTP connection of the original configuration will disconnect, with debug showing it has stopped the connection to the FortiAnalyzer server.
Previous
Next

Known issues

This section lists known issues in version FortiADC 7.1.0, but may not be a complete list. For inquiries about particular bugs, please contact Fortinet Customer Service & Support.

Bug ID

Description
0829750 fnginxctld crash based on issue with longer loading time for websites going through FortiADC.
0828572

200D/100F/200F/1000F/2000F/4000F incorrectly uses FortiADC-VM as the CN (Common Name) for the default certificate Subject, which may cause FortiSandbox Cloud connection issues.

This is expected to be fixed in the next release.
0827447 miglogd crash related to FortiAnalyzer.

0826540

In the GUI, failed to append child list when configuring Automation. This results when an alert type has reached the maximum entry capacity.

The current maximum is 256 entries for each alert type, as categorized in the backend CLI:

  • config system alert-policy

  • config system alert-action

  • config system alert

  • config system alert-email

  • config system alert-snmp-trap

  • config system alert-script

  • config system alert-webhook

  • config system alert-fortigate-ip-ban

  • config system alert-syslog

config system alert-policy configurations are often composed of multiple config system alert entries, making the config system alert most likely to exceed the entry capacity. Please use show full-configuration system alert for details in the CLI.

Workaround:

After figuring out which alert type has exceeded the 256 entry capacity from the backend CLI, remove any unused automation alerts from the GUI.
0824203 There are some defects with the Country and phone number on the local user page and system Administrator page.
0823021 Timeout issue when creating a 2FA-local user and 2FA Administrator.

0822565

CLI and GUI response is not the same when creating a 2FA-local user.

0822356

New mysqld (MariaDB 10.6.7) will crash when it meets a corrupted database table. This behavior did not occur in the previous version because the corrupted database table would have been ignored.

Workaround: Run the CLI command execute log rebuild to rebuild the Database.

0820293

FortiADC shows "bind failed(30002372)" warning during automation test.

0819547

When importing the automated local certificate through GUI, if the internet connection is down or too slow, it will cause the certificate generation to fail due to server timeout. It may take several seconds to receive the timeout error, during which the GUI will be non-responsive.

0816798

In an HA environment, if you are using a predefined automation configuration, resetting the configuration through the GUI (using the reset button) or unsetting comments through CLI will cause the HA synchronization to fail whenever a device reboots and rejoins the cluster.

Using the GUI reset button resets the predefined configuration values to the predefined default values, all except the comments value which is set to the default value on the backend. For example, if using the HA predefined configuration, the reset will result in set comments HAset comments comments. When a new device (or a rebooted device) joins the HA cluster, the synchronization will fail due to the mismatched set comments value between the device that has the predefined default value (set comments HA) and the reset device that has the default value (set comments comments).

In the CLI, if set comments in the predefined configuration has been unset and is the default value set comments comments, then the same HA synchronization issue will occur.

Workaround: In the CLI, edit set comments to ensure it is not the default value (set comments comments) and it matches the value of the predefined configuration (for example, set comments HA).

0811061

When using CLI command conf-sync to get a configuration file more than 10 MB, the operation may get stuck showing only "auth access", unable to retreive the file.

0798862

Health Check does not support RFC 7919 yet.

0782143

From the GUI, if the FortiAnalyzer is cloned, the OFTP connection of the original configuration will disconnect, with debug showing it has stopped the connection to the FortiAnalyzer server.
Previous
Next