Fortinet Document Library

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

Known Issues

The following issues have been identified in FortiAnalyzer version 6.2.5. For inquires about a particular bug or to report a bug, please contact Fortinet Customer Service & Support.

Device Manager

Bug ID

Description

192706 After FortiAnalyzer added a VDOM, there is no method to disable VDOM mode.
545264 FortiAnalyzer may not show Device Lists.

FortiView

Bug ID

Description

534761 FortiAnalyzer is missing threat entries in FortiView > Top Threats.
542607 Drilldown Applications & Websites > Top Web Sites(FortiClient) always shows No entry found.
590775 FortiAnalyzer should hide Device and Time Frame selection in FortiView Threat Map.
611019 Filter is not working when drilling down from Top Threats.
612361 Compromised hosts do not show IP for hostname resolution.
621271 FortiAnalyzer may show incorrect session duration under SOC > Dial-up > drill down table.

Log View

Bug ID

Description

559466 IOC drill-down may not show log data.
579871 Restoration of logs does not indicate correct timestamps under log browse after an NTP out of sync event.
596229 Log Filter should allow to choose and filter "DNS" log type when Log Forwarding is enabled.
597824 Base64 encoded filename within archived logs sent by FortiSandbox is not decoded on FortiAnalyzer.
608139 Opening compressed FortiClient traffic file on FortiAnalyzer may cause other compressed FortiClient traffic logs fail to open.

640634

Logver field is not added to incoming logs resulting in empty charts.

Others

Bug ID

Description

587489 Analytic data may be removed due to high disk usage.
601383 FortiAnalyzer may become unresponsive when source IPs change often for all endpoints due to DHCP.
602774 "execute backup logs" may trim the device list output if more than 4096 characters.
617669 File parser may keep crashing every few minutes.

635070

OFTP connection between the FortiGate unit and the FortiAnalyzer unit may fail to come up. This affects FGT_92D or lower.

Workaround: On the FortiGate, disable reliable logging.

To disable reliable logging, use the following commands in the CLI console:

config log fortianalyzer setting

set reliable disable

Reports

Bug ID

Description

547496 FortiAnalyzer generates a report for selected device with outputs for all devices.
553495 FortiAnalyzer may prompt Web Server 404 Error when trying to download Report with 100,000 lines.

595715

Modified output profile may not take effect for Email generated report.

643238

User should be able to filter reports based on device name in Reports > Report Definitions > All Reports.

System Settings

Bug ID

Description

593588 GUI should not allow creating a Local Certificate with Certificate Name containing more than 35 characters.
602422 Test User credentials fail when using RADIUS MSCHAPv2 as authentication type.

Known Issues

The following issues have been identified in FortiAnalyzer version 6.2.5. For inquires about a particular bug or to report a bug, please contact Fortinet Customer Service & Support.

Device Manager

Bug ID

Description

192706 After FortiAnalyzer added a VDOM, there is no method to disable VDOM mode.
545264 FortiAnalyzer may not show Device Lists.

FortiView

Bug ID

Description

534761 FortiAnalyzer is missing threat entries in FortiView > Top Threats.
542607 Drilldown Applications & Websites > Top Web Sites(FortiClient) always shows No entry found.
590775 FortiAnalyzer should hide Device and Time Frame selection in FortiView Threat Map.
611019 Filter is not working when drilling down from Top Threats.
612361 Compromised hosts do not show IP for hostname resolution.
621271 FortiAnalyzer may show incorrect session duration under SOC > Dial-up > drill down table.

Log View

Bug ID

Description

559466 IOC drill-down may not show log data.
579871 Restoration of logs does not indicate correct timestamps under log browse after an NTP out of sync event.
596229 Log Filter should allow to choose and filter "DNS" log type when Log Forwarding is enabled.
597824 Base64 encoded filename within archived logs sent by FortiSandbox is not decoded on FortiAnalyzer.
608139 Opening compressed FortiClient traffic file on FortiAnalyzer may cause other compressed FortiClient traffic logs fail to open.

640634

Logver field is not added to incoming logs resulting in empty charts.

Others

Bug ID

Description

587489 Analytic data may be removed due to high disk usage.
601383 FortiAnalyzer may become unresponsive when source IPs change often for all endpoints due to DHCP.
602774 "execute backup logs" may trim the device list output if more than 4096 characters.
617669 File parser may keep crashing every few minutes.

635070

OFTP connection between the FortiGate unit and the FortiAnalyzer unit may fail to come up. This affects FGT_92D or lower.

Workaround: On the FortiGate, disable reliable logging.

To disable reliable logging, use the following commands in the CLI console:

config log fortianalyzer setting

set reliable disable

Reports

Bug ID

Description

547496 FortiAnalyzer generates a report for selected device with outputs for all devices.
553495 FortiAnalyzer may prompt Web Server 404 Error when trying to download Report with 100,000 lines.

595715

Modified output profile may not take effect for Email generated report.

643238

User should be able to filter reports based on device name in Reports > Report Definitions > All Reports.

System Settings

Bug ID

Description

593588 GUI should not allow creating a Local Certificate with Certificate Name containing more than 35 characters.
602422 Test User credentials fail when using RADIUS MSCHAPv2 as authentication type.