Support extension information of wtp, vap and station statistics.

Support hexadecimal values of EddyStone namespace ID and instance ID in Bluetooth low energy (BLE) profile.

FAP-U LAN port (in WAN-LAN mode) supports dynamic VLAN assignment with RADIUS MAC-address authentication.

802.11ax FAP-U models in single-5G mode support dedicated dual-band scanning on the third radio.

Support Service Assurance Manager (SAM) mode.

FortiPresence PUSH API update: FortiAP sends its region map information to FortiPresence server for positioning wireless stations.

FAP-U234F and FAP-U432F support indoor/outdoor country revision as configured from FortiGate.

Note: FortiGate needs to run FortiOS 7.2.0 and later.

Improve connectivity to FortiGuard server for UTM update and query services.

Support FQDN address of FortiPresence server

From WiFi Controller wtp-profile configuration, FortiAP WAN port can be set as an 802.1X supplicant to authenticate to local infrastructure network using EAP protocols.

Support DHCP address enforcement: Wireless clients must complete the DHCP process and obtain an IP address through FAP-U SSID; otherwise they are denied to connect.

Support downloading firmware image from FortiLAN Cloud over HTTPS.

Support the Federal Information Processing Standard (FIPS) validation.

The region code of Israel is changed from "I" to "E" (for 802.11ax FAP-U models only); The default country of region "I" is set as Morocco.

Support presult command output for troubleshooting uniformity; Add presult output to the fap-tech command.

When WiFi Controller won't overwrite FortiAP WAN port authentication, FortiAP can configure its own 802.1X supplicant locally.

New cfg variables:

Diagnose command:

cw_diag -c wan1x

cw_diag -c wan1x
 [show-ca-cert|show-client-cert|del-all|del-ca-cert|del-client-cert|del-private-key|[<get-ca-cert|get-client-cert|get-private-key>
 <TFTP server IP> <file name>]]