Resolved issues
The resolved issues listed below may not list every bug that has been corrected with this release. For inquiries about a particular bug, please visit the Fortinet Support website.
Bug ID |
Description |
---|---|
799768 |
Automatic CRL download error with two Identical DN. |
848324 |
Remote LDAP server constantly goes offline. |
676985 |
Unable to import all FortiToken hardware tokens from the same purchase order; need to add them all manually. |
791347 |
Internal server error 500 when viewing RADIUS account sessions, probably caused by the |
796493 |
LDAPS connectivity issue between FortiGate/FortiManager and FortiAuthenticator. |
887276 |
SAML IdP breaks after upgrade from 6.0.2 - 6.0.7 - 6.4.6/6.5.0. |
873972 |
Single group is passed by FortiAuthenticator as IdP when FIDO only authentication is used in SP setting. |
875536 |
User account extension gives |
767935 |
A-P cluster, it forms when configured from the GUI, it does not when configured from the CLI without a restart. |
845700 |
Chained token authentication fails with self service portal. |
856867 |
Captive Portal with iPhone CNA fails when users attempt to register. |
878986 |
FSSO connection error: |
851676 |
HA A/A status error - In sync with anomalies. |
845851 |
Push on FortiAuthenticator portal does not work when the username exceeds 20 characters. |
844295 |
Unable to import Guest users using CSV format in FortiAuthenticator. |
820035 |
After change the FortiAuthenticator IP address unplugging the monitor interface did not trigger HA failover. |
838930 |
No more than 20 realms can be added in the SAML General page under Realms. |
875150 |
Group membership is not replicated to LB when registering over a WiFi portal. |
842389 |
Captive portal automatic login after successful user verification is fails. |
859464 |
SAML - VPN SSL authentication error: |
869341 |
Unable to change remote LDAP user password via REST API. |
890184 |
Allowed host changes in the CLI are not reflected in the GUI. |
861776 |
Upgrade OpenSSL from 1.1.1n to 1.1.1s, then again to 1.1.1t. |
885476 |
Tabs are being replaced with |
859878 |
SAML IdP- |
849750 |
No login prompt in the HW serial console when the boot is extremely broken. |
889706 |
FortiAuthenticator Remote user sync rules - Test filter not working if OU has special characters in name, e.g., |
886587 |
Upgrading FortiAuthenticator previously downgraded from 6.4+ to pre-6.4 back to 6.5.0 causes factory reset. |
812651 |
Sanitize portal name input. |
817819 |
Unable to expand Rule Sets after collapsing it in GUI. |
884902 |
Unable to import 10k plus groups from Azure via SAML in FortiAuthenticator. |
680776 |
AP HA secondary cannot change |
868738 |
Two FortiAuthenticator devices working in load balance mode stopped listening to port 8001. |
838976 |
Windows log events in FSSO are dropping after some time. |
838918 |
Despite DH modulus regeneration and device reboot, DH modulus is still equal to 2048 bits (256 bytes) instead of 4096 bits (512 bytes). |
850023 |
HA Cluster not forming due to differing smartconnect primary key name (upgrade path mismatch, but should work). |
847585 |
Under extensive load, FortiAuthenticator runs out of memory and TACACS+ daemon randomly crashes. |
838878 |
Cisco WLC portal fails (callback to 192.0.2.1). |
847599 |
802.1x EAP-TLS crashed with |
857630 |
FortiGate CRL renewal over SCEP via FortiAuthenticator not working anymore. FortiGate failing with |
859062 |
Multiple 'ERROR running' shows when upgrading the firmware from v6.4.3 to v6.4.6. |
873050 |
Show 403 Forbidden while performing SAML authentication after OAuth succeeds. |
880495 |
Allow OTP for EAP-MSCHAPv2 Authentication with FortiClient feature does not toggle off on the GUI. |
868146 |
Emergency Token is not displayed on the GUI when |
885471 |
LB off-by-one issue in the change log processing logic. |
880038 |
|
881575 |
FortiAuthenticator outbound email should permit partial chain certificate validation. |
881926 |
Email verification template is missing from the legacy user registration. |
872981 |
Remote LDAP clients cannot verify server certificates signed by LetsEncrypt and potentially other multipath CAs. |
875835 |
|
769183 |
FortiAuthenticator VMs need greater resiliency/improved recovery when connectivity is lost to remote data drives. |
862716 |
OAuth tokens can be verified with an invalid client id. |
841415 |
[3rd party component upgrade required for security reasons] FortiAuthenticator- |
852453 |
[3rd party component upgrade required for security reasons] FortiAuthenticator- |
816176 |
Renaming a Portal back to its original name fails triggers 500 error on the self-service portal user login. |
860292 |
Custom RADIUS user attribute is not syncing over in HA LB setup. |
870097 |
Machine authentication cache expiry. |
861611 |
Smart Connect for Android running on version 12 and 13 never installs the configuration profile. |
849395 |
TACACS+ AVPs order could prevent sending some AVPs even if those are set as mandatory. |
878828 |
After a reboot, FortiAuthenticator shows |