Fortinet black logo

(Windows) Release Notes

Home FortiClient 6.0.1 (Windows) Release Notes

Upgrading from previous FortiClient versions

6.0.1
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
6.2.0
6.0.10
6.0.9
6.0.8
6.0.7
6.0.6
6.0.5
6.0.4
6.0.3
6.0.2
6.0.1
6.0.0
5.6.6
5.6.5
5.6.4
5.6.3
5.6.2
5.6.1
5.6.0
5.4.5
5.4.4
5.4.3
5.4.2
5.4.1
5.4.0
Copy Link
Copy Doc ID 316ed879-9747-11e8-9cc7-00505692583a:897832
Download PDF

Upgrading from previous FortiClient versions

FortiClient version 6.0.1 supports upgrading from FortiClient versions 5.4 and later.

If you are deploying an upgrade from FortiClient 5.6.2 or earlier versions via FortiClient EMS and the upgrade fails, uninstall FortiClient on the endpoints, then deploy the latest version of FortiClient.

Deploying FortiClient upgrades to Windows 7 endpoints via FortiClient EMS

By default, EMS 6.0.1 uses TLS 1.2 for incoming SSL connections. This may cause deployment of FortiClient to Windows 7 endpoints to fail.

When deploying FortiClient upgrades to Windows 7 endpoints via FortiClient EMS, one of the following steps is necessary to ensure a successful upgrade.

Enabling support for TLS 1.0 and 1.1 in EMS

Ensure the Enable TLS 1.0/1.1 option is enabled. See the FortiClient EMS 6.0.1 Administration Guide for details.

Enabling support for TLS 1.2 in Windows 7

  1. Install the Windows Update Hot Fix.

    Update to enable TLS 1.1 and TLS 1.2 as a default security protocol in WinHTTP (KB3140245). See the Microsoft Update Catalog.

    note icon

    If regular Windows Update is enabled by default, this KB is already installed.
  2. Create a DWORD registry entry: DefaultSecureProtocols in the path:
    • On x86 architecture systems:

      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\WinHttp

    • On x64 architecture systems:

      HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\WinHttp

    Set the value to 0x00000A00 to enable both TLS 1.1 and 1.2.

See also Update to enable TLS 1.1 and TLS 1.2 as a default secure protocols in WinHTTP in Windows.

Previous
Next

Upgrading from previous FortiClient versions

FortiClient version 6.0.1 supports upgrading from FortiClient versions 5.4 and later.

If you are deploying an upgrade from FortiClient 5.6.2 or earlier versions via FortiClient EMS and the upgrade fails, uninstall FortiClient on the endpoints, then deploy the latest version of FortiClient.

Deploying FortiClient upgrades to Windows 7 endpoints via FortiClient EMS

By default, EMS 6.0.1 uses TLS 1.2 for incoming SSL connections. This may cause deployment of FortiClient to Windows 7 endpoints to fail.

When deploying FortiClient upgrades to Windows 7 endpoints via FortiClient EMS, one of the following steps is necessary to ensure a successful upgrade.

Enabling support for TLS 1.0 and 1.1 in EMS

Ensure the Enable TLS 1.0/1.1 option is enabled. See the FortiClient EMS 6.0.1 Administration Guide for details.

Enabling support for TLS 1.2 in Windows 7

  1. Install the Windows Update Hot Fix.

    Update to enable TLS 1.1 and TLS 1.2 as a default security protocol in WinHTTP (KB3140245). See the Microsoft Update Catalog.

    note icon

    If regular Windows Update is enabled by default, this KB is already installed.
  2. Create a DWORD registry entry: DefaultSecureProtocols in the path:
    • On x86 architecture systems:

      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\WinHttp

    • On x64 architecture systems:

      HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\WinHttp

    Set the value to 0x00000A00 to enable both TLS 1.1 and 1.2.

See also Update to enable TLS 1.1 and TLS 1.2 as a default secure protocols in WinHTTP in Windows.

Previous
Next