Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    (Windows) Release Notes

    Home FortiClient 7.2.1 (Windows) Release Notes
    7.2.1
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.14
    7.2.13
    7.2.12
    7.2.11
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.5
    6.2.4
    6.2.3
    6.2.2
    6.2.1
    6.2.0
    6.0.10
    6.0.9
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.6.6
    5.6.5
    5.6.4
    5.6.3
    5.6.2
    5.6.1
    5.6.0
    5.4.5
    5.4.4
    5.4.3
    5.4.2
    5.4.1
    5.4.0

    Resolved issues

    Resolved issues

    The following issues have been fixed in version 7.2.1. For inquiries about a particular bug, contact Customer Service & Support.

    ZTNA connection rules

    Bug ID

    Description
    847299 FortiClient does not support CIRA (default DNS over HTTPS provider) added to Firefox.
    862921 FortiClient does not show prompt for zero trust network access (ZTNA) user authentication when form-based method is set under authentication rule/scheme on FortiGate.
    870138 ZTNA certificate is not installed in personal store when only ZTNA component is installed.
    871342 ZTNA error message that shows on browser is not configurable.
    876254 FortiClient fails to delete portal configuration when EMS does not specify and overwrites EMS ZTNA configuration.
    877128 User in different country cannot create ZTNA tunnel.

    911024

    Host keeps requesting new certificates after Windows login.

    Web Filter and plugin

    Bug ID

    Description
    826697 Web Filter feature affects ConnectWise automate application.
    842966 Web Filter fails to activate when off-fabric.
    859979 FortiClient blocks web browsing traffic that Web Filter allows.
    868217 firefox_ext.xpi contains unexpected information that should be removed.
    870895 Web Filter blocks Docker pull.
    885310 When Web Filter blocks Youtube except for a video-specific URL, FortiClient (Windows) allows other videos.
    892204 Web Filter blocks traffic for signing into http://login.qiye.ccpiteco.net and http://zwfw.safe.gov.cn/asone/
    900083 User has problem accessing HTTP site after upgrading to FortiClient 7.0.8.
    907534 FortiClient does not open page/window to enable Allow in Incognito option when clicking popup.

    GUI

    Bug ID

    Description
    853856 After FortiClient upgrade, Windows client is stuck at black screen.
    875712 FortiClient console garbles username after reboot.

    Endpoint control

    Bug ID Description
    878514 FortiClient (Windows) cannot get tenant ID after deploying FortiClient 7.2.0 over 7.0.7 from EMS.
    899960 FortiESNAC process stops after switching between two FortiSASE FortiClient Cloud instances.

    FSSOMA

    Bug ID

    Description
    803213 FSSO fails to send user login information, machine IP address, and other information to FortiAuthenticator.
    851036 FortiClient (Windows) does not send IP address using mobility agent to FortiAuthenticator when on-premise.
    854882 FortiClient single sign on mobility agent (FSSOMA) does not send EMS tenant ID to FortiAuthenticator.

    Install and upgrade

    Bug ID

    Description

    791538

    EMS 7.0.3 deployments fail if Require Password to Disconnect from EMS is enabled.

    816531

    Signatures do not get updated.
    868570 FortiESNAC.exe fails to run after EMS tries to deploy FortiClient (Windows) 7.2.0 to endpoint with interim build installed.
    871718 FortiClient (Windows) with only antivirus (AV) and ZTNA features installed fails to sync profile.
    872096 FortiClient is missing avatar and Zero Trust Telemetry pages after upgrading from free VPN-only client to full FortiClient (Windows).
    880132 FortiClient uninstall fails when using msiexec command.

    892003

    FortiClient allows user to install FortiClient (Windows) with two different installers at the same time on same machine.

    907340

    Reboot is required after reinstall for telemetry connection.

    Vulnerability Scan

    Bug ID

    Description
    853934 User cannot perform vulnerability scan when EMS enables it as scan option is disabled on GUI.

    Remote Access

    Bug ID

    Description
    763611 SSL VPN dual stack has slow upload speed.
    792131 FortiClient has issues with the Save Password feature for SSL VPN profile.
    801599 FortiClient opens multiple browser tabs when connecting to SSL VPN via SAML using external browser.

    805880

    SSLVPNcmdline does not work with SSL VPN connection.
    825365 When disconnecting from VPN, FortiClient (Windows) does not restore the Register this connection's IP to DNS checkbox.
    829084 Redundant Sort Method does not work with redundant SAML authentication.
    835072 FortiClient blocks an internal application's activity to automatically open a saved HTML template.
    840685 The VPN before logon icon does not appear in certain conditions.
    842560 FortiClient disables PolicyAgent and IKEEXT services when connecting to dialup IPsec VPN.
    847640 SSL VPN client certificate is missing on GUI when user enables SSO.
    847990 Network adapter keeps DNS registration disabled after FortiClient disconnects from SSL VPN.
    850822 FortiClient does not connect to IPsec VPN if multiple Diffie Hellman groups are selected.
    852507 When connecting to SSL VPN using FortiSSLVPNclient.exe, the VPN adapter IP address is incorrect.
    856798 When a BitLocker attached drive is locked, EMS reports endpoint as not having disk encryption.
    867087 cxwmbclass.sys causes blue screen of death.
    868337 IPsec VPN client operating system is Windows 10, but FortiGate IKE debug log shows it as Windows 8.0.
    871031 FortiClient (Windows) asks for answer instead of token when using third party multifactor authentication.
    874144 FortiClient (Windows) uses client certificates and connects to SSL and IPsec VPN when the certificate filter is applied on the EMS.
    874655 IPsec VPN connection fails and ends with unusable status.
    876062 API connection does not work with certificate authentication.
    877314 EMS-configured autoconnect does not have higher priority than a user's previously selected autoconnect.
    877320 Autoconnect on install is not triggered if FortiClient is installed and registered to EMS during the same Windows logon session.
    881633 FortiClient (Windows) cannot set two-byte character as VPN name.
    884348 DTLS in SSL VPN does not work with SAML.
    885541 SSL VPN does not connect when special characters are used in VPN password.
    888878 Custom host check fail warning does not show entire notification.
    890069 FortiClient (Windows) removes user credentials after reboot, hibernation or suspension.
    890352 IPsec VPN for FIPS-enabled FortiClient fails to work when EMS-pushed IPsec or SSL VPN tunnel contains application split tunnel settings.
    891164 FortiClient does not handle EMS-pushed IPsec VPN configuration of encryption/authentication/DH group that FortiClient FIPS does not support.
    903336 FortiClient does not store SSL VPN connection username.
    905346 IPsec VPN autoconnect works after tag or ZTNA tag rule changes.
    909103 Toggling Save Password in GUI removes IPsec VPN tunnel saved username.
    914957 fortivpn::IEndpointControl::queryState nn_recv fails.

    Malware Protection and Sandbox

    Bug ID

    Description
    833264 Antiexploit detection blocks Chrome without sharing payload details.
    844962 FortiClient (Windows) does not block phone mobile storage when default removable media access is set to block.
    861296 AV scan exclusion list does not work for shared/network drive files.
    863950 FortiClient reports device as blocked but allows access to it.

    Zero Trust telemetry

    Bug ID

    Description
    841719 FortiClient does not connect to FortiClient Cloud.
    886203 Telemetry is stuck in syncing state.

    Avatar and social login information

    Bug ID

    Description
    805153 FortiClient (Windows) does not save user-specified Submit User Identity Information form.

    License

    Bug ID

    Description
    904835 FortiClient (Windows) loses license after upgrade.

    Administration

    Bug ID

    Description
    846036 FortiClient (Windows) does not send device fields when hostname changes.
    869731 scheduler.exe crashes.
    869845 Multiple FortiClient (Windows) daemon crashes occur.
    909517 FortiESNAC daemon does not notify Fortitcs daemon after certificate update.

    PAM

    Bug ID

    Description
    866949 FortiShield blocks FortiPAM from writing files in FortiClient installation directory.
    876170 FortiPAM does not work if ZTNA is disabled and client certificate is required.

    Other

    Bug ID

    Description
    861070 User can end FortiClient (Windows) processes when FortiShield is running.

    Common Vulnerabilities and Exposures

    Bug ID

    Description

    821860

    FortiClient (Windows) 7.2.1 is no longer vulnerable to the following CVE References:

    • CVE-2023-37939

    Visit https://fortiguard.com/psirt for more information.
    Previous
    Next

    Resolved issues

    Resolved issues

    The following issues have been fixed in version 7.2.1. For inquiries about a particular bug, contact Customer Service & Support.

    ZTNA connection rules

    Bug ID

    Description
    847299 FortiClient does not support CIRA (default DNS over HTTPS provider) added to Firefox.
    862921 FortiClient does not show prompt for zero trust network access (ZTNA) user authentication when form-based method is set under authentication rule/scheme on FortiGate.
    870138 ZTNA certificate is not installed in personal store when only ZTNA component is installed.
    871342 ZTNA error message that shows on browser is not configurable.
    876254 FortiClient fails to delete portal configuration when EMS does not specify and overwrites EMS ZTNA configuration.
    877128 User in different country cannot create ZTNA tunnel.

    911024

    Host keeps requesting new certificates after Windows login.

    Web Filter and plugin

    Bug ID

    Description
    826697 Web Filter feature affects ConnectWise automate application.
    842966 Web Filter fails to activate when off-fabric.
    859979 FortiClient blocks web browsing traffic that Web Filter allows.
    868217 firefox_ext.xpi contains unexpected information that should be removed.
    870895 Web Filter blocks Docker pull.
    885310 When Web Filter blocks Youtube except for a video-specific URL, FortiClient (Windows) allows other videos.
    892204 Web Filter blocks traffic for signing into http://login.qiye.ccpiteco.net and http://zwfw.safe.gov.cn/asone/
    900083 User has problem accessing HTTP site after upgrading to FortiClient 7.0.8.
    907534 FortiClient does not open page/window to enable Allow in Incognito option when clicking popup.

    GUI

    Bug ID

    Description
    853856 After FortiClient upgrade, Windows client is stuck at black screen.
    875712 FortiClient console garbles username after reboot.

    Endpoint control

    Bug ID Description
    878514 FortiClient (Windows) cannot get tenant ID after deploying FortiClient 7.2.0 over 7.0.7 from EMS.
    899960 FortiESNAC process stops after switching between two FortiSASE FortiClient Cloud instances.

    FSSOMA

    Bug ID

    Description
    803213 FSSO fails to send user login information, machine IP address, and other information to FortiAuthenticator.
    851036 FortiClient (Windows) does not send IP address using mobility agent to FortiAuthenticator when on-premise.
    854882 FortiClient single sign on mobility agent (FSSOMA) does not send EMS tenant ID to FortiAuthenticator.

    Install and upgrade

    Bug ID

    Description

    791538

    EMS 7.0.3 deployments fail if Require Password to Disconnect from EMS is enabled.

    816531

    Signatures do not get updated.
    868570 FortiESNAC.exe fails to run after EMS tries to deploy FortiClient (Windows) 7.2.0 to endpoint with interim build installed.
    871718 FortiClient (Windows) with only antivirus (AV) and ZTNA features installed fails to sync profile.
    872096 FortiClient is missing avatar and Zero Trust Telemetry pages after upgrading from free VPN-only client to full FortiClient (Windows).
    880132 FortiClient uninstall fails when using msiexec command.

    892003

    FortiClient allows user to install FortiClient (Windows) with two different installers at the same time on same machine.

    907340

    Reboot is required after reinstall for telemetry connection.

    Vulnerability Scan

    Bug ID

    Description
    853934 User cannot perform vulnerability scan when EMS enables it as scan option is disabled on GUI.

    Remote Access

    Bug ID

    Description
    763611 SSL VPN dual stack has slow upload speed.
    792131 FortiClient has issues with the Save Password feature for SSL VPN profile.
    801599 FortiClient opens multiple browser tabs when connecting to SSL VPN via SAML using external browser.

    805880

    SSLVPNcmdline does not work with SSL VPN connection.
    825365 When disconnecting from VPN, FortiClient (Windows) does not restore the Register this connection's IP to DNS checkbox.
    829084 Redundant Sort Method does not work with redundant SAML authentication.
    835072 FortiClient blocks an internal application's activity to automatically open a saved HTML template.
    840685 The VPN before logon icon does not appear in certain conditions.
    842560 FortiClient disables PolicyAgent and IKEEXT services when connecting to dialup IPsec VPN.
    847640 SSL VPN client certificate is missing on GUI when user enables SSO.
    847990 Network adapter keeps DNS registration disabled after FortiClient disconnects from SSL VPN.
    850822 FortiClient does not connect to IPsec VPN if multiple Diffie Hellman groups are selected.
    852507 When connecting to SSL VPN using FortiSSLVPNclient.exe, the VPN adapter IP address is incorrect.
    856798 When a BitLocker attached drive is locked, EMS reports endpoint as not having disk encryption.
    867087 cxwmbclass.sys causes blue screen of death.
    868337 IPsec VPN client operating system is Windows 10, but FortiGate IKE debug log shows it as Windows 8.0.
    871031 FortiClient (Windows) asks for answer instead of token when using third party multifactor authentication.
    874144 FortiClient (Windows) uses client certificates and connects to SSL and IPsec VPN when the certificate filter is applied on the EMS.
    874655 IPsec VPN connection fails and ends with unusable status.
    876062 API connection does not work with certificate authentication.
    877314 EMS-configured autoconnect does not have higher priority than a user's previously selected autoconnect.
    877320 Autoconnect on install is not triggered if FortiClient is installed and registered to EMS during the same Windows logon session.
    881633 FortiClient (Windows) cannot set two-byte character as VPN name.
    884348 DTLS in SSL VPN does not work with SAML.
    885541 SSL VPN does not connect when special characters are used in VPN password.
    888878 Custom host check fail warning does not show entire notification.
    890069 FortiClient (Windows) removes user credentials after reboot, hibernation or suspension.
    890352 IPsec VPN for FIPS-enabled FortiClient fails to work when EMS-pushed IPsec or SSL VPN tunnel contains application split tunnel settings.
    891164 FortiClient does not handle EMS-pushed IPsec VPN configuration of encryption/authentication/DH group that FortiClient FIPS does not support.
    903336 FortiClient does not store SSL VPN connection username.
    905346 IPsec VPN autoconnect works after tag or ZTNA tag rule changes.
    909103 Toggling Save Password in GUI removes IPsec VPN tunnel saved username.
    914957 fortivpn::IEndpointControl::queryState nn_recv fails.

    Malware Protection and Sandbox

    Bug ID

    Description
    833264 Antiexploit detection blocks Chrome without sharing payload details.
    844962 FortiClient (Windows) does not block phone mobile storage when default removable media access is set to block.
    861296 AV scan exclusion list does not work for shared/network drive files.
    863950 FortiClient reports device as blocked but allows access to it.

    Zero Trust telemetry

    Bug ID

    Description
    841719 FortiClient does not connect to FortiClient Cloud.
    886203 Telemetry is stuck in syncing state.

    Avatar and social login information

    Bug ID

    Description
    805153 FortiClient (Windows) does not save user-specified Submit User Identity Information form.

    License

    Bug ID

    Description
    904835 FortiClient (Windows) loses license after upgrade.

    Administration

    Bug ID

    Description
    846036 FortiClient (Windows) does not send device fields when hostname changes.
    869731 scheduler.exe crashes.
    869845 Multiple FortiClient (Windows) daemon crashes occur.
    909517 FortiESNAC daemon does not notify Fortitcs daemon after certificate update.

    PAM

    Bug ID

    Description
    866949 FortiShield blocks FortiPAM from writing files in FortiClient installation directory.
    876170 FortiPAM does not work if ZTNA is disabled and client certificate is required.

    Other

    Bug ID

    Description
    861070 User can end FortiClient (Windows) processes when FortiShield is running.

    Common Vulnerabilities and Exposures

    Bug ID

    Description

    821860

    FortiClient (Windows) 7.2.1 is no longer vulnerable to the following CVE References:

    • CVE-2023-37939

    Visit https://fortiguard.com/psirt for more information.
    Previous
    Next