Known issues
The following issues have been identified in FortiClient (Windows) 7.2.1. For inquiries about a particular bug or to report a bug, contact Customer Service & Support.
Administration
Bug ID |
Description |
---|---|
867818 | fortishield.sys and fortimon3.sys are incompatible with HVCI. |
Application Firewall
Bug ID | Description |
---|---|
814391 |
FortiClient Cloud application signatures block allowlisted applications. |
827788 |
Threat ID is 0 on Firewall Events. |
844997 | FortiClient loses several packets on different internal resources after connecting telemetry. |
853451 |
FortiClient blocks PIA VPN. |
853808 |
FortiClient (Windows) blocks Veeam with messages related to Remote.CMD.Shell and VeeamAgent.exe. |
860062 |
Application Firewall slows down opening of Microsoft Active Directory (AD) Users and Computers application. |
749797 |
Application Firewall decreases network bandwidth while transferring files. |
842534 |
After upgrade, Application Firewall blocks internal webpage. |
869671 | FortiClient (Windows) bypasses Application Firewall block after matching detection rule. |
876265 | Zip files become corrupt when Application Firewall is enabled. |
879985 | Application Firewall fails to block Web.Client category HTTPS traffic. |
884911 | FortiClient detects IntelliJ IDEA Community Edition 2021.2.2 as Java.Debug.Wire.Protocol.Insecure.Configuration. |
890001 | Application Firewall blocks Tanium application under antiexploit. |
891789 | Application Firewall blocks CREO management tool software. |
897207 | Application Firewall blocks Microsoft 365 Defender device isolation. |
902866 | Application Firewall does not block Google Drive. |
907089 | Application Firewall blocks MS.Windows.HTTP.Protocol.Stack.CVE-2022-21907.Code.Execution. |
Configuration
Bug ID |
Description |
---|---|
730415 |
FortiClient backs up configuration that is missing locally configured zero trust network access (ZTNA) connection rules. |
897927 |
FortiClient causes reboot on domain controllers. |
Endpoint control
Endpoint management
Bug ID | Description |
---|---|
786738 | Anti-Ransomware Events tab is visible after disabling the feature from Feature Select. |
904348 | FortiClient (Windows) and EMS detect encryption status as not enabled when only one hard disk has encryption (Bitlocker) enabled. |
916566 | FortiClient reports USB as blocked but user can access the storage files. |
GUI
Bug ID | Description |
---|---|
795350 |
Multiple FortiTray icons display in Windows system tray. |
872634 |
FortiClient shows blank page when user opens FortiClient console. |
874560 |
GUI becomes blank after receiving EMS-pushed profile. |
888185 |
FortiClient does not minimize after successful VPN connection. |
Endpoint policy and profile
Bug ID |
Description |
---|---|
889517 | EMS fails to assign the correct endpoint policy and shows FortiClient as out-of-sync despite the client syncing. |
893883 |
FortiClient opens infinite loop of browser and Command Prompt windows when certain profile combination is used. |
915678 | FortiClient does not send acknowledged event to EMS if it disconnects and reconnects to EMS immediately after the user acknowledges the one-way message. |
Install and upgrade
Bug ID |
Description |
---|---|
769639 |
FortiDeviceGuard is not installed on Windows Server 2022. |
783690 |
Reboot prompt does not display after user login. |
870370 |
Upgrading FortiClient from FortiClient Cloud uses expired invitation code to register. |
896152 | FortiClient shows "Update failed - Error occurred!" popup after reboot. |
898429 |
Deployment reboot prompt in Windows 11 does not work. |
905132 |
FSSO fails to upgrade from 7.2.0 to 7.2.1 with installer that FortiClientSSOConfigurationTool created. |
915493 |
Reboot popup does not show to user. |
Malware Protection and Sandbox
Bug ID |
Description |
---|---|
828862 |
FortiClient does not allow virtual CD-ROM device. |
831560 |
GUI shows ransomware quarantined files after restoration via EMS. |
837638 | Identifying malware and exploits using signatures received from FortiSandbox does not work. |
844988 | FortiClient (Windows) does not block USB drive with attempt to copy contents even if WPD/USB is set to block in profile. |
857041 | Windows 10 security center popup shows FortiClient and Windows Defender are off. |
863802 | FortiClient (Windows) cannot detect SentinelOne when they have product on OS level. |
871078 | Antiexploit protection blocks Adobe plugin in Chrome. |
872970 | Bubble notifications do not appear when inserting USB drive in endpoint machine. |
874312 | Sandbox quarantines files with read-only access permission. |
874315 |
Sandbox scan reports read-only file as quarantined. |
874578 |
Real-time protection does not delete quarantined files after cullage time. |
875930 |
FortiClient (Windows) fails to quarantine a specific malware-infected dll file in Exchange Server. |
876465 |
FortiClient does not detect virus in network drive. |
876925 |
Antiexploit protection blocks Microsoft signing application in Chrome. |
893964 |
FortiClient cannot quarantine files located in a network-shared folder. |
894638 | FortiClient shows to kill 1426161032.exe twice for W32/Filecoder.CL!tr.ransom. |
901065 | Logitech driver breaks after installing FortiClient with Malware Protection feature enabled in installer. |
903614 | Number of blocked exploit counts does not match between FortiClient (Windows) and EMS. |
907331 | User cannot create exception for NetSupport Manager. |
913701 | Antiransomware feature fails to decrypt MSIL/Filecoder.AKJ!tr.ransom. |
915300 | FortiClient (Windows) detects file configured as exception as malware. |
916958 |
FortiClient cannot detect a virus-infected file. |
917941 | Sandbox exclusions do not work for shared drives. |
919007 |
On-demand scan for mapped drives is not possible. |
919499 | Windows Security Center shows that FortiClient (Windows) is inactive when FortiClient (Windows) is running and up-to-date. |
PAM
Bug ID |
Description |
---|---|
912655 | FortiPAM secret launchers do not launch correctly when accessing FortiPAM via external DNAT. |
922734 | Proxy is enabled but RDP traffic does not go through ZTNA tunnel in privilege access management standalone agent. |
922764 | Launching WebApp with Edge for use case where video recording and proxy are enabled does not work. |
Quarantine management
Bug ID |
Description |
---|---|
894510 | Quarantine management with EMS 7.2 and FortiClient does not work. |
896689 |
After upgrade, FortiClient (Windows) does not restore quarantined file after it is allowlisted. |
Zero Trust tags
Bug ID | Description |
---|---|
819120 |
Zero trust tag rule for AD group does not work when registering FortiClient to EMS with onboarding user. |
793033 |
ZTNA LDAP group rule does not work. |
919595 |
ZTNA tag rule does not working for BitLocker disk encryption. |
872794 |
AD group tag Evaluate on FortiClient feature does not work. If the Windows login user is a local user while the FortiClient onboarding user is a domain user, FortiClient behaves differently for the AD group tag based on the Evaluate on FortiClient setting. The AD group tag is applied if EMS does the evaluation and not applied if FortiClient (Windows) does the evaluation. |
Software Inventory
Bug ID |
Description |
---|---|
737970 | Software Inventory on EMS does not properly reflect software changes (adding/deleting) on Windows endpoints. |
844392 | Software Inventory shows last installation time in future. |
Zero Trust Telemetry
Bug ID |
Description |
---|---|
911495 | FortiClient (Windows) fails to autoregister to FortiClient Cloud due to Telemetry key mismatch. |
Remote Access
Vulnerability Scan
Bug ID |
Description |
---|---|
849485 | FortiClient wrongly detects AnyDesk vulnerabilities CVE-2021-44426 and CVE-2021-44425. |
869253 | FortiClient (Windows) detects vulnerability when the required KB is installed. |
Logs
Bug ID |
Description |
---|---|
811746 | FortiClient sends duplicated and old logs to FortiAnalyzer. |
849043 | SSL VPN add/close action does not show on FortiGate Endpoint Event section. |
874835 |
FortiClient (Windows) repeatedly logs security event logging - IPsec VPN "Disconnect" to FortiAnalyzer. |
876810 |
FortiClient does not indicate VPN user in logs when connection succeeds. |
Web Filter and plugin
Bug ID | Description |
---|---|
519066 | User cannot print to WSD network printer when FortiProxy is enabled. |
776089 |
FortiClient (Windows) does not block malicious sites when Web Filter is disabled. |
836906 | After FortiClient install, extended uptime results in audio cracking. |
867483 | Web Filter does not give warning message. |
871325 | Web Filter breaks DW Spectrum. |
875298 | Exclusion list does not work properly with regular expressions. |
876273 | Restricted mode has issue in Edge when moving from off- to on-fabric. |
884420 | Web Filter extension does not categorize sites properly. |
890433 | Firefox extension is stuck on older version. |
903426 |
User cannot access internal application with Web Filter enabled. Workaround: Add a simple rule to allow HTTP/HTTPS server IP addresses. |
904840 | When a user is performing a device recovery in iTunes, error 3500 occurs. |
909060 | User cannot update information on internal portal with Web Filter active. |
911410 | Safe Search restriction level does not apply properly if it is enabled for both Web and Video Filters. |
915287 | Extension does not properly apply safe mode HTTP header restrictions. |
919419 | When Web Filter with FortiGuard Anycast Allow websites when rating error occurs is set to Block, blocked message should not spam FortiClient (Windows) notifications. |
Avatar and social network login
Bug ID |
Description |
---|---|
830117 |
EMS fails to update email address for endpoint from personal information form in FortiClient (Windows). |
878050 |
FortiClient avatar does not update on FortiOS dashboards and FortiOS cannot show updated information. |
922816 |
FortiClient fails to show avatar after user login with Google, LinkedIn, or Salesforce. |
License
Bug ID |
Description |
---|---|
874676 |
EMS tags endpoint with existing ZTNA host tags for vulnerabilities and AV after license is updated from Endpoint Protection Platform to Remote Access. |
ZTNA connection rules
FSSOMA
Bug ID |
Description |
---|---|
862021 |
Local account can access Internet if FortiClient SSOMA logged-in AD user locks the screen. |
893985 | FortiClient SSOMA creates issue with tenant ID on FortiAuthenticator in regular/normal AD. |
900953 | SSOMA does not send SSO sessions information to FortiAuthenticator. |
909844 |
FSSO sessions drop earlier than expected. |
Onboarding
Bug ID |
Description |
---|---|
811976 |
FortiClient (Windows) may prioritize using user information from authentication user registered to EMS. |
819989 |
FortiClient (Windows) does not show login prompt when installed with installer using LDAP/local verification. |
872136 |
User verification period option does not work as configured. |