Fortinet black logo

(Linux) Release Notes

Home FortiClient 7.2.4 (Linux) Release Notes
7.2.4
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.9
6.4.8
6.4.7
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.9
6.2.8
6.2.7
6.2.6
6.2.4
6.2.3
6.2.2
6.2.1
6.2.0
6.0.8
6.0.6
6.0.5
6.0.4
6.0.3
6.0.2
6.0.1
6.0.0

Special notices

Special notices

ZTNA certificates

Zero trust network access (ZTNA) certificate provisioning requires Trusted Platform Module (TPM) 2.0 on the endpoint with one of the following:

  • Maximum of TLS 1.2 in FortiOS
  • Maximum of TLS 1.3 in FortiOS if the TPM 2.0 implementation in the endpoint supports RSA PSS signatures

For ZTNA tags for checking certificates, FortiClient (Linux) does not check user certificates and only checks root certificate authority certificates installed on the system. These routes are:

Operating system

Route
Ubuntu

/etc/ssl/certs/ca-certificates.crt

  • CentOS
  • Red Hat

/etc/pki/tls/certs/ca-bundle.crt

Installation of FortiClient fails on Ubuntu 23.10

FortiClient (Linux) installation fails on Ubuntu 23.10. The workaround is to manually install the following packages on the Linux endpoint before installing FortiClient on Ubuntu 23.10:

apt install gconf2-common_3.2.6-8_all.deb

apt install libgconf-2-4_3.2.6-8_amd64.deb

FortiGuard Web Filtering Category v10 Update

Fortinet has updated its web filtering categories to v10, which includes two new URL categories for AI chat and cryptocurrency websites. To use the new categories, customers must upgrade their Fortinet products to one of the versions below:

  • FortiManager - Fixed in 6.0.12, 6.2.9, 6.4.7, 7.0.2, 7.2.0, 7.4.0.
  • FortiOS - Fixed in 7.2.8 and 7.4.1.
  • FortiClient - Fixed in Windows 7.2.3, macOS 7.2.3, Linux 7.2.3.
  • FortiClient EMS - Fixed in 7.2.1.
  • FortiMail - Fixed in 7.0.7, 7.2.5, 7.4.1.
  • FortiProxy - Fixed in 7.4.1.

Please read the following CSB for more information to caveats on the usage in FortiManager and FortiOS: https://support.fortinet.com/Information/Bulletin.aspx

Previous
Next

Special notices

ZTNA certificates

Zero trust network access (ZTNA) certificate provisioning requires Trusted Platform Module (TPM) 2.0 on the endpoint with one of the following:

  • Maximum of TLS 1.2 in FortiOS
  • Maximum of TLS 1.3 in FortiOS if the TPM 2.0 implementation in the endpoint supports RSA PSS signatures

For ZTNA tags for checking certificates, FortiClient (Linux) does not check user certificates and only checks root certificate authority certificates installed on the system. These routes are:

Operating system

Route
Ubuntu

/etc/ssl/certs/ca-certificates.crt

  • CentOS
  • Red Hat

/etc/pki/tls/certs/ca-bundle.crt

Installation of FortiClient fails on Ubuntu 23.10

FortiClient (Linux) installation fails on Ubuntu 23.10. The workaround is to manually install the following packages on the Linux endpoint before installing FortiClient on Ubuntu 23.10:

apt install gconf2-common_3.2.6-8_all.deb

apt install libgconf-2-4_3.2.6-8_amd64.deb

FortiGuard Web Filtering Category v10 Update

Fortinet has updated its web filtering categories to v10, which includes two new URL categories for AI chat and cryptocurrency websites. To use the new categories, customers must upgrade their Fortinet products to one of the versions below:

  • FortiManager - Fixed in 6.0.12, 6.2.9, 6.4.7, 7.0.2, 7.2.0, 7.4.0.
  • FortiOS - Fixed in 7.2.8 and 7.4.1.
  • FortiClient - Fixed in Windows 7.2.3, macOS 7.2.3, Linux 7.2.3.
  • FortiClient EMS - Fixed in 7.2.1.
  • FortiMail - Fixed in 7.0.7, 7.2.5, 7.4.1.
  • FortiProxy - Fixed in 7.4.1.

Please read the following CSB for more information to caveats on the usage in FortiManager and FortiOS: https://support.fortinet.com/Information/Bulletin.aspx

Previous
Next