Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Release Notes

    7.6.3
    7.6.6
    7.6.5
    7.6.4
    7.6.3
    7.6.2
    7.4.10
    7.4.8
    7.4.7
    7.4.6
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.2.12
    7.2.11
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1

    Resolved issues

    Resolved issues

    The following issues have been fixed in 7.6.3. To inquire about a particular bug, please contact Customer Service & Support.

    Device Manager

    Bug ID

    Description
    995919 Cannot config system password-policy expire-day for FortiGates.
    1004220 The SD-WAN Overlay template creates route-map names that exceed the 35-character limit.
    1079654 Firewall address entries are incorrectly generated when creating a bridge/mesh-type SSID.
    1080940 In an IPSEC tunnel template, deleting an IPSEC tunnel that is not the last one in the template causes the configuration of the last remaining tunnel to disappear when you revisit the template.
    1086303

    An installation error may occur when binding and installing the created VLAN interface to the software switch due to ip-managed-by-fortiipam. No issues have been observed with the installation of VLAN interfaces or physical interfaces.

    1099270 Unable to upgrade of FortiGate HA devices via Firmware Templates.
    1110780

    FortiManager Cloud does not allow creating the local-in policy with SD-WAN zone.

    1124171

    FortiManager Cloud retrieves the device configuration from the ZTP FortiGate after the image upgrade is performed, due to the 'Enforce Firmware' feature. This action erases all settings in the device database on the FortiManager Cloud side, and as a result, AutoLink installation will not be completed successfully.

    1128094 After upgrading to v7.2.10, the entries under Network Monitor > Routing (Static & Dynamic) no longer appear.

    FortiSwitch Manager

    Bug ID

    Description
    1026433 When navigating to FortiSwitch Manager > FortiSwitch VLAN > "BUILD-VLAN" and enabling the DHCP Server, the Advanced options are missing the "filename" field.
    1089719

    FortiSwitch 110G is not supported.

    1097467 There is a mismatch in the per-VDOM limit between the Managed FortiSwitch on the FortiManager Cloud and the actual FortiGate, causing a copy failure error when installing the configuration. So far, this issue has been observed on the FGT-90G.

    Global ADOM

    Bug ID

    Description
    1111249 Unable to assign Global Policy to any ADOM, when firewall address with metadata variables has been used.

    Others

    Bug ID

    Description

    1052341

    Not able to select Address type MAC in SD-WAN rule source address.
    1106312 The Table View and Device History sections under the SD-WAN Manager's Network tab do not properly display all detailed information, such as Interfaces, Link Mode, and other relevant data. (This issue was initially reported in relation to FortiGate 7.6.1).
    1114809

    After upgrading the FortiManager Cloud using the "Upgrade Image via FortiGuard" feature, the FortiManager Cloud JSON API login may fail, leading to service disruptions. This issue is important for FortiPortal and other FortiManager Cloud API clients.
    1117603

    Some compatibility issues have been encountered with FortiOS 7.4.7, please review the Release Notes.

    Policy and Objects

    Bug ID Description
    986256

    When creating the application list on the FortiManager Cloud, if the Category ID is set to 33 or 34, the installation does not display any errors. However, these invalid categories cannot be set on the FortiGate. Consequently, the assigned application list entry will be created without a specific category and will default to the "block" action. This behavior may cause network interruptions.

    1030914 Copy and paste function in GUI removes name of the policy rule and adds unwanted default security profiles (SSL-SSH no-inspection and default PROTOCOL OPTIONS).
    1077964

    After ZTNA server real server address type changes from FQDN to IP, the policy installation may fail; FortiManager Cloud pushes ZTNA server config with wrong order.

    1101436 The "sni-server-cert-check" cannot be disabled on SSL-SSH inspection profile for "ftps" "pop3s" and "smtps".
    1109061 FortiManager Cloud tries to set the inspection mode for the deny policies.
    1112011

    When a policy package contains a globally assigned policy, installing a local ADOM policy package (with the "Install On" feature enabled for a specific device) may not function properly. The policy could be installed on all devices instead of the intended one.

    Script

    Bug ID Description
    1085374

    FortiManager Cloud does not support exporting the TCL scripts via CLI.

    System Settings

    Bug ID

    Description

    1108205

    ADOM lock override does not work even though lock-preempt has been enabled.

    1115464

    When any interfaces have the serviceaccess feature enabled (fgtupdates, fclupdates, and webfilter-antispam), changing the IP address on the desired interfaces may not immediately affect the listing port for that IP. As a result, the user might not be able to access the GUI using the newly configured IP address (assuming default port 443 is being used).

    VPN Manager

    Bug ID

    Description

    1084434

    Unable to rename the address objects (either source and/or destination) used in Phase2 quick selectors in IPSec VPN without an installation error.
    Previous
    Next

    Resolved issues

    Resolved issues

    The following issues have been fixed in 7.6.3. To inquire about a particular bug, please contact Customer Service & Support.

    Device Manager

    Bug ID

    Description
    995919 Cannot config system password-policy expire-day for FortiGates.
    1004220 The SD-WAN Overlay template creates route-map names that exceed the 35-character limit.
    1079654 Firewall address entries are incorrectly generated when creating a bridge/mesh-type SSID.
    1080940 In an IPSEC tunnel template, deleting an IPSEC tunnel that is not the last one in the template causes the configuration of the last remaining tunnel to disappear when you revisit the template.
    1086303

    An installation error may occur when binding and installing the created VLAN interface to the software switch due to ip-managed-by-fortiipam. No issues have been observed with the installation of VLAN interfaces or physical interfaces.

    1099270 Unable to upgrade of FortiGate HA devices via Firmware Templates.
    1110780

    FortiManager Cloud does not allow creating the local-in policy with SD-WAN zone.

    1124171

    FortiManager Cloud retrieves the device configuration from the ZTP FortiGate after the image upgrade is performed, due to the 'Enforce Firmware' feature. This action erases all settings in the device database on the FortiManager Cloud side, and as a result, AutoLink installation will not be completed successfully.

    1128094 After upgrading to v7.2.10, the entries under Network Monitor > Routing (Static & Dynamic) no longer appear.

    FortiSwitch Manager

    Bug ID

    Description
    1026433 When navigating to FortiSwitch Manager > FortiSwitch VLAN > "BUILD-VLAN" and enabling the DHCP Server, the Advanced options are missing the "filename" field.
    1089719

    FortiSwitch 110G is not supported.

    1097467 There is a mismatch in the per-VDOM limit between the Managed FortiSwitch on the FortiManager Cloud and the actual FortiGate, causing a copy failure error when installing the configuration. So far, this issue has been observed on the FGT-90G.

    Global ADOM

    Bug ID

    Description
    1111249 Unable to assign Global Policy to any ADOM, when firewall address with metadata variables has been used.

    Others

    Bug ID

    Description

    1052341

    Not able to select Address type MAC in SD-WAN rule source address.
    1106312 The Table View and Device History sections under the SD-WAN Manager's Network tab do not properly display all detailed information, such as Interfaces, Link Mode, and other relevant data. (This issue was initially reported in relation to FortiGate 7.6.1).
    1114809

    After upgrading the FortiManager Cloud using the "Upgrade Image via FortiGuard" feature, the FortiManager Cloud JSON API login may fail, leading to service disruptions. This issue is important for FortiPortal and other FortiManager Cloud API clients.
    1117603

    Some compatibility issues have been encountered with FortiOS 7.4.7, please review the Release Notes.

    Policy and Objects

    Bug ID Description
    986256

    When creating the application list on the FortiManager Cloud, if the Category ID is set to 33 or 34, the installation does not display any errors. However, these invalid categories cannot be set on the FortiGate. Consequently, the assigned application list entry will be created without a specific category and will default to the "block" action. This behavior may cause network interruptions.

    1030914 Copy and paste function in GUI removes name of the policy rule and adds unwanted default security profiles (SSL-SSH no-inspection and default PROTOCOL OPTIONS).
    1077964

    After ZTNA server real server address type changes from FQDN to IP, the policy installation may fail; FortiManager Cloud pushes ZTNA server config with wrong order.

    1101436 The "sni-server-cert-check" cannot be disabled on SSL-SSH inspection profile for "ftps" "pop3s" and "smtps".
    1109061 FortiManager Cloud tries to set the inspection mode for the deny policies.
    1112011

    When a policy package contains a globally assigned policy, installing a local ADOM policy package (with the "Install On" feature enabled for a specific device) may not function properly. The policy could be installed on all devices instead of the intended one.

    Script

    Bug ID Description
    1085374

    FortiManager Cloud does not support exporting the TCL scripts via CLI.

    System Settings

    Bug ID

    Description

    1108205

    ADOM lock override does not work even though lock-preempt has been enabled.

    1115464

    When any interfaces have the serviceaccess feature enabled (fgtupdates, fclupdates, and webfilter-antispam), changing the IP address on the desired interfaces may not immediately affect the listing port for that IP. As a result, the user might not be able to access the GUI using the newly configured IP address (assuming default port 443 is being used).

    VPN Manager

    Bug ID

    Description

    1084434

    Unable to rename the address objects (either source and/or destination) used in Phase2 quick selectors in IPSec VPN without an installation error.
    Previous
    Next