Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

Known Issues

The following issues have been identified in 6.2.2. For inquires about a particular bug or to report a bug, please contact Customer Service & Support.

Bug ID

Description

468776

Unable to retrieve device due to data not exist (g-xxxx firewall object).

592646

SD-WAN monitor is blank when the monitor interface data does not match the configuration data.

603414

FortiManager shows an incorrect firmware upgrade path for the FortGate. See Special Notices.

509665

Global v5.2 assigned to ADOM v5.4 and webfilter ftgd-local-rating might set to wrong category.

574731 Some hardware specific SNMP traps are missing from the device SNMP settings and the system provisioning templates.
574841 Central Management FortiSwitch Template GUI cannot assign VLANs with Microsoft Edge.
576098 The event log should may show the correct username.
576601 In the FortiGate’s GUI, the VPN Phase2 selectors can be managed separately, which is completely missing in FMG -> VPN Manager -> Monitor.
576645 VPN Manager’s dpd-retryinterval range is too small.
577199 Import policy package does not add interfaces in dynamic mapping for zone if the zone mapping is already empty.
577201 FortiManager should grey out the 'Next' button when zone validation occurs while "Re-install Policy".
577884 Deleting an unused object may change the policy package status.
578004 The policy interface colors are different in Device Manager and Policy & Objects.
578501 FortiManager does not show Global Icon for global Objects assigned to ADOMs.
578929 The warning message “input must be a number” should be displayed if an unexpected value is entered into “Heart Beat Interval” for HA.
579563 Workflow Session List menu seems to always match the first wildcard TACACS admin.
579573 FortiManager tries to delete replacemsg-group that is auto-created by adding tunnel SSID.
580484 Signature "Apache.Optionsbleed.Scanner" cannot be selected as IPS Signature anymore but only "Rate based Signature".
580533 Saving configuration with an incorrect IP or net mask format does not trigger an error.
580932 LVM information may show disk unused.
581140 The FmDeviceEntPolicyPackageState SNMP always returns (-1), which indicates never installed, regardless of the actual policy package status.
581481 Handling of custom Application Control signatures may not be consistent between FortiManager and FortiGate.
581495 Interface Validation may display the interface mapping prompt multiple times for the same unmapped interface.
581812 Sorting Extenders by device Name does not work.
581825 In workflow mode, changes to the SSL VPN portals do not trigger policy package status to "Modified".
581940 SD-WAN monitor may show a visual gap when monitoring traffics.
582882 FortiManager may install duplicated members during device install.
584046 License information for FortiAnalyzer shown in Device Manager is not correct.
584118 FortiManager may not correctly keep router access-list rule default value causing subsequent installation to fail.
584392 Admin user with read-only profile should not be allowed to "Revoke Release" in DHCP query and "Bring Tunnel Down/Up" in Query IPsec.
585021 Adding or modifying rate based signature within IPS profile, FortiManager resets all rate-based signatures to default setting.
585480 SD-WAN Monitor shows No Data for Performance SLA Statistics.
586026 FortiManager should display zone icon based on existing and non-existing dynamic mappings.
586275 Policy package difference does not show user or admin details.
586450 FortiManager should check if a script is applicable to global and report an error if the script cannot be ran.
586557 Workflow session removes user group for FortiSwitch Security Policy.
586571 VPN Manager may set add-route to disable when creating a managed gateway in dial-up topology as spoke and the option to select "Add Route" is set "off".
586636 FortiManager Event Log may show policy package installed on different units.

588869

Re-install policy on FortiGate with multiple VDOMs wipes config when different VDOM in different package.

589101

When an external gateway is defined within VPN Manager, the change cannot be installed to FortiGate with the error: no hub configured for vpn XXX.

589240

VPN Manager GUI cannot select a VDOM when adding a managed gateway.

Workaround: Use a CLI script to configure a managed gateway with the desired VDOM.

589269

When upgrading FortiGate, FortiManager may upgrade the device to version 6.0.3 prior to upgrading to version 6.2.2.

Workaround: Please select the Skip All Intermediate Steps in Upgrade Path if Possible option when upgrading FortiGate.

Known Issues

The following issues have been identified in 6.2.2. For inquires about a particular bug or to report a bug, please contact Customer Service & Support.

Bug ID

Description

468776

Unable to retrieve device due to data not exist (g-xxxx firewall object).

592646

SD-WAN monitor is blank when the monitor interface data does not match the configuration data.

603414

FortiManager shows an incorrect firmware upgrade path for the FortGate. See Special Notices.

509665

Global v5.2 assigned to ADOM v5.4 and webfilter ftgd-local-rating might set to wrong category.

574731 Some hardware specific SNMP traps are missing from the device SNMP settings and the system provisioning templates.
574841 Central Management FortiSwitch Template GUI cannot assign VLANs with Microsoft Edge.
576098 The event log should may show the correct username.
576601 In the FortiGate’s GUI, the VPN Phase2 selectors can be managed separately, which is completely missing in FMG -> VPN Manager -> Monitor.
576645 VPN Manager’s dpd-retryinterval range is too small.
577199 Import policy package does not add interfaces in dynamic mapping for zone if the zone mapping is already empty.
577201 FortiManager should grey out the 'Next' button when zone validation occurs while "Re-install Policy".
577884 Deleting an unused object may change the policy package status.
578004 The policy interface colors are different in Device Manager and Policy & Objects.
578501 FortiManager does not show Global Icon for global Objects assigned to ADOMs.
578929 The warning message “input must be a number” should be displayed if an unexpected value is entered into “Heart Beat Interval” for HA.
579563 Workflow Session List menu seems to always match the first wildcard TACACS admin.
579573 FortiManager tries to delete replacemsg-group that is auto-created by adding tunnel SSID.
580484 Signature "Apache.Optionsbleed.Scanner" cannot be selected as IPS Signature anymore but only "Rate based Signature".
580533 Saving configuration with an incorrect IP or net mask format does not trigger an error.
580932 LVM information may show disk unused.
581140 The FmDeviceEntPolicyPackageState SNMP always returns (-1), which indicates never installed, regardless of the actual policy package status.
581481 Handling of custom Application Control signatures may not be consistent between FortiManager and FortiGate.
581495 Interface Validation may display the interface mapping prompt multiple times for the same unmapped interface.
581812 Sorting Extenders by device Name does not work.
581825 In workflow mode, changes to the SSL VPN portals do not trigger policy package status to "Modified".
581940 SD-WAN monitor may show a visual gap when monitoring traffics.
582882 FortiManager may install duplicated members during device install.
584046 License information for FortiAnalyzer shown in Device Manager is not correct.
584118 FortiManager may not correctly keep router access-list rule default value causing subsequent installation to fail.
584392 Admin user with read-only profile should not be allowed to "Revoke Release" in DHCP query and "Bring Tunnel Down/Up" in Query IPsec.
585021 Adding or modifying rate based signature within IPS profile, FortiManager resets all rate-based signatures to default setting.
585480 SD-WAN Monitor shows No Data for Performance SLA Statistics.
586026 FortiManager should display zone icon based on existing and non-existing dynamic mappings.
586275 Policy package difference does not show user or admin details.
586450 FortiManager should check if a script is applicable to global and report an error if the script cannot be ran.
586557 Workflow session removes user group for FortiSwitch Security Policy.
586571 VPN Manager may set add-route to disable when creating a managed gateway in dial-up topology as spoke and the option to select "Add Route" is set "off".
586636 FortiManager Event Log may show policy package installed on different units.

588869

Re-install policy on FortiGate with multiple VDOMs wipes config when different VDOM in different package.

589101

When an external gateway is defined within VPN Manager, the change cannot be installed to FortiGate with the error: no hub configured for vpn XXX.

589240

VPN Manager GUI cannot select a VDOM when adding a managed gateway.

Workaround: Use a CLI script to configure a managed gateway with the desired VDOM.

589269

When upgrading FortiGate, FortiManager may upgrade the device to version 6.0.3 prior to upgrading to version 6.2.2.

Workaround: Please select the Skip All Intermediate Steps in Upgrade Path if Possible option when upgrading FortiGate.