Fortinet black logo

Release Notes

Home FortiManager 7.0.11 Release Notes
7.0.11
7.4.2
7.4.1
7.4.0
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.14
6.4.13
6.4.12
6.4.11
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.12
6.2.11
6.2.10
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.3
6.2.2
6.2.1
6.2.0
6.0.12
6.0.11
6.0.10
6.0.9
6.0.8
6.0.7
6.0.6
6.0.5
6.0.4
6.0.3
6.0.2
6.0.1
6.0.0
5.6.11
5.6.10
5.6.9
5.6.8
5.6.7
5.6.6
5.6.5
5.6.4
5.6.3
5.6.2
5.6.1
5.6.0
5.6.0
5.4.7
5.4.6
5.4.5
5.4.4
5.4.3
5.4.2
5.4.1
5.4.0
5.2.10
5.2.9
5.2.7
5.2.6
5.2.4
5.2.3
5.2.2
5.2.1
5.2.0
5.0.12
5.0.11
5.0.10
5.0.9
5.0.8
5.0.7
5.0.6
5.0.5
5.0.4
5.0.3

Resolved Issues

Resolved Issues

The following issues have been fixed in 7.0.11. To inquire about a particular bug, please contact Customer Service & Support.

AP Manager

Bug ID Description

906061

It takes a significant amount of time to assign a profile to each FortiAPs.
974444 DNS server for SSIDs gets resets after importing AP Profile.
979129 Unable to export AP list form AP Manager to excel or CSV; the option is grayed out.

982548

FortiGate configuration install may fail with a reason "Need to unset channel list in radio-1 first."

Device Manager

Bug ID

Description
789655 FortiManager BGP Template does not support the "set-route-tag" option in the "route-maps".
838462 Adding device using "Add Model HA Cluster" feature failed as FortiManager does not allow "virtual switch interfaces" being used as "heartbeat interfaces".

871334

973064

Installation to FortiGate with NP7 Acceleration feature enabled might fail when FortiManager attempted to modify the QoS settings. Changing the 'default-qos-type' to values other than its default may result in a FortiGate reboot (FortiOS Behaviour).
880934 FortiManager reverts Syslog mode settings on local FortiGates (when FortiGates are in FIPS mode).
896367 The geographic coordination config of FortiGates on Device Manager is being reset to 0,0 after a certain period of time.
899903 FortiManager GUI does not list all NTP interfaces.
920394 Installation failed due to the incorrect install order during ZTP.
922543 FortiManager attempts to unset authentication mode in OSPF settings.
923808 Even with the "set dhcp-relay-request-all-server enable" option enabled, FortiManager does not keep the DHCP server & relay configurations on the same interface.
926069 Unable to add devices to the Device Group using "Add to Existing Group(s)".
936168 Unable to assign Device Group to the Firmware Template.
966118 FortiManager tries to purge all entries under table "system global split-port-mode" for its System template.
978503 Unable to select internet-service-custom on device level setting.

FortiSwitch Manager

Bug ID Description
967213 While attempting to deploy a FortiSwitch template to a model device, FortiManager generates the following error message: "VLAN interface does not match FortiLink."

Others

Bug ID Description
583349

FortiManager does not provide support for image upgrades on "ONDEMAND" devices.

897157

Unexpected changes in existing static routes created by static route template after upgrade to 7.0.7, 7.2.2, 7.4.0.
921273 Unable to upgrade ADOMs due to the XSS vulnerability characters check on wireless-controller.
935430 When FortiAnalyzer is managed by FortiManager and FortiManager's local logs are being sent to FortiAnalyzer, installing PP to FortiGates may display the following message: "Confirm Deletion FortiManager is going to sync the following device deletion to FortiAnalyzer,...".

982564

When upgrading the root ADOM, the process might fail with the following error message: "...The string contains XSS vulnerability characters...".

Policy and Objects

Bug ID Description
854359 An installation error occurs when FortiManager attempts to install wildcard FQDN addresses "mzstatic-apple" and "cdn-apple" within the "custom-deep-inspection" SSL-SSH profile.
888798 Changing deep inspection ssl-ssh-profile to "inspect all ports" may cause installation error.

938019

Policy Package Status not changed on modification of nested group used in policy block.
945853 FortiManager doesn't sync previously deleted EMS tags.
963008 Impossible to merge duplicate objects.
966495

In FortiManager v7.0.10, whether it's a fresh setup or an upgrade, a "copy failed error" occurs due to the absence of the default "sd-wan" interface. This may happen on an existing 6.4 ADOM or when attempting to create a new ADOM v6.4.

968847

Installing VPN IPsec tunnel from FortiManager failed due to the following error message: "ipsec interface ... is used by switchctl".

972392

Users do not receive a proper warning when creating a firewall address with the IP address '0.0.0.0/0.'
986262 EMS Cloud tags are not updated on FortiManager.

Script

Bug ID Description

833285

Installation failed when executing multiple Jinja scripts.

Services

Bug ID Description
846689 Firmware Template is missing FSW 1024E/T1024E platforms.

938365

FortiManager's GUI does not display an option under FortiGuard Settings to support the 7.2 version for FortiClient and FortiMail.
980334 "Download to Excel" option on Licensing Status under the FortiGuard does not work.

System Settings

Bug ID Description

853429

Creating FortiManager's configuration backup via scp cannot be done.
966148 RADIUS remote users are unable to successfully install changes to FortiGates.

Common Vulnerabilities and Exposures

Visit https://fortiguard.com/psirt for more information.

Bug ID CVE references

900221

FortiManager 7.0.11 is no longer vulnerable to the following CVE Reference:

  • CVE-2023-36554

968793

FortiManager 7.0.11 is no longer vulnerable to the following CVE Reference:

  • CVE-2023-47542
Previous
Next

Resolved Issues

The following issues have been fixed in 7.0.11. To inquire about a particular bug, please contact Customer Service & Support.

AP Manager

Bug ID Description

906061

It takes a significant amount of time to assign a profile to each FortiAPs.
974444 DNS server for SSIDs gets resets after importing AP Profile.
979129 Unable to export AP list form AP Manager to excel or CSV; the option is grayed out.

982548

FortiGate configuration install may fail with a reason "Need to unset channel list in radio-1 first."

Device Manager

Bug ID

Description
789655 FortiManager BGP Template does not support the "set-route-tag" option in the "route-maps".
838462 Adding device using "Add Model HA Cluster" feature failed as FortiManager does not allow "virtual switch interfaces" being used as "heartbeat interfaces".

871334

973064

Installation to FortiGate with NP7 Acceleration feature enabled might fail when FortiManager attempted to modify the QoS settings. Changing the 'default-qos-type' to values other than its default may result in a FortiGate reboot (FortiOS Behaviour).
880934 FortiManager reverts Syslog mode settings on local FortiGates (when FortiGates are in FIPS mode).
896367 The geographic coordination config of FortiGates on Device Manager is being reset to 0,0 after a certain period of time.
899903 FortiManager GUI does not list all NTP interfaces.
920394 Installation failed due to the incorrect install order during ZTP.
922543 FortiManager attempts to unset authentication mode in OSPF settings.
923808 Even with the "set dhcp-relay-request-all-server enable" option enabled, FortiManager does not keep the DHCP server & relay configurations on the same interface.
926069 Unable to add devices to the Device Group using "Add to Existing Group(s)".
936168 Unable to assign Device Group to the Firmware Template.
966118 FortiManager tries to purge all entries under table "system global split-port-mode" for its System template.
978503 Unable to select internet-service-custom on device level setting.

FortiSwitch Manager

Bug ID Description
967213 While attempting to deploy a FortiSwitch template to a model device, FortiManager generates the following error message: "VLAN interface does not match FortiLink."

Others

Bug ID Description
583349

FortiManager does not provide support for image upgrades on "ONDEMAND" devices.

897157

Unexpected changes in existing static routes created by static route template after upgrade to 7.0.7, 7.2.2, 7.4.0.
921273 Unable to upgrade ADOMs due to the XSS vulnerability characters check on wireless-controller.
935430 When FortiAnalyzer is managed by FortiManager and FortiManager's local logs are being sent to FortiAnalyzer, installing PP to FortiGates may display the following message: "Confirm Deletion FortiManager is going to sync the following device deletion to FortiAnalyzer,...".

982564

When upgrading the root ADOM, the process might fail with the following error message: "...The string contains XSS vulnerability characters...".

Policy and Objects

Bug ID Description
854359 An installation error occurs when FortiManager attempts to install wildcard FQDN addresses "mzstatic-apple" and "cdn-apple" within the "custom-deep-inspection" SSL-SSH profile.
888798 Changing deep inspection ssl-ssh-profile to "inspect all ports" may cause installation error.

938019

Policy Package Status not changed on modification of nested group used in policy block.
945853 FortiManager doesn't sync previously deleted EMS tags.
963008 Impossible to merge duplicate objects.
966495

In FortiManager v7.0.10, whether it's a fresh setup or an upgrade, a "copy failed error" occurs due to the absence of the default "sd-wan" interface. This may happen on an existing 6.4 ADOM or when attempting to create a new ADOM v6.4.

968847

Installing VPN IPsec tunnel from FortiManager failed due to the following error message: "ipsec interface ... is used by switchctl".

972392

Users do not receive a proper warning when creating a firewall address with the IP address '0.0.0.0/0.'
986262 EMS Cloud tags are not updated on FortiManager.

Script

Bug ID Description

833285

Installation failed when executing multiple Jinja scripts.

Services

Bug ID Description
846689 Firmware Template is missing FSW 1024E/T1024E platforms.

938365

FortiManager's GUI does not display an option under FortiGuard Settings to support the 7.2 version for FortiClient and FortiMail.
980334 "Download to Excel" option on Licensing Status under the FortiGuard does not work.

System Settings

Bug ID Description

853429

Creating FortiManager's configuration backup via scp cannot be done.
966148 RADIUS remote users are unable to successfully install changes to FortiGates.

Common Vulnerabilities and Exposures

Visit https://fortiguard.com/psirt for more information.

Bug ID CVE references

900221

FortiManager 7.0.11 is no longer vulnerable to the following CVE Reference:

  • CVE-2023-36554

968793

FortiManager 7.0.11 is no longer vulnerable to the following CVE Reference:

  • CVE-2023-47542
Previous
Next