Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY 7.2.10
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Release Notes

    Home FortiManager 7.2.10 Release Notes
    7.2.10
    7.6.6
    7.6.5
    7.6.4
    7.6.3
    7.6.2
    7.6.1
    7.6.0
    7.4.10
    7.4.9
    7.4.8
    7.4.7
    7.4.6
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.12
    7.2.11
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.5
    6.2.3
    6.2.2
    6.2.1
    6.2.0
    6.0.12
    6.0.11
    6.0.10
    6.0.9
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.6.11
    5.6.10
    5.6.9
    5.6.8
    5.6.7
    5.6.6
    5.6.5
    5.6.4
    5.6.3
    5.6.2
    5.6.1
    5.6.0
    5.6.0
    5.4.7
    5.4.6
    5.4.5
    5.4.4
    5.4.3
    5.4.2
    5.4.1
    5.4.0
    5.2.10
    5.2.9
    5.2.7
    5.2.6
    5.2.4
    5.2.3
    5.2.2
    5.2.1
    5.2.0
    5.0.12
    5.0.11
    5.0.10
    5.0.9
    5.0.8
    5.0.7
    5.0.6
    5.0.5
    5.0.4
    5.0.3

    Known issues

    Known issues

    Known issues are organized into the following categories:

    To inquire about a particular bug or to report a bug, please contact Fortinet Customer Service & Support.

    New known issues

    The following issues have been identified in version 7.2.10.

    Device Manager

    Bug ID

    Description

    1128094

    After upgrading to v7.2.10, the entries under Network Monitor > Routing (Static & Dynamic) no longer appear.

    Global ADOM

    Bug ID

    Description
    1141123

    Installing the Global Header Policy fails with the error: "invalid value". This issue has been observed after upgrading FortiManager to v7.2.10.

    Workaround:

    1. Unset the uuids of all addresses and addrss groups in Global

      # execute fmpolicy print-adom-object Global 140 all

      # execute fmpolicy print-adom-object Global 142 all

      • and copy them to new file in Notepad++

      • use regex replace all ^set uuid.*$ with unset uuid

    2. Clone all used global addresses and services to have different name from the local ones and replace them in the global policies.

    3. Assign the changes.

    4. Install.

    Others

    Bug ID

    Description
    1093040 SDWAN template import failed when meta variable has the default value set.

    1142559

    When attempting to upload the firmware image from FortiGuard, FortiManager returns the following error "Code: -1, Invalid image". This issue has primarily been observed on FortiGate hardware platforms running special build firmware versions, where the image contains an encrypted MBR—such as on the FortiGateRugged-70G-5G-Dual, FortiGateRugged-70G, FortiGateRugged-50G-5G, FortiWiFi-70G models.

    Existing known issues

    The following issues have been identified in a previous version of FortiManager and remain in FortiManager 7.2.10.

    AP Manager

    Bug ID

    Description
    1010632 Floor Map shows wrong AP status and does not show the rest of APs when adding a new AP.

    Device Manager

    Bug ID

    Description
    894948 FortiManager fails to push the FortiAnalyzer override settings to the FortiGate.
    980362 The Firmware Version column in Device Manager incorrectly shows 'Upgrading FortiGate from V1 to V2' even after a successful upgrade has been completed.
    1004220 The SD-WAN Overlay template creates route-map names that exceed the 35-character limit.

    1122481

    When a FortiGate HA failover occurs, making any configuration changes on the FortiGate HA may cause FortiManager to attempt to purge the firewall policies on the device during the installation (Install Device Settings (only)).

    Workaround:

    Always install Policy Package and Device Settings, even when only device config is changed. Review the Installation preview carefully.

    1124171

    FortiManager retrieves the device configuration from the ZTP FortiGate after the image upgrade is performed, due to the 'Enforce Firmware' feature. This action erases all settings in the device database on the FortiManager side, and as a result, AutoLink installation will not be completed successfully.

    Others

    Bug ID

    Description
    703585 FortiManager may return 'Connection aborted' error with JSON API request.
    777831 When FortiAnalyzer is added as a managed device to FortiManager, "Incident & Event" Tile will be displayed instead of the "FortiSoC".
    968647

    On the Log View (when FortiAnalyzer is added to FortiManager) changing time filters,first request always fails but second one is successful.

    Workaround:

    Use FortiAnalyzer's Log View to view logs.
    1019261

    Unable to upgrade ADOM from 7.0 to 7.2, due to the error "Do not support urlfilter-table for global scope webfilter profile".

    Workaround:

    Run the following script against the ADOM DB: 

    config webfilter profile
    edit "g-default"
        config web
            unset urlfilter-table
        end
    next
end
    1029677

    Unable to upgrade ADOM from v6.4 to v7.0 due to global scope error in webfilter profile.

    Workaround:

    Rename the "g-default" to "g-test" > save. It can be deleted after that. Once ADOM upgraded, new g-default is created.

    1052341

    Not able to select Address type MAC in SD-WAN rule source address.

    Policy & Objects

    Bug ID

    Description
    971065 When the number of Custom Internet Services exceeds 256, installation fails due to this limitation.
    967271 Installation failed when trying to remove firewall internet-service-name objects.
    1029921 Under the "Web Application Firewall" security profiles,users are unable to disable the signatures via GUI.
    1030914 Copy and paste function in GUI removes name of the policy rule and adds unwanted default security profiles (SSL-SSH no-inspection and default PROTOCOL OPTIONS).
    845022 SDN Connector failed to import objects from VMware VSphere.

    VPN Manager

    Bug ID

    Description
    784385

    If policy changes are made directly on the FortiGates, the subsequent PP import creates faulty dynamic mappings for VPN manager.

    Workaround:

    It is strongly recommended to create a fresh backup of the FortiManager's configuration prior to the workaround. Perform the following command to check & repair the FortiManager's configuration database.

    diagnose cdb check policy-packages <adom>

    After running this command, FortiManager will remove the invalid mappings of vpnmgr interfaces.
    1042701 The traffic view page for the full mesh does not display the FortiGate and the external gateway.
    Previous
    Next

    Known issues

    Known issues

    Known issues are organized into the following categories:

    To inquire about a particular bug or to report a bug, please contact Fortinet Customer Service & Support.

    New known issues

    The following issues have been identified in version 7.2.10.

    Device Manager

    Bug ID

    Description

    1128094

    After upgrading to v7.2.10, the entries under Network Monitor > Routing (Static & Dynamic) no longer appear.

    Global ADOM

    Bug ID

    Description
    1141123

    Installing the Global Header Policy fails with the error: "invalid value". This issue has been observed after upgrading FortiManager to v7.2.10.

    Workaround:

    1. Unset the uuids of all addresses and addrss groups in Global

      # execute fmpolicy print-adom-object Global 140 all

      # execute fmpolicy print-adom-object Global 142 all

      • and copy them to new file in Notepad++

      • use regex replace all ^set uuid.*$ with unset uuid

    2. Clone all used global addresses and services to have different name from the local ones and replace them in the global policies.

    3. Assign the changes.

    4. Install.

    Others

    Bug ID

    Description
    1093040 SDWAN template import failed when meta variable has the default value set.

    1142559

    When attempting to upload the firmware image from FortiGuard, FortiManager returns the following error "Code: -1, Invalid image". This issue has primarily been observed on FortiGate hardware platforms running special build firmware versions, where the image contains an encrypted MBR—such as on the FortiGateRugged-70G-5G-Dual, FortiGateRugged-70G, FortiGateRugged-50G-5G, FortiWiFi-70G models.

    Existing known issues

    The following issues have been identified in a previous version of FortiManager and remain in FortiManager 7.2.10.

    AP Manager

    Bug ID

    Description
    1010632 Floor Map shows wrong AP status and does not show the rest of APs when adding a new AP.

    Device Manager

    Bug ID

    Description
    894948 FortiManager fails to push the FortiAnalyzer override settings to the FortiGate.
    980362 The Firmware Version column in Device Manager incorrectly shows 'Upgrading FortiGate from V1 to V2' even after a successful upgrade has been completed.
    1004220 The SD-WAN Overlay template creates route-map names that exceed the 35-character limit.

    1122481

    When a FortiGate HA failover occurs, making any configuration changes on the FortiGate HA may cause FortiManager to attempt to purge the firewall policies on the device during the installation (Install Device Settings (only)).

    Workaround:

    Always install Policy Package and Device Settings, even when only device config is changed. Review the Installation preview carefully.

    1124171

    FortiManager retrieves the device configuration from the ZTP FortiGate after the image upgrade is performed, due to the 'Enforce Firmware' feature. This action erases all settings in the device database on the FortiManager side, and as a result, AutoLink installation will not be completed successfully.

    Others

    Bug ID

    Description
    703585 FortiManager may return 'Connection aborted' error with JSON API request.
    777831 When FortiAnalyzer is added as a managed device to FortiManager, "Incident & Event" Tile will be displayed instead of the "FortiSoC".
    968647

    On the Log View (when FortiAnalyzer is added to FortiManager) changing time filters,first request always fails but second one is successful.

    Workaround:

    Use FortiAnalyzer's Log View to view logs.
    1019261

    Unable to upgrade ADOM from 7.0 to 7.2, due to the error "Do not support urlfilter-table for global scope webfilter profile".

    Workaround:

    Run the following script against the ADOM DB: 

    config webfilter profile
    edit "g-default"
        config web
            unset urlfilter-table
        end
    next
end
    1029677

    Unable to upgrade ADOM from v6.4 to v7.0 due to global scope error in webfilter profile.

    Workaround:

    Rename the "g-default" to "g-test" > save. It can be deleted after that. Once ADOM upgraded, new g-default is created.

    1052341

    Not able to select Address type MAC in SD-WAN rule source address.

    Policy & Objects

    Bug ID

    Description
    971065 When the number of Custom Internet Services exceeds 256, installation fails due to this limitation.
    967271 Installation failed when trying to remove firewall internet-service-name objects.
    1029921 Under the "Web Application Firewall" security profiles,users are unable to disable the signatures via GUI.
    1030914 Copy and paste function in GUI removes name of the policy rule and adds unwanted default security profiles (SSL-SSH no-inspection and default PROTOCOL OPTIONS).
    845022 SDN Connector failed to import objects from VMware VSphere.

    VPN Manager

    Bug ID

    Description
    784385

    If policy changes are made directly on the FortiGates, the subsequent PP import creates faulty dynamic mappings for VPN manager.

    Workaround:

    It is strongly recommended to create a fresh backup of the FortiManager's configuration prior to the workaround. Perform the following command to check & repair the FortiManager's configuration database.

    diagnose cdb check policy-packages <adom>

    After running this command, FortiManager will remove the invalid mappings of vpnmgr interfaces.
    1042701 The traffic view page for the full mesh does not display the FortiGate and the external gateway.
    Previous
    Next