Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY 7.2.0
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Release Notes

    Home FortiSASE 7.2.0 Release Notes
    7.2.0
    7.4.0
    7.2.0

    Supported FortiClient features

    Supported FortiClient features

    IPsec VPN remote user connectivity

    The following table lists the FortiClient platform and version and each version's corresponding features that FortiSASE supports for IPsec VPN remote user connectivity:

    Feature

    Windows 7.2.14

    macOS 7.2.14

    Diagnostic logs on-demand requests from FortiSASE

    Digital experience monitoring agent*

    FortiGuard Forensics Analysis*

    Access

    Autoconnect to FortiSASE using Microsoft Entra ID credentials

    Autoconnect to FortiSASE using SAML single sign on (SSO)

    Bypass FortiSASE using application-based split tunnel

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via DNS server

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via DHCP server

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via local subnet

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via ping server

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via public IP address

    Endpoint profile assignment based on Microsoft Entra ID groups

    Endpoint profile change notifications

    Endpoint telemetry

    Endpoint VPN connectivity notifications

    Endpoint VPN disconnection by disabling management connection from FortiSASE

    External browser as user-agent for SAML login

    Force always on VPN

    IPsec VPN to FortiSASE using IKEv2, Preshared Key, and SAML

    IPsec VPN to FortiSASE using IKEv2, Preshared Key, and Local user

    Network lockdown

    Pre-logon VPN

    Show zero trust network access (ZTNA) tags on FortiClient

    Split DNS

    FSSO

    FortiClient SSO mobility agent

    Protection

    Antiransomware

    Next generation antivirus (AV) – real-time AV and cloud malware protection

    Removable media access control

    FortiClient (macOS) does not support rules. It only supports allow and block actions.

    Removable media access control – notify endpoint of blocks

    Vulnerability scan

    Vulnerability scan - event-based scan

    Sandbox

    Sandboxing - on-premise and FortiSASE Cloud Sandbox

    ZTNA

    ZTNA remote access

    ZTNA tagging rules

    * Requires Advanced or Comprehensive subscription

    SSL VPN remote user connectivity

    The following table lists the FortiClient platform and version and each version's corresponding features that FortiSASE supports for SSL VPN remote user connectivity:

    Feature

    Windows 7.2.14

    macOS 7.2.14

    Android

    iOS

    Diagnostic logs on-demand requests from FortiSASE

    Digital experience monitoring agent*

    FortiGuard Forensics Analysis*

    Access

    Autoconnect to FortiSASE using Microsoft Entra ID credentials

    Autoconnect to FortiSASE using SAML single sign on (SSO)

    Bypass FortiSASE using application-based split tunnel

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via DNS server

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via DHCP server

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via local subnet

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via ping server

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via public IP address

    Endpoint profile assignment based on Microsoft Entra ID groups

    Endpoint profile change notifications

    Endpoint telemetry

    Endpoint VPN connectivity notifications

    Endpoint VPN disconnection by disabling management connection from FortiSASE

    External browser as user-agent for SAML login

    Force always on VPN

    FortiClient (iOS) does not disable the VPN button instantly. You must navigate away from the VPN page to disable the VPN button.

    Network lockdown

    Pre-logon VPN

    Show zero trust network access (ZTNA) tags on FortiClient

    Split DNS

    For split-tunnel VPN, DNS request can be routed to the split-tunnel VPN via DNS suffix.

    SSL VPN connection remains active after endpoint has been idle

    SSL VPN support for DTLS**

    SSL VPN to FortiSASE

    FSSO

    FortiClient SSO mobility agent

    Protection

    Antiransomware

    Next generation antivirus (AV) – real-time AV and cloud malware protection

    Removable media access control

    FortiClient (macOS) does not support rules. It only supports allow and block actions.

    Removable media access control – notify endpoint of blocks

    Vulnerability scan

    Vulnerability scan - event-based scan

    Sandbox

    Sandboxing - on-premise and FortiSASE Cloud Sandbox

    On-premise only

    ZTNA

    ZTNA remote access

    ZTNA tagging rules

    * Requires Advanced or Comprehensive subscription

    ** DTLS support is enabled by default for existing and new FortiSASE instances.

    Previous
    Next

    Supported FortiClient features

    Supported FortiClient features

    IPsec VPN remote user connectivity

    The following table lists the FortiClient platform and version and each version's corresponding features that FortiSASE supports for IPsec VPN remote user connectivity:

    Feature

    Windows 7.2.14

    macOS 7.2.14

    Diagnostic logs on-demand requests from FortiSASE

    Digital experience monitoring agent*

    FortiGuard Forensics Analysis*

    Access

    Autoconnect to FortiSASE using Microsoft Entra ID credentials

    Autoconnect to FortiSASE using SAML single sign on (SSO)

    Bypass FortiSASE using application-based split tunnel

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via DNS server

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via DHCP server

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via local subnet

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via ping server

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via public IP address

    Endpoint profile assignment based on Microsoft Entra ID groups

    Endpoint profile change notifications

    Endpoint telemetry

    Endpoint VPN connectivity notifications

    Endpoint VPN disconnection by disabling management connection from FortiSASE

    External browser as user-agent for SAML login

    Force always on VPN

    IPsec VPN to FortiSASE using IKEv2, Preshared Key, and SAML

    IPsec VPN to FortiSASE using IKEv2, Preshared Key, and Local user

    Network lockdown

    Pre-logon VPN

    Show zero trust network access (ZTNA) tags on FortiClient

    Split DNS

    FSSO

    FortiClient SSO mobility agent

    Protection

    Antiransomware

    Next generation antivirus (AV) – real-time AV and cloud malware protection

    Removable media access control

    FortiClient (macOS) does not support rules. It only supports allow and block actions.

    Removable media access control – notify endpoint of blocks

    Vulnerability scan

    Vulnerability scan - event-based scan

    Sandbox

    Sandboxing - on-premise and FortiSASE Cloud Sandbox

    ZTNA

    ZTNA remote access

    ZTNA tagging rules

    * Requires Advanced or Comprehensive subscription

    SSL VPN remote user connectivity

    The following table lists the FortiClient platform and version and each version's corresponding features that FortiSASE supports for SSL VPN remote user connectivity:

    Feature

    Windows 7.2.14

    macOS 7.2.14

    Android

    iOS

    Diagnostic logs on-demand requests from FortiSASE

    Digital experience monitoring agent*

    FortiGuard Forensics Analysis*

    Access

    Autoconnect to FortiSASE using Microsoft Entra ID credentials

    Autoconnect to FortiSASE using SAML single sign on (SSO)

    Bypass FortiSASE using application-based split tunnel

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via DNS server

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via DHCP server

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via local subnet

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via ping server

    Exempt endpoint from FortiSASE autoconnect when endpoint is on-net via public IP address

    Endpoint profile assignment based on Microsoft Entra ID groups

    Endpoint profile change notifications

    Endpoint telemetry

    Endpoint VPN connectivity notifications

    Endpoint VPN disconnection by disabling management connection from FortiSASE

    External browser as user-agent for SAML login

    Force always on VPN

    FortiClient (iOS) does not disable the VPN button instantly. You must navigate away from the VPN page to disable the VPN button.

    Network lockdown

    Pre-logon VPN

    Show zero trust network access (ZTNA) tags on FortiClient

    Split DNS

    For split-tunnel VPN, DNS request can be routed to the split-tunnel VPN via DNS suffix.

    SSL VPN connection remains active after endpoint has been idle

    SSL VPN support for DTLS**

    SSL VPN to FortiSASE

    FSSO

    FortiClient SSO mobility agent

    Protection

    Antiransomware

    Next generation antivirus (AV) – real-time AV and cloud malware protection

    Removable media access control

    FortiClient (macOS) does not support rules. It only supports allow and block actions.

    Removable media access control – notify endpoint of blocks

    Vulnerability scan

    Vulnerability scan - event-based scan

    Sandbox

    Sandboxing - on-premise and FortiSASE Cloud Sandbox

    On-premise only

    ZTNA

    ZTNA remote access

    ZTNA tagging rules

    * Requires Advanced or Comprehensive subscription

    ** DTLS support is enabled by default for existing and new FortiSASE instances.

    Previous
    Next