Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Release Notes

    6.0.0
    6.6.2
    6.6.1
    6.6.0
    6.5.5
    6.5.4
    6.5.3
    6.5.2
    6.5.1
    6.5.0
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.3.4
    6.3.3
    6.3.2
    6.3.1
    6.3.0
    6.2.2
    6.2.1
    6.2.0
    6.1.3
    6.1.2
    6.1.1
    6.1.0
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.5.0
    5.4.1
    5.4.0
    5.3.1
    5.3.0
    5.2.2
    5.2.1
    5.2.0
    5.1.2
    5.1.1
    5.1.0
    5.0.0
    4.3.4
    4.3.3
    4.3.2
    4.3.1
    4.3.0
    4.2.1
    4.2.0

    Known issues

    Known issues

    This section lists the known issues of this release, but is not a complete list. For inquires about a particular bug, please visit the Fortinet Support website.

    Bug ID Description
    540551 FortiAuthenticator should automatically recognize the configured IP address on ports other than port1 in Azure cloud.
    540904 LB master should ratelimit its rechecks / changelog entries generated.
    542734 SMS gateway on FortiAuthenticator is not delivering the token when used with RADIUS authentication.
    537871 Unable to authenticate LDAP attribute rfc822MailMember on FortiAuthenticator-VM.
    542808 CLI HA Status shows "Status: Error Status" on new build/factory reset FortiAuthenticator units.
    415685 FortiToken-only users can log into a service provider configured to enforce two-factor authentication if the user already has an active session.
    482900 User registration via Guest Portal requires the approver to enable radius authentication first.
    541826 Assigning a profile to an admin user that restricts the 'Administrator' permission to read-only changes the user type to Sponsor.
    532604 The Social Login Users list displays 'unknown' in the User column.
    526202 FortiAuthenticator does not check if signature of CSR is valid.
    530392 Cannot log in with social users on Guest Portal if their account has expired.
    468513 Excluding a user from SSO causes FSSO server to exit and not recover.
    536211 FortiAuthenticator should limit FSSO passwords to 15 characters since that is the limit on FortiGate.
    524131 There is a multisecond delay between queuing and sending of push notifications
    516358 SQL connections don't reliably timeout when underlying VPN tunnels time out.
    541043 SAML authentication with Azure UUID mapping does not include SSO group for user as expected.
    542094 SAML SSO cannot handle SAML assertion request: invalid information for passport-saml signature.
    519319 FortiAuthenticator VM may crash when LDAP Remote user sync rules run.
    538244 Add option for SAML IdP to send Subject NameID in "example.com\username" format.
    537628 For new deployments and after factory resets, FortiAuthenticator VM can experience a slow startup.
    528231 The FortiAuthenticator log details state "cannot add any more users because limit has been reached".
    538216 FortiAuthenticator FSSO service is unstable due to crashing DC agent daemon.
    540932 FSSOMA nested group search fails if nested via primary group.
    540933 Source IP is missing for authentication requests coming from FSSO Windows agent.
    505897 Chained token authentication with remote RADIUS server breaks PCI.
    540611 When user account gets locked because time/data usage is exceeded, FortiAuthenticator doesn't ask for a token, even if PCI is enabled.
    540587 GUI crash occurs when clicking a guest user in an LB slave.
    511093 In an HA setup, Radiusd on the LB slave crashes if a large custom RADIUS dictionary is uploaded to the master.
    538059 Importing an ecdsa-signed certificate/key causes an error dump.
    516357 Toggling load-balancing off and back on in an existing cluster can impact availability for hours/days.
    537298 For Azure, NameID assertion in SAML should reference the username instead of the UserID.
    506112 REST API call fails to activate FortiGuard Messaging license.
    536029 Deactivate the option to disable secure passwords after 30 days have passed.
    532652 Users Audit Report not working on Slave of LB cluster.
    Previous
    Next

    Known issues

    Known issues

    This section lists the known issues of this release, but is not a complete list. For inquires about a particular bug, please visit the Fortinet Support website.

    Bug ID Description
    540551 FortiAuthenticator should automatically recognize the configured IP address on ports other than port1 in Azure cloud.
    540904 LB master should ratelimit its rechecks / changelog entries generated.
    542734 SMS gateway on FortiAuthenticator is not delivering the token when used with RADIUS authentication.
    537871 Unable to authenticate LDAP attribute rfc822MailMember on FortiAuthenticator-VM.
    542808 CLI HA Status shows "Status: Error Status" on new build/factory reset FortiAuthenticator units.
    415685 FortiToken-only users can log into a service provider configured to enforce two-factor authentication if the user already has an active session.
    482900 User registration via Guest Portal requires the approver to enable radius authentication first.
    541826 Assigning a profile to an admin user that restricts the 'Administrator' permission to read-only changes the user type to Sponsor.
    532604 The Social Login Users list displays 'unknown' in the User column.
    526202 FortiAuthenticator does not check if signature of CSR is valid.
    530392 Cannot log in with social users on Guest Portal if their account has expired.
    468513 Excluding a user from SSO causes FSSO server to exit and not recover.
    536211 FortiAuthenticator should limit FSSO passwords to 15 characters since that is the limit on FortiGate.
    524131 There is a multisecond delay between queuing and sending of push notifications
    516358 SQL connections don't reliably timeout when underlying VPN tunnels time out.
    541043 SAML authentication with Azure UUID mapping does not include SSO group for user as expected.
    542094 SAML SSO cannot handle SAML assertion request: invalid information for passport-saml signature.
    519319 FortiAuthenticator VM may crash when LDAP Remote user sync rules run.
    538244 Add option for SAML IdP to send Subject NameID in "example.com\username" format.
    537628 For new deployments and after factory resets, FortiAuthenticator VM can experience a slow startup.
    528231 The FortiAuthenticator log details state "cannot add any more users because limit has been reached".
    538216 FortiAuthenticator FSSO service is unstable due to crashing DC agent daemon.
    540932 FSSOMA nested group search fails if nested via primary group.
    540933 Source IP is missing for authentication requests coming from FSSO Windows agent.
    505897 Chained token authentication with remote RADIUS server breaks PCI.
    540611 When user account gets locked because time/data usage is exceeded, FortiAuthenticator doesn't ask for a token, even if PCI is enabled.
    540587 GUI crash occurs when clicking a guest user in an LB slave.
    511093 In an HA setup, Radiusd on the LB slave crashes if a large custom RADIUS dictionary is uploaded to the master.
    538059 Importing an ecdsa-signed certificate/key causes an error dump.
    516357 Toggling load-balancing off and back on in an existing cluster can impact availability for hours/days.
    537298 For Azure, NameID assertion in SAML should reference the username instead of the UserID.
    506112 REST API call fails to activate FortiGuard Messaging license.
    536029 Deactivate the option to disable secure passwords after 30 days have passed.
    532652 Users Audit Report not working on Slave of LB cluster.
    Previous
    Next