Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

Known issues

This section lists the known issues of this release, but is not a complete list. For inquires about a particular bug, please visit the Fortinet Support website.

Bug ID

Description

449443 FortiAuthenticator Agent For Microsoft Windows does not display the user credentials when access the server through RDP.
467883 RDP Users prompted for credentials twice and failing the second time due to token reuse (if they don't wait).
478985 FortiAuthenticator Windows Agent sometimes doesn't see the domain name and user is not able to log in.
485396 Sponsor/Admin can place created Guest users into any group.
528231 Log showing Can not add any more users because limit of 1100 has been reached.
548689 Don't delete a revoked local service cert until expiry.
573346 FortiAuthenticator delays forwarding auth request to remote RADIUS.
575261 RADIUS authentication is successful when using an invalid realm.
576691 Default realm allowing RADIUS users to authenticate using non-existant realms.
586570 FortiToken self-reprovision fails when token does not belong to product, allows user/admin to login without 2FA.
586851 The HTTP of the FortiAuthenticator cannot be closed.
587113 RADIUS daemon needs to be restarted after adding a custom dictionary.
588346 An expired certificate is delivered toward WiFi authenticated users.
591227 API user with 2FA unable to authenticate on subsequent attempts after inputting incorrect code on the first try.
592837 Sponsor Accounts Can add Guest User Accounts to non guest Groups.
593089 Log filter limitation.
601554 Delay in first OTP verification, REST API.
601603 CLI only supports configuring interfaces port1 - port4.
604156 Packet captures on OCI often seem to be corrupt.
604270 HTTP access logs doesn't include the source IP address.
604924 SAML SSO/Proxy metadata download fails with invalid_xml.
606760 HA cluster, FortiAuthenticator GUI does not reflect correct HA status when the active cluster member fails and the standby member becomes the active member.
608459 Secondary member of the cluster does not send Access-Challenge to RADIUS client.
610360 FortiAuthenticator agent doesn't send the domain information once checking the token code.
610833 Passwords containing two consecutive backslashes ( \\ ) are not handled correctly by FortiAuthenticator's LDAP server.
611722 When FortiAuthenticator is an LDAP server, changing existing LDAP local user UID and selecting More... causes GUI crash.
613578 SAML IdP Proxy to ADFS is unable to return group memberships.
614673 Remote User Sync Rule Preview mapping for mobile number shows attribute even if field is wrongly formatted.
616181 SAML IdP - Post-login debug page does not show relevant SAML attributes.
617890 REST API - Cannot retrieve complete schema of everything.
618537 RADIUS SSO Sessions not generated when using UPN as login name for multiple domains/realms.
623421 FortiAuthenticator 6.1.0 Remote User Sync Rules GUI - add user group.
624293 FortiAuthenticator displays UTC instead of configured time.
626926 Remote User Sync Rule downgrades the role of a local admin with identical username.

627230

FTM push notifications fail when using the local realm for remote users.

627608 6.1.0 GUI - log search in /debug section always returns No results found.
627764 Certificate has been renewed but old certificate hasn't been revoked.
627917 Remote user authenticate in wrong user group.
628027 While downloading the debug logs from Web GUI, receiving Gateway timeout error message.
628815 Remote SAML user import from Azure AD fails authorization issue.
629289 Lost GUI access.
630041 FortiAuthenticator FSSO - TS Agent sessions stuck at zero after server reboot until FSSOTA service is restarted.

Known issues

This section lists the known issues of this release, but is not a complete list. For inquires about a particular bug, please visit the Fortinet Support website.

Bug ID

Description

449443 FortiAuthenticator Agent For Microsoft Windows does not display the user credentials when access the server through RDP.
467883 RDP Users prompted for credentials twice and failing the second time due to token reuse (if they don't wait).
478985 FortiAuthenticator Windows Agent sometimes doesn't see the domain name and user is not able to log in.
485396 Sponsor/Admin can place created Guest users into any group.
528231 Log showing Can not add any more users because limit of 1100 has been reached.
548689 Don't delete a revoked local service cert until expiry.
573346 FortiAuthenticator delays forwarding auth request to remote RADIUS.
575261 RADIUS authentication is successful when using an invalid realm.
576691 Default realm allowing RADIUS users to authenticate using non-existant realms.
586570 FortiToken self-reprovision fails when token does not belong to product, allows user/admin to login without 2FA.
586851 The HTTP of the FortiAuthenticator cannot be closed.
587113 RADIUS daemon needs to be restarted after adding a custom dictionary.
588346 An expired certificate is delivered toward WiFi authenticated users.
591227 API user with 2FA unable to authenticate on subsequent attempts after inputting incorrect code on the first try.
592837 Sponsor Accounts Can add Guest User Accounts to non guest Groups.
593089 Log filter limitation.
601554 Delay in first OTP verification, REST API.
601603 CLI only supports configuring interfaces port1 - port4.
604156 Packet captures on OCI often seem to be corrupt.
604270 HTTP access logs doesn't include the source IP address.
604924 SAML SSO/Proxy metadata download fails with invalid_xml.
606760 HA cluster, FortiAuthenticator GUI does not reflect correct HA status when the active cluster member fails and the standby member becomes the active member.
608459 Secondary member of the cluster does not send Access-Challenge to RADIUS client.
610360 FortiAuthenticator agent doesn't send the domain information once checking the token code.
610833 Passwords containing two consecutive backslashes ( \\ ) are not handled correctly by FortiAuthenticator's LDAP server.
611722 When FortiAuthenticator is an LDAP server, changing existing LDAP local user UID and selecting More... causes GUI crash.
613578 SAML IdP Proxy to ADFS is unable to return group memberships.
614673 Remote User Sync Rule Preview mapping for mobile number shows attribute even if field is wrongly formatted.
616181 SAML IdP - Post-login debug page does not show relevant SAML attributes.
617890 REST API - Cannot retrieve complete schema of everything.
618537 RADIUS SSO Sessions not generated when using UPN as login name for multiple domains/realms.
623421 FortiAuthenticator 6.1.0 Remote User Sync Rules GUI - add user group.
624293 FortiAuthenticator displays UTC instead of configured time.
626926 Remote User Sync Rule downgrades the role of a local admin with identical username.

627230

FTM push notifications fail when using the local realm for remote users.

627608 6.1.0 GUI - log search in /debug section always returns No results found.
627764 Certificate has been renewed but old certificate hasn't been revoked.
627917 Remote user authenticate in wrong user group.
628027 While downloading the debug logs from Web GUI, receiving Gateway timeout error message.
628815 Remote SAML user import from Azure AD fails authorization issue.
629289 Lost GUI access.
630041 FortiAuthenticator FSSO - TS Agent sessions stuck at zero after server reboot until FSSOTA service is restarted.