Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Release Notes

    6.3.2
    6.6.2
    6.6.1
    6.6.0
    6.5.6
    6.5.5
    6.5.4
    6.5.3
    6.5.2
    6.5.1
    6.5.0
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.3.4
    6.3.3
    6.3.2
    6.3.1
    6.3.0
    6.2.2
    6.2.1
    6.2.0
    6.1.3
    6.1.2
    6.1.1
    6.1.0
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.5.0
    5.4.1
    5.4.0
    5.3.1
    5.3.0
    5.2.2
    5.2.1
    5.2.0
    5.1.2
    5.1.1
    5.1.0
    5.0.0
    4.3.4
    4.3.3
    4.3.2
    4.3.1
    4.3.0
    4.2.1
    4.2.0

    Known issues

    Known issues

    This section lists the known issues of this release, but is not a complete list. For inquires about a particular bug, please visit the Fortinet Support website.

    Bug ID

    Description

    723065

    HA connection status still shows connected even when the Primary FortiAuthenticator is already shutdown.

    731468

    FSSO session is not created despite successful Azure AD SAML authentication + 403 Forbidden after repeated attempts.

    701758

    Problem setting static IP address on a FortiAuthenticator-VM installed on a XenServer.

    693151

    Allow deletion of the expired user and the local service certificates.

    729018

    Concatenated style OTP is not working with Windows-AD authentication being enabled.

    622426

    MAC address parameter in portal policy should only allow MAC addresses.

    729674

    FortiToken mobile license status on LB nodes shows Unknown.

    731626

    Limit of 64 characters in SAN DNS field for CSR/Certificate creation.

    709007

    Error when importing remote LDAP user.

    726668

    A-P cluster: Link down status of the monitored interface does not trigger failover.

    711721

    Groups sorting differences when importing LDAP groups in SSO groups and FortiGate filtering.

    730640

    When signing a CSR via SCEP, FortiAuthenticator returns "Unable to sign request, Unable to find a unique name".

    712899

    SMTP error messages does not provide accurate information.

    725339

    Update 6.3.1 produces 503 server error for GUI under heavy SCEP traffic.

    665384

    HA failover does not work reliably.

    566145

    Usage Profile "TIME USAGE=Time used" is not triggering COA or disconnect request to FortiGate.

    714927

    Unable to expand FortiAuthenticator "data drive" beyond 2 TB.

    676532

    When FortiAuthenticator has a RADIUS client set as subnet, RADIUS accounting disconnect messages are not sent.

    676985

    Unable to import all FTK hardware tokens from the same purchase order; need to add them all manually.

    730474

    FortiAuthenticator IdP proxy fails to proxy SAML assertions received from a remote IdP when a user attribute with same name exists.

    697447

    Octet/ASCII conversion for all RADIUS attribute-value pair inputs.

    717175

    Local users export/import feature does not work if bcrypt hash is used.

    632629

    Smart Connect WPA2-Personal profile fails when WPA2-Enterprise settings are left in place.

    711940

    Raid widget is showing wrong status.

    592837

    Sponsor accounts can add guest user accounts to non-guest groups.

    704565

    FortiAuthenticator only applies one captive portal policy and ignores RADIUS client IP/AP IP in portal policy selection.

    692839

    Local cert for GUI rejected despite SAN field.

    691825

    SMS gateway HTTP/HTTPS - Inconsistent JSON object type used for the phone number attribute.

    669054

    Unable to install FortiAuthenticator-VM-HV 6.2.0 on server 2012 R2.
    Previous
    Next

    Known issues

    Known issues

    This section lists the known issues of this release, but is not a complete list. For inquires about a particular bug, please visit the Fortinet Support website.

    Bug ID

    Description

    723065

    HA connection status still shows connected even when the Primary FortiAuthenticator is already shutdown.

    731468

    FSSO session is not created despite successful Azure AD SAML authentication + 403 Forbidden after repeated attempts.

    701758

    Problem setting static IP address on a FortiAuthenticator-VM installed on a XenServer.

    693151

    Allow deletion of the expired user and the local service certificates.

    729018

    Concatenated style OTP is not working with Windows-AD authentication being enabled.

    622426

    MAC address parameter in portal policy should only allow MAC addresses.

    729674

    FortiToken mobile license status on LB nodes shows Unknown.

    731626

    Limit of 64 characters in SAN DNS field for CSR/Certificate creation.

    709007

    Error when importing remote LDAP user.

    726668

    A-P cluster: Link down status of the monitored interface does not trigger failover.

    711721

    Groups sorting differences when importing LDAP groups in SSO groups and FortiGate filtering.

    730640

    When signing a CSR via SCEP, FortiAuthenticator returns "Unable to sign request, Unable to find a unique name".

    712899

    SMTP error messages does not provide accurate information.

    725339

    Update 6.3.1 produces 503 server error for GUI under heavy SCEP traffic.

    665384

    HA failover does not work reliably.

    566145

    Usage Profile "TIME USAGE=Time used" is not triggering COA or disconnect request to FortiGate.

    714927

    Unable to expand FortiAuthenticator "data drive" beyond 2 TB.

    676532

    When FortiAuthenticator has a RADIUS client set as subnet, RADIUS accounting disconnect messages are not sent.

    676985

    Unable to import all FTK hardware tokens from the same purchase order; need to add them all manually.

    730474

    FortiAuthenticator IdP proxy fails to proxy SAML assertions received from a remote IdP when a user attribute with same name exists.

    697447

    Octet/ASCII conversion for all RADIUS attribute-value pair inputs.

    717175

    Local users export/import feature does not work if bcrypt hash is used.

    632629

    Smart Connect WPA2-Personal profile fails when WPA2-Enterprise settings are left in place.

    711940

    Raid widget is showing wrong status.

    592837

    Sponsor accounts can add guest user accounts to non-guest groups.

    704565

    FortiAuthenticator only applies one captive portal policy and ignores RADIUS client IP/AP IP in portal policy selection.

    692839

    Local cert for GUI rejected despite SAN field.

    691825

    SMS gateway HTTP/HTTPS - Inconsistent JSON object type used for the phone number attribute.

    669054

    Unable to install FortiAuthenticator-VM-HV 6.2.0 on server 2012 R2.
    Previous
    Next