FortiAuthenticator IdP proxy fails to proxy SAML assertions received from remote IdP when user attribute with same name exists.

FortiAuthenticator Agent does not support UPN username format (as imported to the FortiAuthenticator).

HA failover does not work reliably.

Raid widget is showing wrong status.

Usage Profile "TIME USAGE=Time used" is not triggering COA or disconnect request to FortiGate.

When signing a CSR via SCEP, FortiAuthenticator returns "Unable to sign request, Unable to find a unique name".

6.3.2 HTTP GUI service disabled produces a 403 for IdP metadata URL.

Private IPv6 address added to SSO list instead of public IPv6 when received from a RADIUS accounting source.

Alcatel RADIUS VSA dictionary needs to be updated.

Limit of 64 characters in SAN DNS field for CSR/Certificate creation.

Change in the password complexity rule is not taking effect.

SMS : No update on number of sent messages on the dashboard.

FortiToken mobile license status on LB nodes shows Unknown.

When FortiAuthenticator has a RADIUS client set as subnet, RADIUS accounting disconnect messages are not sent.

Groups sorting differences when importing LDAP groups in SSO Groups and FortiGate filtering.

Column resize or sort does not work properly in tables of FortiAuthenticator.

SMTP error messages does not provide accurate information.

LDAP with G Suite sometime requires trusting multiple CA certificates.

HA Connection status still shows connected even when the primary FortiAuthenticator is already shutdown.

FortiToken mobile activation code not sent or wrong credentials when authentication activity exceeds 14 per minute.

CLI "get disk *" commands fail on KVM.

No log for policy priority change.

LB HA: Unnecessary deletion on load-balancer causes really long resync delays.

Changing from maint-mode-no-sync to maint-mode-sync does not appear to restore syncing.

SCEP returns 200 on bad requests.

[500k+ users] Secondary's SNMP SQL query to obtain user count is obnoxiously slow (postgres needs vacuum full).

LB should not delete certificates if they are used by config_setting table but not synced.

Remote RADIUS case sensitive does not work well.

Extraneous "No search results" message appears under RADIUS Attributes section in user group page.

FortiToken mobile for a remote radius user on the FortiAuthenticator server and also on the FortiAuthenticator client fails to work.

This post REST API call fails to activate the FortiGuard messaging license.

Forgot password token verification email has misleading title and description.

500 Internal server error when end user has duplicate certificate bindings.

Revoked FIDO token should display time in local time and not UTC.

Unable to see MAC devices limit in Portals settings for Firefox.

HOTP token out of sync is always allowed in to self-service portal.

Missing username in Oauth Request causes 500 server error.

FIDO pop-up message when saving user local information.

SCEP gives wrong validation message if "Renewal Days" expiry is left empty.

G suite open LDAP crashes when we try to change password.

PCI enabled FIDO authentication portal does not work with a FIDO user.

LDAP users are able to enable security question through Self-service portal without actually setting a security question.

GUI crashes during password recovery using Email address method if the Email is not associated with any user account.

Sync rule with multiple OTP assignment methods fails to sync users over if they are missing any one of the LDAP attributes.

Editing security question results in duplicate UI in pop-up.

api/v1/ssoauth/ API request returns 500 internal error occassionally.

"Internal Server Error" when local user enables security question without setting the security question through captive portal.