Known issues
This section lists the known issues of this release, but is not a complete list. For inquires about a particular bug, please visit the Fortinet Support website.
Bug ID |
Description |
---|---|
730474 |
FortiAuthenticator IdP proxy fails to proxy SAML assertions received from remote IdP when user attribute with same name exists. |
733788 |
FortiAuthenticator Agent does not support UPN username format (as imported to the FortiAuthenticator). |
665384 |
HA failover does not work reliably. |
711940 |
Raid widget is showing wrong status. |
566145 |
Usage Profile "TIME USAGE=Time used" is not triggering COA or disconnect request to FortiGate. |
730640 |
When signing a CSR via SCEP, FortiAuthenticator returns "Unable to sign request, Unable to find a unique name". |
737921 |
6.3.2 HTTP GUI service disabled produces a 403 for IdP metadata URL. |
737078 |
Private IPv6 address added to SSO list instead of public IPv6 when received from a RADIUS accounting source. |
735782 |
Alcatel RADIUS VSA dictionary needs to be updated. |
731626 |
Limit of 64 characters in SAN DNS field for CSR/Certificate creation. |
737727 |
Change in the password complexity rule is not taking effect. |
721189 |
SMS : No update on number of sent messages on the dashboard. |
729674 |
FortiToken mobile license status on LB nodes shows Unknown. |
676532 |
When FortiAuthenticator has a RADIUS client set as subnet, RADIUS accounting disconnect messages are not sent. |
711721 |
Groups sorting differences when importing LDAP groups in SSO Groups and FortiGate filtering. |
712251 |
Column resize or sort does not work properly in tables of FortiAuthenticator. |
712899 |
SMTP error messages does not provide accurate information. |
723825 |
LDAP with G Suite sometime requires trusting multiple CA certificates. |
723065 |
HA Connection status still shows connected even when the primary FortiAuthenticator is already shutdown. |
736980 |
FortiToken mobile activation code not sent or wrong credentials when authentication activity exceeds 14 per minute. |
646764 |
CLI "get disk *" commands fail on KVM. |
733585 |
No log for policy priority change. |
735652 |
LB HA: Unnecessary deletion on load-balancer causes really long resync delays. |
620127 |
Changing from maint-mode-no-sync to maint-mode-sync does not appear to restore syncing. |
677932 |
SCEP returns 200 on bad requests. |
506543 |
[500k+ users] Secondary's SNMP SQL query to obtain user count is obnoxiously slow (postgres needs vacuum full). |
706422 |
LB should not delete certificates if they are used by config_setting table but not synced. |
731442 |
Remote RADIUS case sensitive does not work well. |
734462 |
Extraneous "No search results" message appears under RADIUS Attributes section in user group page. |
579174 |
FortiToken mobile for a remote radius user on the FortiAuthenticator server and also on the FortiAuthenticator client fails to work. |
506112 |
This post REST API call fails to activate the FortiGuard messaging license. |
733073 |
Forgot password token verification email has misleading title and description. |
731214 |
500 Internal server error when end user has duplicate certificate bindings. |
736017 |
Revoked FIDO token should display time in local time and not UTC. |
734034 |
Unable to see MAC devices limit in Portals settings for Firefox. |
736652 |
HOTP token out of sync is always allowed in to self-service portal. |
737638 |
Missing username in Oauth Request causes 500 server error. |
734892 |
FIDO pop-up message when saving user local information. |
712166 |
SCEP gives wrong validation message if "Renewal Days" expiry is left empty. |
613164 |
G suite open LDAP crashes when we try to change password. |
736062 |
PCI enabled FIDO authentication portal does not work with a FIDO user. |
734474 |
LDAP users are able to enable security question through Self-service portal without actually setting a security question. |
706998 |
GUI crashes during password recovery using Email address method if the Email is not associated with any user account. |
737640 |
Sync rule with multiple OTP assignment methods fails to sync users over if they are missing any one of the LDAP attributes. |
732406 |
Editing security question results in duplicate UI in pop-up. |
736670 |
api/v1/ssoauth/ API request returns 500 internal error occassionally. |
734475 |
"Internal Server Error" when local user enables security question without setting the security question through captive portal. |
736020 |
"None" option for token assignment missing in self-service portal MFA page. |