Bug in self-registration of tokens and SMS registration cannot be disabled, although the option is available.

FSSO - LDAP user/group lookup is broken by addition of remote LDAP for computer-based authentication.

The timestamp of the account status for lockout is Greenwich Mean Time 00:00 regardless of system time.

Token transfer fails if includes deprovisioned token(registration id = null) and FortiAuthenticator throws an unknown error.

FSSO self-service portal does not create FSSO session upon end user login.

FortiAuthenticator cluster is inconsistently accessible via HA interfaces from outside the HA subnet.

Importing Local Users from CSV - FortiAuthenticator LB shows 'In Sync with Anomalies'.

Kerberos not working for AES.

Cannot import all FTK hardware tokens from the same purchase order; need to add them all manually.

HA failover does not work reliably after maintenance mode is disabled on the high priority node.

FortiAuthenticator users certs marked as revoked even after expiry date. Deleting is prohibited for some and it produces browser's console errors.

FortiAuthenticator GUI cannot show how many users on every group.

FortiAuthenticator HA: cluster out of sync if custom RADIUS dictionary is uploaded; auth breaks.

/api/v1/pushauth/: the processing of the response is delayed.

Cloud-init: DHCP client stays resident rather than exiting after boot as intended.

Oauth setting permissions are missing.

No popup error if HA table mismatched.

LB HA primary locked SQL database around the same time the disk load-balancer became full.

Unable to properly config postgres for memory/cache if config backup is used.

Unable to change password of remote user unless imported in FortiAuthenticator.

Password reset does not work for remote LDAP user if the password contains 6 characters or less.

Dump when adding LDAP uid to a uid.

HA cluster with load balancer initial setup causes secondary cluster member to crash.

This post REST API call fails to activate the FortiGuard messaging license.

Google Workspace open LDAP crashes when we try to change password.

Trying to get OAuth authorization code for a user with a cloud FortiToken causes django to crash.

FIDO2 authentication not compatible with Apple's WiFi popup.

Power supplies show voltage input fault on both CLI and GUI.

Token challenge not sent to remote RADIUS server when TACACS+ is used with LDAP realm+ chained token.

FortiAuthenticator does not support admin OIDs from FORTINET-CORE-MIB properly.

FSSO Server restart takes too long when global pre-filter gets modified.

Azure remote IdP authentication fails if FortiAuthenticator FQDN contains upper case.

When FortiAuthenticator has a RADIUS client set as subnet; RADIUS accounting disconnect messages are not sent.

FortiAuthenticator joining domain and using the incorrect domain name (DNS) if the name is the same in several LDAP servers.

REST API script is unable to modify user's info when yubikey is assigned.

Enable Django auto-translation for any end-user pages.

Incorrect order of the fields displayed on change_password_remote page for remote users.

Usage Profile "TIME USAGE=Time used" is not triggering COA or a disconnect request to FortiGate.

FortiAuthenticator as LDAP server cannot export admin users from local user base.

Read-only admin profile cannot view local/remote users; error 500.

The lockout policy does not appear to apply to username/token submissions to the /auth API endpoint.

Nutanix AHV KVM based Hypervisor- upgrading FortiAuthenticator from 6.0.4 to 6.1.x fails and hangs on "Waiting for Database".

CLI restore-admin command needs improvement.

SCEP - Encryption/hash compatibility with clients.

SSL connection failed when the certificate expired issue is not explicit enough.

CLI 'execute backup config ftp' upload problem when a path is provided.

SCEP returns 200 on bad requests.

CLI 'execute backup config tftp' (also ftp) with encryption password does not result in encrypted backup.

Changing from maint-mode-no-sync to maint-mode-sync does not appear to restore syncing.

Local user CSV export does not handle commas.

CLI "get disk *" command fails on KVM.

500k+ users- Secondary's SNMP SQL query to obtain user count is obnoxiously slow (postgres needs vacuum full).

Remove SSO on legacy self-service portal.

Seek confirmation from FortiAuthenticator admin when restoring configuration via GUI.

Redirect FortiAuthenticator to a new IP when admin changes the IP through which s/he is accessing it in a browser.

LB - Toggling LB off and back on in an existing cluster can impact availability for hours/days.

Send SNMP trap when active HA master detects that passive unit stopped syncing.

IAM username validation not consistent in REST API.

PCI DSS 2FA shows different page for user that does not exist.

404 Not Found when we Resend email or SMS Message.

Failed auth after changing port on secure LDAP server locks radiusd and prevents it from being killed.

RADIUS auths fail if no port on FortiAuthenticator is assigned an IPv4 address.

Logging into the CLI with incorrect password on the HA secondary gives bunch of SQL errors.

HA cluster changing secret on primary to match secondary causes the webserver to crash on the secondary.

Data persistence for authentication activity widget.

Sponsor admin profile should be read-only.