FortiAuthenticator cluster is inconsistently accessible via HA interfaces from outside the HA subnet.

IAM username validation not consistent in REST API.

FortiAuthenticator - [Third Party] Apache Http_Server -- Precaution Upgrade.

Local user CSV export does not handle commas.

FortiAuthenticator HA: cluster out of sync if the custom RADIUS dictionary is uploaded; authentication breaks.

Support FortiToken Cloud user for OAuth authentication.

Pending or deleted CSR and revoked certificates do not sync to the LB secondary.

Minimize the use of CBC ciphersuites.

FortiAuthenticator FSSO detects FortiAuthenticator domain-join as login event, resolves workstation name to 127.0.0.1 and forwards that login.

User will not be deleted on FortiToken Cloud but deleted on FortiAuthenticator when calling the REST API endpoint: api/v1/localusers/USERID/.

Creating users via REST API with ftk_only field gives 500 error on user page when enabling password authentication.

500 internal error shows when editing the LDAP entry.

SAML IdP proxy for Azure is not working with the current Azure Portal.

Oauth Token API returns error when calling the API /oauth/token/ with FortiToken Cloud user, but FortiToken Cloud had sent push to the FortiToken Mobile.

Certificate sync doesn't work from HA cluster to the LB note.

Force password change on next logon produces 403 forbidden with SAML login.

FTC manual sync times out when user > 1000, but actually the users are synced.

FortiAuthenticator certificate verification issues (LDAPS, 802.1x).

Remote admin unable to create self-service portal security question.

HA load balancing anomaly for the registered captive portal user.

Remote user without any FIDO keys for a FIDO enabled portal is unable to change the password.

FortiAuthenticator 6.4.1 LDAP filters not being applied when importing groups from Fortinet SSO Methods > SSO > SSO groups.

FIDO key registration does not work if FQDN contains uppercase letters.

SAML IdP with LDAP for Google SP randomly fails with Internal Server Error (Error 500).

Encoding Migration Error after upgrading to 6.4.0 - 6.4.2 - no space left on device.

FortiAuthenticator - Internal Server Error - Table fac_auth_facgroup is replicated and cannot be modified on a subscriber node.

SAML SSLVPN authentication fails because FortiAuthenticator cuts parts of the DN when using the group LDAP filter.

SAML sync rule shows javascript error.

500 error when clicking on revoked and expired server certificate.

Onboarding message feature sends SMS via unexpected SMS gateway.

Self-service portal: Token revocation error.

GUI crashes when we try to create a realm that already exists.

FortiToken mobile 'Scan QR code' does not display the QR code for the remote SAML user.

Refresh FortiToken Mobile button deprovisions FortiToken Mobile from the remote SAML user.

Sponsor email address does not appear in recipient section of registration approval request email sent to freeform admin anymore.

500 Internal Server Error when resetting the password.

FortiAuthenticator API not performing input validation on the groups.

Issues after upgrading from 6.0.7 to 6.4.2.

SmartConnect profile generating certificate with incorrect suffix.

When mschapv2 is used between FortiAuthenticator and FortiGate, the portal login is broken.

RADIUS server stops responding to access requests in a very busy environment.

SNMP api 'auth_failure' should be renamed to 'auth_failures'.

Cancel button not working when editing local or remote user after upgrading to 6.4.2 or 6.4.3.

FortiAuthenticator as IdP, using custom att splits <saml:Attribute Name='username'> into multiple lines.

Not possible to add realm to IdP definition without a valid license in 6.4.3.

Show disconnects admin from the CLI.

Execution of sync rule runs FortiToken Cloud synchronization for all FortiAuthenticator users if user is removed from FortiAuthenticator as a result of sync rule.

500 internal server error when trying to display Oauth sessions.

[3rd party component upgrade required for security reasons] FortiAuthenticator - pillow to 9.0.1.

FortiAuthenticator cluster - CLI system time on secondary does not match primary.

'Test Token' option under individual users doesn't have the country code selected.

[3rd party component upgrade required for security reasons] FortiAuthenticator - curl to 7.83.1.

nslookup broken: nslookup: applet not found.

OpenID Missing Issuer URL.

REST API Put request for usergroup gets 500 error.

REST API authentication with password for ftk_only users fails in these two special cases

SAML peer certificate expiration issue and XML security issue.

SAML usernames are case sensitive, resulting in a failure of FortiToken assignment.

FortiAuthenticator 6.4.3 - 802.1X RADIUS service restarted after certificate binding process.

[3^rd party component upgrade required for security reasons] FortiAuthenticator - linux_kernel to 5.10.111/5.4.189/4.19.238/4....

Username/Email is not auto-populated after SAML redirection from SP (O365) to IdP (FortiAuthenticator).

Self-Service portal replacement template for FortiToken Mobile activation Scan QR Message does not reflect the changes.

No Replacement Message template for 'FortiToken Mobile Activation Scan QR Message' for Legacy Self Service Portal.