Known issues
The following issues have been identified in version 7.0.4. For inquiries about a particular bug or to report a bug, contact Customer Service & Support.
Dashboard
|
Bug ID |
Description |
|---|---|
| 781654 | EMS does not remove dashboard outbreak alerts when endpoint disconnects. |
Endpoint management
|
Bug ID |
Description |
|---|---|
|
691790 |
EMS should not allow downloading requested diagnostic result for FortiClient (Linux). |
| 760816 | Group assignment rules based on IP addresses do not work when using split tunnel. |
| 780630 | EMS Active Directory schema does not fully update on EMS. |
|
785186 |
EMS does not remove user from policy after deleting the domain. |
|
789330 |
API displays error 400 while filtering/sorting checksum field for Sandbox events. |
|
792652 |
EMS cannot delete domain. |
|
794153 |
Importing domain with certificate has issues. |
|
821704 |
EMS reports device state as managed in verified and unverified user table after FortiClient is unregistered from EMS. |
Endpoint policy and profile
|
Bug ID |
Description |
|---|---|
| 466124 | User cannot change <nat_alive_freq> value. |
|
766445 |
EMS enables or disables profile feature for all policies that use the defined profile. |
|
768768 |
You can simultaneously configure Security Risk category under AntiVirus protection and Web Filter, which causes conflicts. |
| 777067 | EMS does not import Web Filter profiles from FortiOS if login banners are enabled. |
|
783386 |
Web Filter profile imported from FortiOS shows as enabled in the GUI but disabled in XML. |
|
786109 |
Testing Sandbox connection fails with dev tool errors. |
|
789344 |
You can configure |
| 792793 | Quick Scan option does not work in GUI when trying to set scheduled scan. |
|
797556 |
User cannot enable Exclude Files from Trusted Sources in Endpoint Profiles > Sandbox Detection. |
|
798386 |
EMS falsely correlates some FortiAnalyzer settings. |
|
823595 |
For a newly created profile, the invalid certificate action should be set to warning by default when EMS applies a valid certificate. |
License
|
Bug ID |
Description |
|---|---|
| 823458 | EMS with Endpoint Protection Platform (EPP) only license and zero trust network access feature enabled reports the EPP license as consumed, but fails to quarantine the endpoint. |
Installation and upgrade
|
Bug ID |
Description |
|---|---|
| 754722 | Uninstall deployment from EMS does not work on FortiClient 6.4.6. |
| 798556 | Upgrade from 6.4.7 to 7.0.3 fails with invalid object name 'dbo.lags_raw' error. |
Zero Trust tagging
|
Bug ID |
Description |
|---|---|
| 726835 | FortiGate cannot get the updated VPN IP address in firewall dynamic EMS tag address when FortiClient establishes the VPN tunnel. |
| 765375 | User in Active Directory Group Zero Trust Network Access rule does not identify domains. |
Deployment and installers
|
Bug ID |
Description |
|---|---|
|
666289 |
EMS does not report correct deployment package state. |
| 773672 | Disabling installer ID in FortiClient installer does not take effect. |
System Settings
|
Bug ID |
Description |
|---|---|
|
753951 |
EMS does not recognize disabling Use FortiManager for client software/signature updates > Failover. |
| 784554 | EMS displays error while importing ACME certificate. |
Chromebook
|
Bug ID |
Description |
|---|---|
| 777957 | EMS assigns the wrong profile. |
Administration
|
Bug ID |
Description |
|---|---|
|
678899 |
Persisting LDAP configuration in multitenancy global/default/non-default administration users. |
| 786722 | Site administrator cannot delete admin user account. |
Performance
|
Bug ID |
Description |
|---|---|
| 731097 | Updating or disabling policy assigned to large number of AD endpoints takes long time to process. |
| 759729 | Possible slow httpd file handle leak. |
FortiGuard Outbreak Alert
|
Bug ID |
Description |
|---|---|
| 773928 | EMS only lists FortiGuard outbreak detection rules in default site. |
Configuration
|
Bug ID |
Description |
|---|---|
| 745913 | SMTP configuration fails authentication. |
Endpoint control
|
Bug ID |
Description |
|---|---|
|
776626 |
FortiClient may fail to get Web Filter custom message when EMS runs in high availability mode. |
|
777546 |
Regenerating ACME certificate option does not appear after adding, deleting, or editing a site. |
| 779652 | IPsec VPN shows offline status in FortiGate endpoint record list and fails to resolve VPN IP address to EMS tag firewall dynamic address. |
|
783838 |
Custom messages for stop and reevaluation do not reflect on the preview GUI. |
|
800451 |
Zero Trust tag for on-Fabric rule type applies when endpoint is off-Fabric. |
GUI
|
Bug ID |
Description |
|---|---|
| 632427 | Software Inventory filter and sorting action in heading does not work. |
|
717433 |
Patching a vulnerability for a specific endpoint patches it on others. |
|
731074 |
Importing the same JSON file for zero trust tagging twice introduces duplicate tags. |
| 770204 | When CX changes the invitation link expiry date, the previous invitation link does not work. |
| 771027 | FortiClient does not detect virus within large zip file, but detects it when extracted. |
|
774880 |
You can import the same Zero Trust tagging rules multiple times by clicking the Import button multiple times. |
|
793313 |
Detailed deployment states list does not fit in window. |
|
800867 |
Disclaimer message adds extra new lines after first line break on GUI saves. |
Malware Protection and Sandbox
|
Bug ID |
Description |
|---|---|
| 793926 | FortiShield blocks spoolsv.exe on Citrix virtual machine servers. |
Web Filter and plugin
|
Bug ID |
Description |
|---|---|
| 793017 | Web Filter disconnects an application's underlying connection. |
Other
|
Bug ID |
Description |
|---|---|
| 752052 | EMS does not sending alert emails. |
| 759986 | Handle SMTP message size limit. |
|
786181 |
EMS is not sending EMS and endpoint alert emails. |