Fortinet black logo

Known issues

Known issues

The following issues have been identified in FortiClient (macOS) 7.0.7. For inquiries about a particular bug or to report a bug, contact Customer Service & Support.

Configuration

Bug ID

Description

730415 FortiClient (macOS) backs up configuration that is missing locally configured zero trust network access (ZTNA) connection rules.

817546

FortiClient (macOS) does not point to usforticlient.fortinet.net for signature update setting when Location-US | Server-FortiGuard.

Zero Trust Network Access connection rules

Bug ID

Description

820893

ZTNA connection rule has issue when FortiClient is on-fabric.

831943

ZTNA client certificate is not removed from user certificate store after FortiClient (macOS) uninstall.

GUI

Bug ID

Description

828283

Chinese warning message for EMS certificate is blank.

832758

GUI shows realtime protection as off when the feature is enabled and quarantines files effectively on endpoint.

Endpoint control

Bug ID

Description

735589 Non-default site shows incorrect deployment state.

784738

FortiClient console and invalid certificate prompt do not show automatically after installation.

814351

Endpoint information page incorrectly displays device user's domain information after user switches on macOS device.

821379

macOS clients do not show up in Software Inventory > Hosts.

Remote Access

Bug ID

Description

728775

FortiClient does not support host check for VPN.

736245

IPsec VPN does not work when multiple remote gateways are configured in a priority-based list.

738425

SSL VPN GUI and tray mismatch in unity features.

765621 Network connection issue after waking from sleep mode.
772247 SAML authentication times out with SSL VPN.
783502 SSL VPN connection fails when fully qualified domain name is set for remote gateway.
790392 FortiClient blocks the network when Wi-Fi is changed.
791930 Autoconnect only when off-net fails to trigger autoconnect when endpoint is off-net and logging off or logging into the system again.
793893 Search domains do not transfer correctly to endpoints.
794380 FortiClient does not work with ovelapping subnet when connected to SSL VPN.
794730 Auto connect and always up options appear as enabled after disconnecting from VPN when they are disabled on the XML profile.
797559 SSL VPN host check validation does not work, including for SAML users.

800529

GUI has issue with Settings > VPN Options > Do not Warn Invalid Server Certificate.

800918 Autoconnect is triggered and fails after system reboot with IPsec VPN tunnel profile using certificate authentication.

800923

Customized host check failure message for SSL VPN does not work.

800978 Autoconnect is triggered twice when both on-fabric and off-fabric profiles are configured.

812540

FortiClient does not respect exclusive routing option.

813239

VPN disconnects intermittently and cannot reconnect on macOS Monterey (version 12).

821660

FortiClient (macOS) behaves inconsistently with LDAP user login and autoconnect.

825009

VPN with SAML displays ErrorCode=-6005 when it reaches 31%.

826763

FortiClient (macOS) console does not show VPN username for SAML when SSL VPN tunnel establishes connection.

833001

When using FortiAuthenticator as SAML identity provider, autoconnect fails after user logout/relogin.

Zero Trust tags

Bug ID

Description

793033 ZTNA LDAP group rule does not work.

805201

Security > File Vault Disk Encryption is enabled tag does not update dynamically when the encryption status changes.

834754

VPN IP address does not match local IP address/subnet on-fabric rule criteria.

Vulnerability Scan

Bug ID

Description

786011 Vulnerability feature does not autopatch macOS Monterey 12.2.1 after it detects operating system (OS) vulnerability on macOS Monterey 12.1.

Web Filter and plugin

Bug ID

Description

755055

When action set for site categories is warn, browser does not show the customized webpage, which allows user to bypass blocking.

772332 External Ethernet adapter dongle gets disconnected when speed test is run.
795631 Web Filter does not block the selected categories.
819138 Web Filter Display In-Browser Message shows blank page and bubble notification with no message.

829164

Security risk websites violation list is not on Web Filter tab.

834104

On macOS 11.6 and 12 with M1 chip and macOS 12.5 with M2chip, FortiClient (macOS) allows no network access when EMS sets use_transparent_Proxy=1.

856060

Web Filter with proxy mode does not work on macOS 13.0 Ventura.

Application Firewall

Bug ID

Description

718957 Application Firewall does not work after reboot.

800344

You can remotely access quarantined endpoints using VNC protocol.

834500

FortiClient fails to block Application Firewall categories when web client category is set to monitor.

834839

Web Filter does not block traffic when proxy mode is disabled and Application Firewall is disabled.

Endpoint management

Bug ID

Description

770364 Disable third party features for macOS endpoints.

Performance

Bug ID

Description

778651 Large downloads and speed tests result in high latency, packet loss, and poor performance.

Installation and upgrade

Bug ID

Description

820245 While using online installer, upgrading from free VPN-only client to the full version of FortiClient (macOS) fails.

827939

FortiTray is not open anymore prompt shows when deploying FortiClient using script through mobile device management.

828781 FortiClient (macOS) behaves inconsistently when uninstalling it through commands in terminal and the FortiClientUninstaller GUI tool.

833058

Full disk access permission guidance is not proper/accurate on macOS Ventura 13.0 beta with M1 chip.

Logs

Bug ID

Description

750703 IPsec and SSL VPN events are not logged on FortiAnalyzer appropriately.

801134

FortiClient (macOS) does not generate or replicate SSL VPN logs for upload to FortiAnalyzer when it establishes a tunnel.

Deployment and installers

Bug ID

Description

824936 EMS fails to deploy FortiClient when manually created FortiClient installer is updated.

Malware Protection and Sandbox

Bug ID

Description

829415 When next generation antivirus is enabled, FortiClient (macOS) shows real time protection (RTP) as disabled.
833845 FortiClient (macOS) does not submit .zip files to Cloud Sandbox if Malware Protection is enabled and .zip is under RTP exclusion list.

Onboarding

Bug ID

Description

811976 FortiClient (macOS) may prioritize using user information from authentication user registered to EMS.
833090 EMS shows wrong user account after switching device users on endpoint and registering with EMS IP address/FQDN.

Known issues

The following issues have been identified in FortiClient (macOS) 7.0.7. For inquiries about a particular bug or to report a bug, contact Customer Service & Support.

Configuration

Bug ID

Description

730415 FortiClient (macOS) backs up configuration that is missing locally configured zero trust network access (ZTNA) connection rules.

817546

FortiClient (macOS) does not point to usforticlient.fortinet.net for signature update setting when Location-US | Server-FortiGuard.

Zero Trust Network Access connection rules

Bug ID

Description

820893

ZTNA connection rule has issue when FortiClient is on-fabric.

831943

ZTNA client certificate is not removed from user certificate store after FortiClient (macOS) uninstall.

GUI

Bug ID

Description

828283

Chinese warning message for EMS certificate is blank.

832758

GUI shows realtime protection as off when the feature is enabled and quarantines files effectively on endpoint.

Endpoint control

Bug ID

Description

735589 Non-default site shows incorrect deployment state.

784738

FortiClient console and invalid certificate prompt do not show automatically after installation.

814351

Endpoint information page incorrectly displays device user's domain information after user switches on macOS device.

821379

macOS clients do not show up in Software Inventory > Hosts.

Remote Access

Bug ID

Description

728775

FortiClient does not support host check for VPN.

736245

IPsec VPN does not work when multiple remote gateways are configured in a priority-based list.

738425

SSL VPN GUI and tray mismatch in unity features.

765621 Network connection issue after waking from sleep mode.
772247 SAML authentication times out with SSL VPN.
783502 SSL VPN connection fails when fully qualified domain name is set for remote gateway.
790392 FortiClient blocks the network when Wi-Fi is changed.
791930 Autoconnect only when off-net fails to trigger autoconnect when endpoint is off-net and logging off or logging into the system again.
793893 Search domains do not transfer correctly to endpoints.
794380 FortiClient does not work with ovelapping subnet when connected to SSL VPN.
794730 Auto connect and always up options appear as enabled after disconnecting from VPN when they are disabled on the XML profile.
797559 SSL VPN host check validation does not work, including for SAML users.

800529

GUI has issue with Settings > VPN Options > Do not Warn Invalid Server Certificate.

800918 Autoconnect is triggered and fails after system reboot with IPsec VPN tunnel profile using certificate authentication.

800923

Customized host check failure message for SSL VPN does not work.

800978 Autoconnect is triggered twice when both on-fabric and off-fabric profiles are configured.

812540

FortiClient does not respect exclusive routing option.

813239

VPN disconnects intermittently and cannot reconnect on macOS Monterey (version 12).

821660

FortiClient (macOS) behaves inconsistently with LDAP user login and autoconnect.

825009

VPN with SAML displays ErrorCode=-6005 when it reaches 31%.

826763

FortiClient (macOS) console does not show VPN username for SAML when SSL VPN tunnel establishes connection.

833001

When using FortiAuthenticator as SAML identity provider, autoconnect fails after user logout/relogin.

Zero Trust tags

Bug ID

Description

793033 ZTNA LDAP group rule does not work.

805201

Security > File Vault Disk Encryption is enabled tag does not update dynamically when the encryption status changes.

834754

VPN IP address does not match local IP address/subnet on-fabric rule criteria.

Vulnerability Scan

Bug ID

Description

786011 Vulnerability feature does not autopatch macOS Monterey 12.2.1 after it detects operating system (OS) vulnerability on macOS Monterey 12.1.

Web Filter and plugin

Bug ID

Description

755055

When action set for site categories is warn, browser does not show the customized webpage, which allows user to bypass blocking.

772332 External Ethernet adapter dongle gets disconnected when speed test is run.
795631 Web Filter does not block the selected categories.
819138 Web Filter Display In-Browser Message shows blank page and bubble notification with no message.

829164

Security risk websites violation list is not on Web Filter tab.

834104

On macOS 11.6 and 12 with M1 chip and macOS 12.5 with M2chip, FortiClient (macOS) allows no network access when EMS sets use_transparent_Proxy=1.

856060

Web Filter with proxy mode does not work on macOS 13.0 Ventura.

Application Firewall

Bug ID

Description

718957 Application Firewall does not work after reboot.

800344

You can remotely access quarantined endpoints using VNC protocol.

834500

FortiClient fails to block Application Firewall categories when web client category is set to monitor.

834839

Web Filter does not block traffic when proxy mode is disabled and Application Firewall is disabled.

Endpoint management

Bug ID

Description

770364 Disable third party features for macOS endpoints.

Performance

Bug ID

Description

778651 Large downloads and speed tests result in high latency, packet loss, and poor performance.

Installation and upgrade

Bug ID

Description

820245 While using online installer, upgrading from free VPN-only client to the full version of FortiClient (macOS) fails.

827939

FortiTray is not open anymore prompt shows when deploying FortiClient using script through mobile device management.

828781 FortiClient (macOS) behaves inconsistently when uninstalling it through commands in terminal and the FortiClientUninstaller GUI tool.

833058

Full disk access permission guidance is not proper/accurate on macOS Ventura 13.0 beta with M1 chip.

Logs

Bug ID

Description

750703 IPsec and SSL VPN events are not logged on FortiAnalyzer appropriately.

801134

FortiClient (macOS) does not generate or replicate SSL VPN logs for upload to FortiAnalyzer when it establishes a tunnel.

Deployment and installers

Bug ID

Description

824936 EMS fails to deploy FortiClient when manually created FortiClient installer is updated.

Malware Protection and Sandbox

Bug ID

Description

829415 When next generation antivirus is enabled, FortiClient (macOS) shows real time protection (RTP) as disabled.
833845 FortiClient (macOS) does not submit .zip files to Cloud Sandbox if Malware Protection is enabled and .zip is under RTP exclusion list.

Onboarding

Bug ID

Description

811976 FortiClient (macOS) may prioritize using user information from authentication user registered to EMS.
833090 EMS shows wrong user account after switching device users on endpoint and registering with EMS IP address/FQDN.