FortiDeviceGuard is not installed on Windows Server 2022.

Application Firewall conflict with Windows firewall causes issues updating domain group policies.

FortiClient Cloud application signatures block allowlisted applications.

Application Firewall fails to allow application signatures added under Application Overrides as allow.

FortiClient cannot connect to JVC wireless display.

FortiClient (Windows) does not hide software update options when registered to EMS (regression).

FortiClient ignores the listing order of the configured VPN connections in the GUI and tray.

Zero Trust tagging rule set syntax does not check registry key values.

Zero trust tag rule for Active Directory group does not work when registering FortiClient to EMS with onboarding user.

Updating endpoint status from endpoint notified to deployed takes a long time.

FortiClient (Windows) incorrectly recognizes on-fabric status.

FortiClient shows all feature tabs without registering to EMS after upgrade.

FortiClient fails to synchronize with EMS on Windows 7 x86 platform for long time.

After administrator selects Mark All Endpoints As Uninstalled, FortiClient (Windows) connected with verified user changes to unverified user.

FortiClient (Windows) delays starting Web Filter service after status is off-fabric.

Administrator cannot restore a quarantined file through EMS quarantine management if FortiClient (Windows) registered as onboarding user.

Redeploying from another EMS server causes FortiClient (Windows) to not reconnect to EMS automatically.

After upgrading FortiClient with EMS local onboarding user with LDAP, FortiClient (Windows) prompts for registration authentication.

FortiClient fails to send username to EMS, causing EMS to report it as different users.

EMS displays no user for some devices.

EMS shows endpoints as offline, while they show their own status as online.

FortiClient reports incorrect Windows version to EMS.

LDAP query for Active Directory group check does not execute.

FortiClient (Windows) cannot connect to FortiClient Cloud.

FortiClient fails to remove quarantined files after number of days configured with cullage option.

Number of blocked exploits attempts does not work properly.

Allow Admin Users to Terminate Scheduled and On-Demand Scans from FortiClient Console feature does not work as expected.

Antiransomware kills FCBLog.exe when exporting debug logs.

Sandbox does not release blocked file.

SIM-card-slot UEFI feature slows down Windows logon when connected to VPN.

FortiClient does not allow virtual CD-ROM device.

FortiClient (Windows) on Windows 10 fails to block SSL VPN when it has a prohibit host tag applied.

SSL VPN negate split tunnel IPv6 address does not work.

Negate split tunnel IPv4 address does not work for dual stack mode using IPv6 access.

For SSL VPN dual stack, GUI only shows IPv4 address.

SSL VPN disconnects and returns hostcheck timeout after 15 to 20 minutes of connection.

When VPN is up, changes for IP properties-> Register this connection's IP to DNS are not restored after VM reboot from power off.

Free VPN-only client does not show token box on rekey and GUI open.

Certificate works for IPsec VPN tunnel if put it in current user store but fails to work if in local machine.

FortiClient (Windows) does not use second FortiGate to connect to resilient tunnel from FortiTray if it cannot reach first remote gateway.

When no_dns_registration=1,Register This Connection's Address in DNS of NW IP properties is not selected after VPN is up.

Priority based IPSec resiliency tunnel, auto failover to second remote gateway doesn't work

IPsec VPN failover to SSL VPN does not work when remote gateway is unreachable due to an invalid FQDN.

FortiClient search domains transfer incorrectly to endpoints.

VPN before logon does not work with Okta multifactor authentication and enforcing acceptance of the disclaimer message.

Always up feature does not work as expected when trying to connect to VPN from tray.

SAML connection with external browser authentication and single sign on port 8020 is busy, with FortiClient returning a JavaScript error.

SAML internal browser authentication prompt does not show up when redirection to external browser is disabled.

FortiClient cannot connect to VPN when there are two gateways listed using SAML.

Dialup IPsec VPN does not come up and shows NAT-T inconsistency.

FortiClient (Windows) cannot connect to SSL VPN after installing Windows update KB5013942.

SSL VPN with <on_os_start_connect> enabled does not work when the machine is put into sleep mode and changes networks.

If allow_local_lan=0 and per-application split tunnel with exclude mode and full tunnel are configured, FortiClient (Windows) should block local RDP/HTTPS traffic.

FortiClient (Windows) has issue with SAML with ErrorCode=-6005 when it reaches 31%.

FortiClient (Windows) sends SAML response to a different IP address than the request it received from.

VPN autoconnect does not work with IKEv2 IPsec VPN and user certificates.

Remote access Connect button does not work.

Autoconnect works intermittently.

SSL VPN with certificates cannot connect to VPN on Elitebook 850 G5/Elitebook 850 G3 laptops.

Disconnecting from VPN does not restore Register this connection's IP to DNS.

ZScaler Client Connector does not work with application-based split tunnel.

FortiClient removes the SSL VPN password from the GUI if the network interface is disconnected and reconnected.

With host check enabled, SAML login does not show proper warning message when it fails to connect.

FortiClient (Windows) becomes unlicensed when connected to SSL VPN.

SAML SSL VPN fails when Duo is the multifactor authentication provider.

Upgrading FortiClient (Windows) free VPN-only client to the latest build removes VPN tunnels.

On-fabric rule for VPN tunnel name does not work when the tunnel name uses special characters.

After upgrading FortiClient (Windows), OpenVPN connection fails while FortiClient (Windows) VPN runs with application-based split tunnel enabled.

FortiClient (Windows) does not save or reuse SAML credentials and shows credentials prompt when VPN autoconnects.

FortiClient ignores secure remote access feature if used with VPN before logon.

Citrix application shows blank pages on SSL VPN tunnel.

EMS does not remove vulnerability events after successful patch.

FortiClient (Windows) does not block malicious sites when Web Filter is disabled.

Blocked web client shows dropped connection message instead of URL blocked message.

Error revokes certificate accessing outlook.office365.com using Web Filter.

Security risk websites violation list is not on Web Filter tab.

FortiClient (Windows) registry does not update restriction level value when Web Filter is disabled and reenabled.

FortiClient does not remove Web Filter plugin from browser when Web Filter is disabled.

FortiClient (Windows) does not save user-specified Submit User Identity Information.

EMS fails to update email address for endpoint from personal information form in FortiClient (Windows).

Windows 7 does not support TCP forwarding feature.

FortiClient (Windows) cannot show normal webpage of Internet real server (Dropbox) with ZTNA.

Using an external browser for SSH ZTNA requires restarting FortiClient on Windows 11.

ZTNA client certificate is not removed from user certificate store after FortiClient uninstall.

FortiClient (Windows) does not send Windows user information to EMS after user account switching.

FortiClient (Windows) may prioritize using user information from authentication user registered to EMS.