Resolved issues

The following issues have been fixed in version 7.2.0. For inquiries about a particular bug or to report a bug, contact Customer Service & Support.

Administration

Bug ID	Description
678899	LDAP configuration persists in EMS multitenancy global/default/non-default administration users.
853647	EMS displays no administrators found error.
853830	EMS console times out. Inactivity timeout logs off administrator despite EMS activity.
871765	Active Directory (AD) connector fails to start after upgrade from 7.0.7 to 7.2.0 if authentication credential expired.

Dashboard

Bug ID	Description
781654	EMS does not remove dashboard outbreak alerts when endpoint disconnects.

License

Bug ID	Description
818702	Log viewer fails to check for license expiration: type object `'License'` has no attribute `'get'`.
821767	FortiClient Cloud displays license expiry error when license is unexpired.
870207	EMS crashes after user applies incorrect license.

Multitenancy

Bug ID	Description
848558	Non-default site sends `LIC_ED\|0\|` to FortiClient.
873029	FortiClient shows as disconnected and licenses for all multitenancy sites are removed and returned to global site after upgrading EMS from 7.0.7 to 7.2.0.

Onboarding

Bug ID	Description
819203	Authorized user group name is not full path.
822126	Deleting SAML configuration message shows incorrect active users.
835182	The DELETE statement conflicts with the REFERENCE constraint `fk_Forticlient_Users_Users_machine_user_id`.
866140	Authorized groups do not work with SAML verification.

ZTNA connection rules

Bug ID	Description
832635	Off-fabric FortiClient certificate serial number does not sync to FortiOS.

System Settings

Bug ID	Description
823701	FortiClient Cloud does not allow enabling Enforce User Verification.
839677	EMS displays notification: Failed to send email alerts. Please check SMTP server configuration.

Endpoint management

Bug ID	Description
727076	EMS does not process uploaded software inventory.
770364	EMS displays third-party features section for non-Windows endpoints.
801583	EMS shows clients as unprotected if they have third-party antivirus.
808266	EMS has inaccurate dashboard widget results for endpoints with Windows operating systems.
819196	The multipart identifier `cs.software_id` and `cs.is_missing` cannot be bound.
821704	EMS always reports device state as managed in verified and unverified user table even after FortiClient unregisters from EMS.
825673	EMS clears all entries after upgrade and does not allow traffic for some users.
827269	Policy is out of sync when moving endpoints using group assignment rules.
834228	EMS reports endpoint vulnerability when Vulnerability Scan is not installed on endpoint.
835705	Group assignment rules Run Rules Now option does not work.
839300	EMS fails to download PDF report of on-premise FortiSandbox events.
842539	EMS shows endpoints duplicated in multiple groups after EMS upgrade.
846033	EMS displays error during AD sync when an organizational unit's old ancestor is deleted from the domain.

Endpoint policy and profile

Bug ID	Description
818408	Malware Protection profile antiexploit application list includes applications that FortiClient does not support.
824666	EMS does not send FortiClient status changes via syslog.
832445	Web Filter profiles are mismatched between EMS and FortiGate for cryptomining category.
842084	Profile GUI is blank.
852508	FortiClient blocks all USB sticks after adding revision in Malware Protection profile.

Install and upgrade

Bug ID	Description
828850	Deadlocks on Users and Forticlients_users table.
835824	Upgrade from 7.0.4 to 7.0.6 fails.

FortiGuard Outbreak Alerts

Bug ID	Description
813928	EMS fails to update EOAP signatures: type object `ComplianceVerificationRuleSet` has no attribute `eoap_version`.

Zero Trust telemetry

Bug ID	Description
836156	User cannot access FortiClient Cloud.

HA

Bug ID	Description
809396	EMS generates a generic error on high availability (HA) backup.
832719	EMS shows error while trying to restore backup.

GUI

Bug ID	Description
632427	Software Inventory filter and sort actions in heading do not work.
774880	EMS user can import the same zero trust tagging rules multiple times by clicking Import button multiple times.

Deployment and installers

Bug ID	Description
842065	FortiClient cannot connect to EMS after upgrade from 7.0.2 to 7.0.7.
859123	Only FortiClient 7.0.7 appears in installers list. EMS shows no custom installers.

Zero Trust tagging

Bug ID	Description
802599	EMS should calculate zero trust network access (ZTNA) rules.
827300	Endpoint does not get correct zero trust network access tag.
832328	Endpoint is still tagged with threat ID rule after clearing firewall events.
837163	EMS shows hosts with indicators of compromise for Ransomware Evil (REvil) but shows details as No REvil_IOC_registry_key - Compromised Endpoints (0) Found.
841675	EMS receives network information but does not send it to FortiGates.
874683	EMS does not tag some endpoints with AD group after disabling Evaluate on FortiClient on the rule.
874693	When a rule set has an AD FortiClient-based rule and at least one non-FortiClient rule of any type, the AD rule is not loaded.

Endpoint control

Bug ID	Description
813439	FortiClient registered with EMS IP address does not deregister from EMS when administrator enforces invitation-only registration for all endpoints.
825559	FortiClient fails to register with EMS when Enforce invitation-only registration for is enabled.
840199	EMS stops allowing client connections.
848147	EMS sends malformed SAML URL to FortiClient.

Performance

Bug ID	Description
801299	spUpdateIPList and trigger_users_UPDATED errors.

Endpoint security

Bug ID	Description
783287	Let's Encrypt ACME certificate request fails due to port 80 on autotest system.

Other

Bug ID	Description
844330	EMS reports vulnerability to web server dictionary indexing/dictionary directory listing attack.
873218	Multiple FortiClient records share the same token ID.

Common Vulnerabilities and Exposures

Bug ID	Description
766139	FortiClient EMS 7.2.0 is no longer vulnerable to the following CVE References: CVE-2021-44172 Visit https://fortiguard.com/psirt for more information.

Bug ID

Description

766139

FortiClient EMS 7.2.0 is no longer vulnerable to the following CVE References:

CVE-2021-44172

Visit https://fortiguard.com/psirt for more information.

Resolved issues

The following issues have been fixed in version 7.2.0. For inquiries about a particular bug or to report a bug, contact Customer Service & Support.

Administration

Bug ID	Description
678899	LDAP configuration persists in EMS multitenancy global/default/non-default administration users.
853647	EMS displays no administrators found error.
853830	EMS console times out. Inactivity timeout logs off administrator despite EMS activity.
871765	Active Directory (AD) connector fails to start after upgrade from 7.0.7 to 7.2.0 if authentication credential expired.

Dashboard

Bug ID	Description
781654	EMS does not remove dashboard outbreak alerts when endpoint disconnects.

License

Bug ID	Description
818702	Log viewer fails to check for license expiration: type object `'License'` has no attribute `'get'`.
821767	FortiClient Cloud displays license expiry error when license is unexpired.
870207	EMS crashes after user applies incorrect license.

Multitenancy

Bug ID	Description
848558	Non-default site sends `LIC_ED\|0\|` to FortiClient.
873029	FortiClient shows as disconnected and licenses for all multitenancy sites are removed and returned to global site after upgrading EMS from 7.0.7 to 7.2.0.

Onboarding

Bug ID	Description
819203	Authorized user group name is not full path.
822126	Deleting SAML configuration message shows incorrect active users.
835182	The DELETE statement conflicts with the REFERENCE constraint `fk_Forticlient_Users_Users_machine_user_id`.
866140	Authorized groups do not work with SAML verification.

ZTNA connection rules

Bug ID	Description
832635	Off-fabric FortiClient certificate serial number does not sync to FortiOS.

System Settings

Bug ID	Description
823701	FortiClient Cloud does not allow enabling Enforce User Verification.
839677	EMS displays notification: Failed to send email alerts. Please check SMTP server configuration.

Endpoint management

Bug ID	Description
727076	EMS does not process uploaded software inventory.
770364	EMS displays third-party features section for non-Windows endpoints.
801583	EMS shows clients as unprotected if they have third-party antivirus.
808266	EMS has inaccurate dashboard widget results for endpoints with Windows operating systems.
819196	The multipart identifier `cs.software_id` and `cs.is_missing` cannot be bound.
821704	EMS always reports device state as managed in verified and unverified user table even after FortiClient unregisters from EMS.
825673	EMS clears all entries after upgrade and does not allow traffic for some users.
827269	Policy is out of sync when moving endpoints using group assignment rules.
834228	EMS reports endpoint vulnerability when Vulnerability Scan is not installed on endpoint.
835705	Group assignment rules Run Rules Now option does not work.
839300	EMS fails to download PDF report of on-premise FortiSandbox events.
842539	EMS shows endpoints duplicated in multiple groups after EMS upgrade.
846033	EMS displays error during AD sync when an organizational unit's old ancestor is deleted from the domain.

Endpoint policy and profile

Bug ID	Description
818408	Malware Protection profile antiexploit application list includes applications that FortiClient does not support.
824666	EMS does not send FortiClient status changes via syslog.
832445	Web Filter profiles are mismatched between EMS and FortiGate for cryptomining category.
842084	Profile GUI is blank.
852508	FortiClient blocks all USB sticks after adding revision in Malware Protection profile.

Install and upgrade

Bug ID	Description
828850	Deadlocks on Users and Forticlients_users table.
835824	Upgrade from 7.0.4 to 7.0.6 fails.

FortiGuard Outbreak Alerts

Bug ID	Description
813928	EMS fails to update EOAP signatures: type object `ComplianceVerificationRuleSet` has no attribute `eoap_version`.

Zero Trust telemetry

Bug ID	Description
836156	User cannot access FortiClient Cloud.

HA

Bug ID	Description
809396	EMS generates a generic error on high availability (HA) backup.
832719	EMS shows error while trying to restore backup.

GUI

Bug ID	Description
632427	Software Inventory filter and sort actions in heading do not work.
774880	EMS user can import the same zero trust tagging rules multiple times by clicking Import button multiple times.

Deployment and installers

Bug ID	Description
842065	FortiClient cannot connect to EMS after upgrade from 7.0.2 to 7.0.7.
859123	Only FortiClient 7.0.7 appears in installers list. EMS shows no custom installers.

Zero Trust tagging

Bug ID	Description
802599	EMS should calculate zero trust network access (ZTNA) rules.
827300	Endpoint does not get correct zero trust network access tag.
832328	Endpoint is still tagged with threat ID rule after clearing firewall events.
837163	EMS shows hosts with indicators of compromise for Ransomware Evil (REvil) but shows details as No REvil_IOC_registry_key - Compromised Endpoints (0) Found.
841675	EMS receives network information but does not send it to FortiGates.
874683	EMS does not tag some endpoints with AD group after disabling Evaluate on FortiClient on the rule.
874693	When a rule set has an AD FortiClient-based rule and at least one non-FortiClient rule of any type, the AD rule is not loaded.

Endpoint control

Bug ID	Description
813439	FortiClient registered with EMS IP address does not deregister from EMS when administrator enforces invitation-only registration for all endpoints.
825559	FortiClient fails to register with EMS when Enforce invitation-only registration for is enabled.
840199	EMS stops allowing client connections.
848147	EMS sends malformed SAML URL to FortiClient.

Performance

Bug ID	Description
801299	spUpdateIPList and trigger_users_UPDATED errors.

Endpoint security

Bug ID	Description
783287	Let's Encrypt ACME certificate request fails due to port 80 on autotest system.

Other

Bug ID	Description
844330	EMS reports vulnerability to web server dictionary indexing/dictionary directory listing attack.
873218	Multiple FortiClient records share the same token ID.

Common Vulnerabilities and Exposures

Bug ID	Description
766139	FortiClient EMS 7.2.0 is no longer vulnerable to the following CVE References: CVE-2021-44172 Visit https://fortiguard.com/psirt for more information.

Bug ID

Description

766139

FortiClient EMS 7.2.0 is no longer vulnerable to the following CVE References:

CVE-2021-44172

Visit https://fortiguard.com/psirt for more information.

EMS Release Notes

Resolved issues

Resolved issues

Administration

Dashboard

License

Multitenancy

Onboarding

ZTNA connection rules

System Settings

Endpoint management

Endpoint policy and profile

Install and upgrade

FortiGuard Outbreak Alerts

Zero Trust telemetry

HA

GUI

Deployment and installers

Zero Trust tagging

Endpoint control

Performance

Endpoint security

Other

Common Vulnerabilities and Exposures

Resolved issues

Administration

Dashboard

License

Multitenancy

Onboarding

ZTNA connection rules

System Settings

Endpoint management

Endpoint policy and profile

Install and upgrade

FortiGuard Outbreak Alerts

Zero Trust telemetry

HA

GUI

Deployment and installers

Zero Trust tagging

Endpoint control

Performance

Endpoint security

Other

Common Vulnerabilities and Exposures