Fortinet black logo

(macOS) Release Notes

Home FortiClient 7.2.0 (macOS) Release Notes
7.2.0
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
6.2.0
6.0.10
6.0.9
6.0.8
6.0.7
6.0.6
6.0.6
6.0.5
6.0.4
6.0.3
6.0.2
6.0.1
5.6.6

Resolved issues

Resolved issues

The following issues have been fixed in FortiClient (macOS) 7.2.0. For inquiries about a particular bug, contact Customer Service & Support.

Install and upgrade

Bug ID

Description
754722 Uninstall deployment from EMS does not work on FortiClient (macOS).

755309

FortiClient triggers installation of Web Filter system extension only if custom.conf contains all features for the installer.

811001

Intune deployment script does not checks installed version.

833058

Full disk access permission guidance is not proper/accurate on macOS Ventura 13.0 beta with M1 chip.

GUI

Bug ID

Description
763681 EMS cannot update VPN current connection in FortiClient.

828283

Chinese warning message for EMS certificate is empty.

845597

GUI becomes inactive after connecting to VPN.

ZTNA connection rules

Bug ID

Description
832631 After switching to Wi-Fi, ztagent daemon does not run and ZTNA feature does not work.
845674 When registering FortiClient, ZTNA certificate should be installed in keychain silently if CA certificate is already trusted and imported in system.

869648

On macOS 12.6 with M2 chip, fmon2 and ztagent use 65% of CPU, which affects machine performance.

Zero trust tags

Bug ID

Description

805201

FileVault disk encryption is enabled tag does not update dynamically when the encryption status changes.

Application Firewall

Bug ID

Description
827917 Macbook Pro network connectivity issue.

Performance

Bug ID

Description
829658 FortiClient (macOS) overconsumes CPU and memory.

Remote Access

Bug ID

Description
684913 SAML authentication on SSL VPN with realms does not work.
765621 FortiClient has network connection issue after waking from sleep mode.
767596 FortiClient does not connect over SSL VPN.
773519 Free VPN-only client cannot save password for SSL and IPsec VPN.
779797 FortiClient fails to establish SSL VPN with FQDN resolving to multiple gateways.
791930 Autoconnect only when off-net setting fails to trigger autoconnect when endpoint is off-Fabric and logging off and logging into the system.
797559 SSL VPN host check validation does not work, including SAML users.
800918 Autoconnect is triggered and fails after system reboot with IPsec VPN tunnel profile using certificate authentication.

812540

FortiClient does not respect exclusive routing option.
813039 User cannot visit local services after FortiSASE connection.
813241 FortiClient cannot reconnect to SSL VPN without credentials.

840710

VPN autoconnect has issue when there is network error.

840789

VPN autoconnect has issue when EMS is offline.

840816

epctrl takes long time before it sends message to FortiTray to connect VPN.
861923 FortiClient fails to autoconnect to IPsec VPN with certificate.

Logs

Bug ID

Description
713287 FortiClient does not generate local logs for zero trust network access.

801134

FortiClient (macOS) does not generate SSL VPN logs for uploading to FortiAnalyzer when tunnel is established.

Web Filter and plugin

Bug ID

Description
771853 Web Filter does not work as expected on macOS 12 Monterey.
807880 Web Filter proxy fails to connect socket and operation times out.
819138 Display In-Browser Message shows blank page and bubble notification but no message.
829164 Security risk websites violation list is not on Web Filter tab.
834104 On macOS 11.6 and 12 with M1 chip and on macOS 12.5 with M2 chip, FortiClient (macOS) has no network access when EMS sets use_transparent_Proxy=1.
835652 Web Filter has issue when all categories are blocked.
839694 Upgrade procedure installs Web Filter extension on proxy-enabled endpoints.

Endpoint management

Bug ID

Description
773440 Domain-joined macOS endpoints result in duplicate endpoint entries in EMS.

Administration

Bug ID

Description
798055 JavaScript error occurs in the main process.

Avatar and social login information

Bug ID

Description
825913 FortiClient (macOS) reports system user changes to EMS inconsistently.

Endpoint control

Bug ID

Description
777473 FortiClient Cloud is unaware of UID change when EMS sends a new UID to FortiClient (macOS).
816209 FortiClient (macOS) endpoint should be counted as on-Fabric only when all the rules are met in an on-Fabric detection rule set.
828019 Some on-net detection rules do not detect correct on/off fabric status for FortiClient (macOS).
829923 On-fabric status flip-flops when ping rule and different web filter enabled status for on-/off-fabric status.
841149 Endpoint tries to use ZTNA certificate when ZTNA option is disabled.

841737

EMS does not report endpoint VPN IP addresses to FortiOS if they are connected with IPsec VPN.

Deployment and installers

Bug ID

Description
721823 Deployment status always shows as Endpoint Notified in EMS GUI.

Endpoint security

Bug ID

Description
829258 FortiClient (macOS) loses EMS connectivity after changing EMS SSL certificate.

Malware Protection and Sandbox

Bug ID

Description
857482 FortiClient (macOS) built-in AV engine is not updated to 6.00282.

Onboarding

Bug ID

Description
833090 EMS shows wrong user account after switching device user on endpoint and registering with EMS IP address/FQDN.

Zero Trust telemetry

Bug ID

Description
754345 FortiClient does not automatically register to FortiClient Cloud after reboot when user manually disconnects FortiClient from FortiClient Cloud.

Other

Bug ID

Description
850528 FortiClient does not always get IPv4 address from https://ipify.org.

Common Vulnerabilities and Exposures

Bug ID Description

848892

FortiClient (macOS) 7.2.0 is no longer vulnerable to the following CVE Reference:

  • CVE-2023-22635

Visit https://fortiguard.com/psirt for more information.
Previous
Next

Resolved issues

The following issues have been fixed in FortiClient (macOS) 7.2.0. For inquiries about a particular bug, contact Customer Service & Support.

Install and upgrade

Bug ID

Description
754722 Uninstall deployment from EMS does not work on FortiClient (macOS).

755309

FortiClient triggers installation of Web Filter system extension only if custom.conf contains all features for the installer.

811001

Intune deployment script does not checks installed version.

833058

Full disk access permission guidance is not proper/accurate on macOS Ventura 13.0 beta with M1 chip.

GUI

Bug ID

Description
763681 EMS cannot update VPN current connection in FortiClient.

828283

Chinese warning message for EMS certificate is empty.

845597

GUI becomes inactive after connecting to VPN.

ZTNA connection rules

Bug ID

Description
832631 After switching to Wi-Fi, ztagent daemon does not run and ZTNA feature does not work.
845674 When registering FortiClient, ZTNA certificate should be installed in keychain silently if CA certificate is already trusted and imported in system.

869648

On macOS 12.6 with M2 chip, fmon2 and ztagent use 65% of CPU, which affects machine performance.

Zero trust tags

Bug ID

Description

805201

FileVault disk encryption is enabled tag does not update dynamically when the encryption status changes.

Application Firewall

Bug ID

Description
827917 Macbook Pro network connectivity issue.

Performance

Bug ID

Description
829658 FortiClient (macOS) overconsumes CPU and memory.

Remote Access

Bug ID

Description
684913 SAML authentication on SSL VPN with realms does not work.
765621 FortiClient has network connection issue after waking from sleep mode.
767596 FortiClient does not connect over SSL VPN.
773519 Free VPN-only client cannot save password for SSL and IPsec VPN.
779797 FortiClient fails to establish SSL VPN with FQDN resolving to multiple gateways.
791930 Autoconnect only when off-net setting fails to trigger autoconnect when endpoint is off-Fabric and logging off and logging into the system.
797559 SSL VPN host check validation does not work, including SAML users.
800918 Autoconnect is triggered and fails after system reboot with IPsec VPN tunnel profile using certificate authentication.

812540

FortiClient does not respect exclusive routing option.
813039 User cannot visit local services after FortiSASE connection.
813241 FortiClient cannot reconnect to SSL VPN without credentials.

840710

VPN autoconnect has issue when there is network error.

840789

VPN autoconnect has issue when EMS is offline.

840816

epctrl takes long time before it sends message to FortiTray to connect VPN.
861923 FortiClient fails to autoconnect to IPsec VPN with certificate.

Logs

Bug ID

Description
713287 FortiClient does not generate local logs for zero trust network access.

801134

FortiClient (macOS) does not generate SSL VPN logs for uploading to FortiAnalyzer when tunnel is established.

Web Filter and plugin

Bug ID

Description
771853 Web Filter does not work as expected on macOS 12 Monterey.
807880 Web Filter proxy fails to connect socket and operation times out.
819138 Display In-Browser Message shows blank page and bubble notification but no message.
829164 Security risk websites violation list is not on Web Filter tab.
834104 On macOS 11.6 and 12 with M1 chip and on macOS 12.5 with M2 chip, FortiClient (macOS) has no network access when EMS sets use_transparent_Proxy=1.
835652 Web Filter has issue when all categories are blocked.
839694 Upgrade procedure installs Web Filter extension on proxy-enabled endpoints.

Endpoint management

Bug ID

Description
773440 Domain-joined macOS endpoints result in duplicate endpoint entries in EMS.

Administration

Bug ID

Description
798055 JavaScript error occurs in the main process.

Avatar and social login information

Bug ID

Description
825913 FortiClient (macOS) reports system user changes to EMS inconsistently.

Endpoint control

Bug ID

Description
777473 FortiClient Cloud is unaware of UID change when EMS sends a new UID to FortiClient (macOS).
816209 FortiClient (macOS) endpoint should be counted as on-Fabric only when all the rules are met in an on-Fabric detection rule set.
828019 Some on-net detection rules do not detect correct on/off fabric status for FortiClient (macOS).
829923 On-fabric status flip-flops when ping rule and different web filter enabled status for on-/off-fabric status.
841149 Endpoint tries to use ZTNA certificate when ZTNA option is disabled.

841737

EMS does not report endpoint VPN IP addresses to FortiOS if they are connected with IPsec VPN.

Deployment and installers

Bug ID

Description
721823 Deployment status always shows as Endpoint Notified in EMS GUI.

Endpoint security

Bug ID

Description
829258 FortiClient (macOS) loses EMS connectivity after changing EMS SSL certificate.

Malware Protection and Sandbox

Bug ID

Description
857482 FortiClient (macOS) built-in AV engine is not updated to 6.00282.

Onboarding

Bug ID

Description
833090 EMS shows wrong user account after switching device user on endpoint and registering with EMS IP address/FQDN.

Zero Trust telemetry

Bug ID

Description
754345 FortiClient does not automatically register to FortiClient Cloud after reboot when user manually disconnects FortiClient from FortiClient Cloud.

Other

Bug ID

Description
850528 FortiClient does not always get IPv4 address from https://ipify.org.

Common Vulnerabilities and Exposures

Bug ID Description

848892

FortiClient (macOS) 7.2.0 is no longer vulnerable to the following CVE Reference:

  • CVE-2023-22635

Visit https://fortiguard.com/psirt for more information.
Previous
Next