Known issues
The following issues have been identified in FortiClient (macOS) 7.2.3. For inquiries about a particular bug or to report a bug, contact Customer Service & Support.
Application Firewall
Bug ID |
Description |
---|---|
814391 | When connected to FortiClient Cloud, application signatures block allowlisted applications. |
834500 |
FortiClient fails to block Application Firewall categories when web client category is set to monitor. |
834839 |
Web Filter does not block traffic when proxy mode and Application Firewall are disabled. |
879985 |
Application Firewall fails to block Web.Client category HTTPS traffic. |
943703 |
Application firewall block/allow/monitor based on individual applications does not work as expected. |
948718 |
Block count for Application Firewall is not accurate. |
957343 | Application Firewall unknown application shows in violation list when FortiClient (macOS) should allow all other unknown applications. |
957984 | Application Firewall reports violations for network service protocols when it is set to monitor in EMS. |
958040 | Application Firewall fails to work when connected to IPsec VPN tunnel. |
958651 | Application Firewall violation list shows violated programs as the same as applications, which is not as accurate as Windows. |
Avatar and social login information
Bug ID |
Description |
---|---|
777013 |
Avatar, whether changed or existing, does not show on FortiAnalyzer. |
857857 |
Avatar page goes blank if user logs in with LinkedIn account. |
878050 | Avatar does not update on FortiOS dashboards and FortiOS cannot show updated information. |
954273 |
After FortiClient upgrades through script, avatar page does not load properly and shows a blank page. |
Configuration
Bug ID |
Description |
---|---|
730415 | FortiClient (macOS) backs up configuration that is missing locally configured zero trust network access (ZTNA) connection rules. |
Deployment and installers
Bug ID |
Description |
---|---|
764672 | FortiClient (macOS) displays deployment popup for user when EMS admin configured unattended installation. |
882705 | EMS deployment fails if endpoint reboots during deployment package installation process. |
935387 | Installer downloaded from EMS is not deleted when EMS is changed. |
Endpoint control
Endpoint management
Bug ID |
Description |
---|---|
891264 | EMS creates duplicate records for domain-joined Ubuntu endpoints. |
Endpoint policy and profile
Bug ID |
Description |
---|---|
906951 | GUI does not reflect profile changes unless user manually restarts the FortiClient (macOS) console. |
Endpoint security
Bug ID |
Description |
---|---|
960595 | FortiClient (macOS) cannot reach FortiClient Cloud. |
FSSOMA
Bug ID |
Description |
---|---|
956538 |
FortiClient (macOS) does not support multiple FortiAuthenticator server addresses. |
962067 | FortiClient single sign-on mobility agent (FSSOMA) does not work with Apple local account type. |
GUI
Bug ID |
Description |
---|---|
857148 |
GUI shows duplicate FortiClient consoles. |
902595 |
SAML prompt flashes on autoconnect. |
954876 |
Backup Comments option does not work. |
968068 | FortiClient responds slowly and shows blank page when opening GUI. |
Installation and upgrade
Bug ID |
Description |
---|---|
827939 |
FortiTray is not open anymore prompt shows when deploying FortiClient using script through mobile device management. |
828781 | FortiClient (macOS) behaves inconsistently when uninstalling it through commands in terminal and the FortiClientUninstaller GUI tool. |
929219 |
FortiClient is upgradable from full to free version. |
951945 |
Uninstaller shows Install Now prompt instead of Remove now. |
955448 |
Manual upgrade from 7.2.0 removes manually added VPN tunnels. |
License
Bug ID |
Description |
---|---|
874676 | Endpoint is tagged with existing ZTNA host tags for Vulnerability and AV after EMS license is updated from EPP to Remote Access. |
Logs
Malware Protection and Sandbox
Bug ID |
Description |
---|---|
551282 | Sandbox exception for trusted sources does not work and FortiClient (macOS) uploads files sourced from Apple Inc. |
719920 | FortiClient cannot submit files downloaded from Thunderbird to FortiClient Cloud Sandbox (PaaS). |
755198 | FortiClient (macOS) does not submit files downloaded using Edge to Sandbox or Sandbox Cloud. |
829415 | When next generation antivirus is enabled, FortiClient (macOS) shows real time protection (RTP) as disabled. |
837638 | Identifying malware and exploits using signatures received from FortiSandbox does not work. |
855555 |
Enabling real-time protection and setting |
855570 | Real-time protection (RTP) scans files regardless of the maximum file size setting for scanning files. |
859241 | FortiSandbox sends files to or queries results from FortiSandbox when EMS is not authorized. |
888356 | User can stop AV quick/full scan triggered from EMS. |
921370 | User cannot stop manually triggered AV scan in FortiClient. |
949187 | Cloud Sandbox fails to work and treats EICAR file as clean. |
949258 | GUI shows no events under Realtime Protection events. |
951380 | RTP creates folder when Word and Excel files are saved on network shared drive (NAS). |
961542 | Enabling Sandbox freezes system. |
Onboarding
Bug ID |
Description |
---|---|
811976 | FortiClient (macOS) may prioritize using user information from authentication user registered to EMS. |
872136 | User verification period option under User verification does not work as configured. |
Quarantine management
Bug ID |
Description |
---|---|
868798 | Custom quarantine message does not work. |
Remote Access
Software Inventory
Bug ID |
Description |
---|---|
737970 | Software Inventory may not properly reflect software changes (adding/deleting) on macOS endpoints. |
860954 |
Sending software inventory list or updates to EMS does not happen in real time. |
Vulnerability Scan
Bug ID |
Description |
---|---|
771833 | FortiClient tags endpoint as vulnerable when EMS administrator has enabled Exclude Application Vulnerabilities Requiring Manual Update from Vulnerability. |
Web Filter and plugin
Bug ID |
Description |
---|---|
873803 | In-browser message does not show after switching device user without system reboot. |
875298 | Exclusion list does not work properly with regular expressions. |
878055 | Web access does not work. |
898303 | Web Filter does not work when administrator pushes extensions through Jamf in mobile device management platform. |
918616 | Video meetings have lag. |
937125 | Ping drops when clicking About to update signature. |
950119 | FortiClient (macOS) does not include ability to sign certificate for Web Filter. |
955529 | Teams and other applications that use video crash and fail to work. |
962343 | FortiClient (macOS) does not block unrated sites when it cannot access FortiGuard servers. |
971067 | FortiClient with Web Filter enabled does not allow login to Netflix account. |
Zero Trust tags
Bug ID |
Description |
---|---|
794385 | FortiClient detects third-party antivirus tag. |
Zero Trust Telemetry
Bug ID |
Description |
---|---|
951597 | If the endpoint is bound to Active Directory, FortiClient (macOS) does not sync with EMS while on VPN. |
ZTNA connection rules
Bug ID |
Description |
---|---|
853281 | FortiClient (macOS) does not show the inline CASB database signatures on the About page. |
857909 | FortiClient (macOS) does not support enabling encryption for ZTNA TCP forwarding rules acquired form ZTNA service portal. |
857999 |
FortiClient does not support using external browser for SAML authentication for ZTNA rules acquired through service portal. |
862921 | FortiClient does not show prompt for ZTNA user authentication when form-based method is set under authentication rule/scheme on FortiGate. |
864821 | ZTNA does not have proper logging for SaaS portals. |
905880 |
ZTNA certificate prompt displays when deploying FortiClient (macOS) with Jamf Pro configuration profiles. Workaround: enable ZTNA in both on-fabric and off-fabric profile if using both. |
938962 |
FortiClient keeps prompting ztagent wants to sign using key Imported Private Key when selecting Always trust. |
944537 |
Adding ZTNA destinations produces pfctl error. |
975845 | FortiClient (macOS) does not notify end user that
certificate is not trusted for ZTNA connection when
<disallow_invalid_server_certificate> is enabled. |
Other
Bug ID |
Description |
---|---|
950099 | Non-admin users cannot trust new Web Filter certificate generated in the system keychain. |
950458 | FortiGuard Agent crashes on macOS Big Sur 11.7. |