25.3
The following issues have been fixed in FortiEndpoint 25.3:
Administration
|
Bug ID |
Description |
|---|---|
|
1138296 |
Admins with Manage Invitations permission cannot create invitations due to an unexpected error. |
Endpoint Management
|
Bug ID |
Description |
|---|---|
|
1095972 |
Local ad connector stuck at 1%. |
|
1111936 |
|
| 1116089 | User cannot delete custom group with no associated endpoints. |
|
1117228 |
LDAP sync fails due to long UPN char with the following error: error: mssql: The data for table*valued parameter "@updated" doesn't conform. |
|
1119648 |
FortiEndpoint EMS is showing SAM user name instead of UPN name for endpoints logged in with Azure account. |
|
1135123 |
Unable to add LDAP admin and unable to import user/device from domain with the following error: Invalid idp guid. |
|
1139290 |
FortiEndpoint EMS AD sync intermittently fails with bind parameter and Kerberos errors. |
|
1139723 |
LDAP sync improvement: reduce number of binds. |
|
1142865 |
FortiEndpoint AD connector randomly goes offline and then comes online again. |
|
1148779 |
(Windows) LDAP sync error "uq_users_uid_name_sid_saml_id_auth_type_upn_domain_id". |
|
1150306 |
Endpoints cannot be returned to original group after being moved to a custom group. |
|
1150641 |
Ad connector gets stuck after LDAP connection timeout. |
|
1152075 |
GUI inconsistency in reporting the sync progress for LOCAL AD domain. |
|
1166665 |
LDAP sync fails due to special characters in user data. |
Endpoint Policy and Profile
|
Bug ID |
Description |
|---|---|
|
1112386 |
FortiEndpoint EMS does not apply Azure user-group policies intermittently. |
|
1136465 |
Error syncing web filter profile from FortiManager. |
|
1142846 |
ZTNA application import enables UDP while the enable_udp option is set to FALSE. |
|
1159904 |
Azure AD group-based policy assignments are not being applied: endpoints are receiving the default policy. |
Endpoint control
|
Bug ID |
Description |
|---|---|
|
1140281 |
Existing HTML files of "send one-way message" using Japanese cannot be previewed due to an error. |
Fabric Devices
GUI
|
Bug ID |
Description |
|---|---|
|
1153047 |
FortiEndpoint EMS vulnerability scan dashboard shows wrong number of affected endpoints. |
Onboarding
|
Bug ID |
Description |
|---|---|
|
1126324 |
Cannot delete SAML configuration. |
|
1139975 |
AD UPN matching case sensitivity for user verification with SAML authentication and domain authorization. |
|
1147712 |
FortiClient cannot connect to FortiEndpoint EMS using AD accounts where SAMAccountName differs from UPN. |
|
1163833 |
Invitation emails lose installer link after a while. |
Remote Access
|
Bug ID |
Description |
|---|---|
|
1138981 |
Dh group 31 is not available in FortiEndpoint EMS dhgroup: invalid value 31. |
|
1160262 |
FortiClient continiously attempts to connect to machine prelogon tunnel after user is already logged in. |
System Settings
|
Bug ID |
Description |
|---|---|
|
1159054 |
Tag removal issue for offline endpoints despite auto tag removal being enabled. |
Upgrade
|
Bug ID |
Description |
|---|---|
|
995790 |
During the device upgrade check, duplicate Android devices are end up getting mistaken as duplicates and deleted in upgrade. |
License
|
Bug ID |
Description |
|---|---|
|
1143273 |
FortiEndpoint license seats are out of sync with FortiCare during license renewal, causing license expiration and endpoints de-registration. |
Web Filter and Plugin
|
Bug ID |
Description |
|---|---|
|
1026115 |
Some web filter categories are not visible on FortiEndpoint EMS GUI for configuration. |
|
1156273 |
FortiEndpoint EMS adds new XML tags to control FortiClient to force user to enabled "Allow in private" when the web filter plugin is enabled. |
Zero Trust Network Access (ZTNA) Connection Rules
|
Bug ID |
Description |
|---|---|
|
1057009 |
FortiEndpoint EMS GUI page shows "mask must be null or an IPv4 formatted string" error message when creating a ZTNA Destinations profile. |
|
1133163 |
Failed to create ZTNA application due to long FQDN. |
|
1142055 |
FortiClient randomly looses registry-based security posture tag, even if the condition is true to match the tag. |
Security Posture Tags
|
Bug ID |
Description |
|---|---|
|
1148269 |
In HA mode, FortiEndpoint EMS does not assign tags to the endpoint when connect to FortiEndpoint EMS after few days. |
|
1152696 |
FortiEndpoint EMS does not assign User in AD group tag to macOS endpoints. |
|
1165567 |
Failure in saving security posture tags for certificate with special character in Issuer CN. |
|
1176991 |
Entra ID group is not shown when you hover over an affected endpoint's end user name in the FortiEndpoint EMS endpoint pane. |
|
1195069 |
FortiClient cannot properly sync with FortiEndpoint EMS in retrieving the Security Posture tags. |
Other
|
Bug ID |
Description |
|---|---|
| 1152169 | Restoring backup throws errors even when the restore is successful. |
EDR
| Bug ID | Description |
|---|---|
| 1184211, 1184732, 1186391, 1187299, 1188820, 1191006, 1189146, 1191934, 1184679 | Memory issues on a massive response number from FCS due to an event that requires mail sending. |
| 1182542, 1184109 | Scan fails when duplicate IoT devices are detected. |
| 1188797, 1191908 | Classification is not updated according to the classification received from FCS. |
| 1188319 | Connected Collectors do not appear in the group. |
| 1030485, 1035404 |
Integration with FortiManager does not support Workspace mode. |
| 1139228, 1147014 | Integration with FortiSOAR fails. |
| 1095132, 1161767 |
Error when creating an exception using an asterisk in the detected script (.sh file) on Linux. |
| 1131478, 1139171 | Failure in filtering events by SimulationBlock action. |
| 992289, 990535, 1001334, 964808, 815837 | Exception covering query issue with uncovered RDI's. |
| 1147352, 1156913 | Missing audit log of handling or unhandling an event. |
| 1158490, 1163603 | Unable to investigate or handle Threat Hunting incidents. |
| 1151959, 1158401 | Windows Collectors are shown as degraded after upgrade to 25.1. |
| 1119659, 1158402 | Moving a Collector to a group results in all Collectors from the selected Collector group being moved. |
| 1174120 | Failure in saving exception for a deleted event. |
| 1174766 | XDR events are not populated in Incidents view |
|
1177825 |
Error with saved query event. |
| 1177053, 1177829 | Multiple drivers are blocked incorrectly under C:\System32\drivers folder. |
|
1179232, 1180072, 1180211, 1179504 |
Faiure in loading the IoT Devices page. |
|
1181437, 1181391 |
Memory issues. |
|
1161894, 1162753, 1173493, 1180517 |
Issue with syslog and emails. |
| 1134239 | Archived events are not displayed as expected. |
| 1111573 | Update number of shards task causes many registration requests. |
| 1111339 | Threat hunting displays error "Query parsing failed". |
| 1126848 | Linux Collector registration failure. |
| 1053068, 1113772 | Incident page display issues. |
| 1115524 | Calculation of diff application control OOTB. |
| 1111822 | UI shows the device as isolated when it is not. |
| 1111786 | App Control configuration sometimes does not reach the Collector. |
| 1111225 | Issue with updating application properties. |
| 1139614 | Failure in running ad hoc scan. |