FortiNDR malware detection server has been integrated into the antivirus profile.

FortiMail can send logs to FortiAnalyzer Cloud.

• Internal email: Captures internal-to-internal email for Email Continuity.
• BCC self: Added "BCC self" option to Email Continuity in resource profile.
• Address book synchronization: LDAP address book can be synchronized to FortiMailat configured intervals.
• Authentication improvements.

Added sending, deleting, and delivering to alternative host functions in mail queue search. Also added REST API support for these functions.

Added control in the resource profile to disable/enable webmail users' attachment download of their personal quarantines.

Support ARC validation and sealing.

Added header removal to content and DLP action profiles.

Added CLI commands to restrict domain level admins to make changes to some settings.

Try to resolve all URLs to their final destinations.

Added classifier variables to notification message templates and increased notification profiles for some models.

Added mail host as the relay type to mail routing in MTA Advanced Control.

Use DMARC record's policy and take corresponding actions.

Support MTA-STS domain checking.

• Per domain statistics: In addition to system level mail statistics, per domain statistics metrics can be generated and viewed.
• Intra domain protection: Both incoming and outgoing recipient policies can be applied between protected domains of different tenants.
• New attribute fields for customer management: some domain admin settings can only be configured by system admin.

Added "discard" action to recipient verification failures.

Support web filter local categories and rating override under Security > URL Filter > Local Category and Security > URL Filter > Override Rating.

In previous releases, CLI command "config antispam url-fgas-exempt-list" is used to configure the URL exempt list. Starting from 7.2.0 release, CLI command "config system webfilter local-rating" will be used instead.

New GA releases will be tagged as "Maturity" or "Feature" release.

The Feature tag indicates that the firmware release includes new features.

The Maturity tag indicates that the firmware release includes no new, major features. Maturity firmware will contain bug fixes and vulnerability patches where applicable.

Added "ORIG_ENVOLOPE_TO" and "ORIG_TO" (Header To) to quarantine summary reports.

Added an option in incoming disclaimers for external email only.

Added description/comment fields to some settings.

Added rate limit control to REST API access.

Added privilege levels to access CLI in admin profiles.

Grouped a few utilities under System menu.

• Added .msg to .eml converter
• Added regular expression validator

Added option to customize Mail From attribute under SMTP Recipient Address Verification in domain settings.

Added auto aging and retention option to the block/safe lists.

Separate replacement messages for body and attachment parts.

Added URL neutralization action to CDR and content profile actions.

Added option to bypass one-time URLs.

The DSN EHLO/HELO argument can be set to host name, domain name, or other customized name. The default is host name.

Resolve URLs to their final destinations before FortiGuard query.

Reset the FortiMail unit to its default settings for the currently installed firmware version, while retaining all network settings.

• Added individual actions for IP reputation in MS365 antispam profiles.
• Added sender and recipient filtering.

• When set to on-policy-match, Microsoft 365 History, Mail Event, Antivirus, and Antispam log entries will only be logged upon policy match.

Support load balancer on Azure and Oracle Cloud platform.

(Same feature as introduced in 7.0.3) The following CLI command has been added to control IP pool usage.

config system mailserver

set ip-pool-direction [ all | exclude-internal-to-internal]

end

With the new "exclude-internal-to-internal" option, the IP pools will not be applied to the internal-to-internal email. The default setting is "all".