Resolved issues
The following issues have been fixed in 7.2.4. For inquires about a particular bug, please contact Customer Service & Support.
AP Manager
| Bug ID | Description |
|---|---|
| 865486 | The FortiManager Cloud's AP Manager permits the use of invalid channels with a 40MHz channel width. |
| 892773 | Assigning AP Profile returns invalid value. |
Device Manager
| Bug ID | Description |
|---|---|
| 768289 | There is a discrepancy in the usage of quotation marks ("") when configuring DHCP relay from FortiManager Cloud or retrieving it from FortiGate. |
| 831624 | SD-WAN Monitor under the
Monitors displays time frame as "invalid date - invalid date". |
| 895001 | The "gui-ztna"
configuration is displayed as enabled
on the FortiManager Cloud even though this setting is disabled on the FortiGate. |
| 896127 | When attempting to create a VLAN type with a name longer than 15 characters, FortiManager Cloud displays an error message. |
| 896367 | The geographic coordination
config of FortiGates on Device Manager is being reset to 0,0 after a certain period
of time. |
| 899350 | Promote button is missing for FortiGate 80F Clusters. |
| 899541 | An error message, "upgrade image failed", is shown, even though the upgrade has been completed successfully. |
| 905869 | Invalid default value for VRF ID is observed when creating static route. |
| 910391 | When FortiManager Cloud operates in a non-default workspace mode, it may attempt to purge the configuration of the FortiGate devices due to database corruption. |
| 911535 | Adding a Model device with MetaVariables changes the status of other devices which using the MetaVariables to Modified/unknown. |
| 915361 | FortiWifi devices are displayed in FortiManager Cloud under the Vulnerable devices as FortiAP. |
| 917810 | FortiManager Cloud displays an event log with the "update temp cachedb failed" error message when changing the FortiGate management VDOM to mgmt-vdom. |
| 917969 | FortiManager Cloud is unable to search static routes via its interface name. |
| 919613 | When using a space character
in "psksecret", the FortiManager Cloud is unable to install the "psksecret" and displays an
error message. |
| 921094 |
In 6.2 or 6.4 ADOMs, problems might occur when attempting to add or modify static routes. |
| 925546 | Assigned Devices on Provisioning Template\CLI Temp shows incorrect VDOM. |
| 925684 | Only a maximum of 10 devices can be previewed before installation using 'install preview'. |
| 925854 | FortiManager Cloud fails to load the security fabric data for FortiGates (Versions 7.0.5+ & 7.2.5). |
| 931736 | Adding a new cli template script into existing cli template group changes the order of cli templates to alphabetical order. |
| 936544 | When importing CLI Templates, GUI displays a blank page. |
FortiSwitch Manager
|
Bug ID |
Description |
|---|---|
| 881766 | Event logs or task manager do not show which user authorized a Fortiswitch. |
| 947651 | Per Device under the FortiSwitch Manager cannot edit FortiSwitch name and GUI returns error "invalid value". |
Others
|
Bug ID |
Description |
|---|---|
| 880465 | TCP ports 8902 & 8903 are opened and in listening mode after the upgrade. |
| 895982 | Admin with a super user profile is not able to create the Firmware Template when FortiManager Cloud is working in the Workflow mode. |
|
900512 |
FortiManager Cloud ADOM Upgrade fails with the error message, "Peer type cannot be peer when authentication method is pre-share key". |
| 910175 | When provisioning the FortiExtender via CLI template, FortiManager Cloud displays the "mismatch interface" error message. |
| 914027 | FortiManager Cloud does not display/use the latest ISDB version for all of its ADOMs. |
| 918129 | FortiManager Cloud does not support the AWS Security Token Service in AWS SDN connector. |
| 919981 | Installation fails to Azure FortiGate standalone as FortiManager Cloud attempts to set the peervd to "root". |
| 921273 | Unable to upgrade ADOMs due to the XSS vulnerability characters check on wireless-controller. |
| 930425 | When downloading the install preview, the file name doesn't include the timestamp. |
Policy and Objects
|
Bug ID |
Description |
|---|---|
| 696367 | Hit count, first used, and last used may not get updated on FortiManager Cloud. |
| 780058 | FortiManager Cloud's GUI does not support
the "src-vendor-mac" objects
in Firewall policy. |
| 830640 | "Send files to FortiSandbox for inspection" option is being enabled when creating an antivirus profile. |
| 863819 | Unable to delete unused objects. |
| 869863 | NSX connector; unable to deselect the group with no users. |
| 873358 | Installation fails as FortiManager Cloud tries to set "cgn-client-startip" and "cgn-client-endip"
settings when ippool object has been modified. |
| 880418 | The default values of the Application Control Profile entries cannot be changed. |
| 883064 | Any admin make changes to "Object Selection Pane", either set it to Dock to Right, Dock to Bottom, or Classic Dual Pane, it will affect all other admin's GUI preferences. |
| 889586 | Azure Service Tags not displayed correctly in FortiManager Cloud. |
| 894597 | Default value for
"unsupported-ssl-version" in ssl-ssh-profile gets modified during
the installation. |
| 896461 | FortiManager Cloud disables ip6-send-adv
after opening and closing interface configuration. |
| 898883 | Exported firewall policies do not contain firewall address values IP, netmask and other details. |
| 899135 | Installation fails as FortiManager Cloud tries to unset the
"arrp-profile" during the installation. |
| 902298 | FortiManager Cloud does not generate error messages when invalid or obsolete application IDs are used in the policy. Instead, it allows installation and sets the category to "pass" or "monitor". |
| 912114 | FortiManager Cloud is unable to import OpenStack SDN connector and the following error message is displayed: "send_sdn_connector_openstack_cmd: Failed to get openstack token". |
| 914945 | Unable to modify or clone the "SSL/SSH inspection profile" in the Policy & Object on the ADOM 7.0 version. |
| 914981 | In Policy & Object, local policy is not displayed if view mode "Interface pair view" is selected. |
| 916459 | The option "Allow Websites When a Rating Error Occurs" is not being saved correctly in the default web filter. |
| 919415 | Unable to "Edit" and "Delete" Installation Target after enabling classic dual pane mode. |
| 919681 | The incoming and outgoing interfaces are not loading after creating a custom policy package in a 7.2 FortiGate ADOM. |
| 920740 | Unable to create a per device mapping for a virtual server |
| 922648 | FortiManager Cloud unable to push WiFi SSID to FortiGates. |
| 924680 | Policy packages containing geo-based ISDB objects may not be successfully installed to the FortiGates. |
| 925058 | "Web URL Filter"entries are not visible in the Web Filter Profile. |
| 925076 | FortiManager Cloud tries to install different
preconnection-id under VPN SSL WEB Portal > Profile > Bookmark-Group
> GUI-Bookmark > Book. |
| 939979 | After editing authentication-rule/portal mapping, FortiManager Cloud installs unexpected changes to these rules. |
Revision History
|
Bug ID |
Description |
|---|---|
| 513317 | FortiManager Cloud may fail to install policy after FortiGate failover on Azure. |
| 904710 | Restoring a revision of a policy removes the information of all the SD-WAN rules. |
Script
|
Bug ID |
Description |
|---|---|
| 913360 | Device script is trying to add additional configuration; therefore, installation gets failed. |
| 923966 | When FortiManager Cloud is operating in Workspace mode, there are no options to save changes after executing a CLI script. |
| 931196 | Scheduled Scripts created by the LDAP users cannot be run and FortiManager Cloud displays "Data is not ready" error message. |
System Settings
| Bug ID | Description |
|---|---|
| 842732 | FortiManager Cloud does not display the Secondary HA member's status correctly. |
VPN Manager
|
Bug ID |
Description |
|---|---|
|
847479 |
Despite being configured for 'SHA-256,' FortiManager Cloud is installing 'SHA-1' certificates on FortiGates. |
| 863424 | The "Latest Patch Level" should be available with action "Check-up-to-date" under the SSL VPN Portal. |
| 923221 | Provision Template - IPsec Tunnel: cannot Activate IPsec_Fortinet_Recommended; GUI returns error. |
| 931564 | In VPN Manager, ipsec vpn map, topology view, and traffic view do not display map normally. |
Common Vulnerabilities and Exposures
Visit https://fortiguard.com/psirt for more information.
| Bug ID | CVE references |
|---|---|
|
539972 |
FortiManager Cloud 7.2.4 is no longer vulnerable to the following CVE Reference:
|
|
921579 |
FortiManager Cloud 7.2.4 is no longer vulnerable to the following CVE Reference:
|
|
922503 |
FortiManager Cloud 7.2.4 is no longer vulnerable to the following CVE Reference:
|
|
928114 |
FortiManager Cloud 7.2.4 is no longer vulnerable to the following CVE Reference:
|
|
934151 |
FortiManager Cloud 7.2.4 is no longer vulnerable to the following CVE Reference:
|
|
941847 |
FortiManager Cloud 7.2.4 is no longer vulnerable to the following CVE Reference:
|