Known Issues
The following issues have been identified in 7.4.4. To inquire about a particular bug or to report a bug, please contact Customer Service & Support.
Known issues are organized into the following categories:
To inquire about a particular bug or to report a bug, please contact Fortinet Customer Service & Support.
New known issues
The following issues have been identified in version 7.4.4.
Device Manager
|
Bug ID |
Description |
|---|---|
| 1075747 | SD-WAN Monitor does not display the members under the SD-WAN Rules (Map View or Table View). |
Policy & Objects
|
Bug ID |
Description |
|---|---|
|
1074686 |
FortiManager Cloud fails to import NAC policies. Workaround: Manually create the NAC policy in the policy package and then install. |
|
1079678 |
FortiManager Cloud does not provide any warning when there is a "deny all" policy in the middle of a Policy Package. This warning can be still be seen on the "task monitor". |
Existing known issues
The following issues have been identified in a previous version of FortiManager Cloud and remain in FortiManager Cloud 7.4.4.
AP Manager
|
Bug ID |
Description |
|---|---|
| 1032762 | Since FortiOS 7.4.4 now supports the selection of multiple 802.11 protocols and has trimmed the band options, importing FortiOS 7.4.3 AP profiles may result in some bands and channels being un-matched or unset. |
|
1062154 |
Due to a syntax mismatch between FortiGates and FortiManager Cloud for FortiAPs, installation may fail. Currently, FortiManager Cloud v7.4.3 with ADOM 7.4 only supports the FortiAP syntax of the latest FortiGate version 7.4.4. |
Device Manager
|
Bug ID |
Description |
|---|---|
| 952422 | IPsec templates created by SDWAN Overlay does not create tunnels for all the underlay interfaces. |
|
973365 |
FortiManager Cloud does not display the IP addresses of FortiGate interfaces configured with DHCP addressing mode. Workaround: Disable Addressing Mode from DHCP to Manual in FortiManager Cloud Device DB, then retrieve from FortiGate and IP will be updated successfully. |
| 974925 |
The NTP Server setting may not display the correct configuration. This issue might occur on managed devices running FortiOS version 7.4.2 or higher. Workaround: Edit NTP server setting under CLI configuration. |
| 980362 | The Firmware Version column in Device Manager incorrectly shows "Upgrading FortiGate from V1 to V2" even after a successful upgrade has been completed. |
| 1004220 | The SD-WAN Overlay template creates route-map names that exceed the 35-character limit. |
| 1015064 | Disabling the auto-firmware-update in FortiManager Cloud device db does not disable it
on the FortiGate.
|
|
1062545 |
When using the backslash "\" in the preshared key of IPSEC settings, the install may fail. |
| 1070943 |
Unable to upgrade the devices via Device Group Upgrade Firmware feature. Workaround: Upgrade devices individually by using the "Device Firmware Upgrade" feature or Create New Firmware Template for single devices or device groups and use the "Assign to Devices/Groups" feature. |
| 1074717 | An error might be observed when the SD-WAN template health check name contains a space, displaying the following message: "Bad health check name...". |
Others
|
Bug ID |
Description |
|---|---|
|
998198 |
When upgrading ADOM, the upgrade process fails with the following error: "invalid value - can not find import template 'XYZ' ". Workaround: Locate the scripts, delete them, upgrade the ADOM and then import the scripts. |
| 1003711 |
During the FortiGate HA upgrade, both the primary and secondary FortiGates may reboot simultaneously, which can disrupt the network. This issue is more likely to occur in FortiGates that require disk checks, leading to longer boot times. Workaround: Disabling the disk check on fmupdate before the upgrade. |
| 1019261 |
Unable to upgrade ADOM from 7.0 to 7.2, due to the error "Do not support urlfilter-table for global scope webfilter profile". Workaround: Run the following script against the ADOM DB: config webfilter profile edit "g-default" config web unset urlfilter-table end next end |
| 1019784 | ADOM Upgrade from 7.0 to 7.2 fails with the "'Fail(errno=0):invalid value'" error message. |
| 1029677 |
Unable to upgrade ADOM from v6.4 to v7.0 due to global scope error in webfilter profile. Workaround:
Rename the " |
Policy & Objects
|
Bug ID |
Description |
|---|---|
| 845022 | SDN Connector failed to import objects from VMware VSphere. |
|
971065 |
When the number of Custom Internet Services exceeds 256, installation fails due to this limitation. |
| 991720 |
FortiManager Cloud still has an option to enable the "match-vip" through the policy package for "allow" policies. However, this is not supported anymore on the FortiGates. Workaround: Disable the option under advance option in Firewall Rule. |
|
1025012 |
Configuring the SSL/SSH inspection profile may result in the following error: "The server certificate replacement mode cannot support category exemptions." Workaroud:
|
| 1030914 | Copy and paste function in GUI removes name of the policy rule and adds unwanted default security profiles (SSL-SSH no-inspection and default PROTOCOL OPTIONS). |
|
1076659 |
When policy package configured with policy block, installation to multiple devices may have copy fail errors if combined length of the Policy Block name and Policy name is greater than 35 characters and if the total number of such policies exceeds 1000. |
Script
|
Bug ID |
Description |
|---|---|
| 931088 | Unable to delete VDOMs using the FortiManager Cloud script. Interfaces remain in the device database, causing the installation to fail. |
System Settings
|
Bug ID |
Description |
|---|---|
| 825319 | FortiManager Cloud fails to promote a FortiGate HA member (running on firmware 7.2.0 to 7.2.4) to the Primary. |
| 962476 | Restricted Admin users cannot Install Web Filter, IPS, and Application Control profile to FortiGates. |