Fortinet Document Library

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

Release Notes

Known Issues

The following issues have been identified in 6.2.5. For inquires about a particular bug or to report a bug, please contact Customer Service & Support.

AP Manager

Bug ID

Description

607107 FortiManager prompts installation errors when certain channels are selected for Radio 2 in 5 GHZ band of FAP-421E.

Device Manager

Bug ID

Description

547768 FortiManager should allow easier management of the compliance exempt lists.
552492 VAP is always loading under CLI configuration.
558176 The address interface for the interface-subnet type is re-set to zone after it is imported, leading to copy fail during install.
586809 FortiManager incorrectly counts the VDOM license for FortiGate 7000 series.
593364 FortiManager does not install md5 key for OSPF interface configured from Device Manager.
594474 FortiManager ADOM in backup mode is not backing up device configuration changes from super_admin remote radius accounts.
595058 When the user sets "Scheduled Updates" configuration to "1 hour" in FortiGuard on Device Manager, FortiManager installation preview is configured as "set time 1:60".
598916 When creating user groups via CLI Only Objects, comma separated values are treated as a string instead of a list.
599819 Changing static route from subnet to named address does not push the change to FortiGate.
601692 FortiManager is unable to overwrite IPv6 default route.

610568

FortiManager may not follow the order in CLI Script template.

619106 When importing a policy, the conflict page may truncate outputs.

634597

FortiManager may unset speed on ports which are configured with 10000full on FortiGate-1100E/2200E/3300E/3400E.

468776

Unable to retrieve device due to data not exist (g-xxxx firewall object).

Others

Bug ID Description

647337

When installing or refreshing FSSO Agent, FortiManager fails to retrieve FSSO user groups via the FortiGate.

Policy & Objects

Bug ID Description
523350 FortiManager does not show the default certificate under SSL/SSH Inspection within policy.
545759 The From or To column filter displays unmapped interfaces in the drop-down list.
577199 Importing policy package does not add interfaces in dynamic mappings for zone if the zone mapping is empty.
578501 FortiManager should show global icon for global objects assigned to ADOMs.
586026 FortiManager should display zone icon based on existing and non existing dynamic mappings.
598938 FortiManager should allow setting wildcard-fqdn type firewall address as destination on proxy policy.
602176 Creating a proxy policy with a profile group adds additional security profile.
612317 FortiManager shows incorrect country code for Cyprus under User definition.
612445 Policy package for v5.6 cannot be installed on v6.0 devices if default deep SSL inspection is used.
614710 Result of search in device interface should display the zone that the interface is a member of.
617031 Right-clicking on IPv4/Proxy Policy or Installation Targets should not reload the page if the related information is already displayed.
618321 FortiManager is unable to create RSSO Group if Agent is configured with a custom name.
618499 Using right-click to edit a zone incorrectly prompts dynamic interface window.
620092 Interface Pair View is not working for Security Policies.
622040 Security Policy is missing Implicit Deny policy.
623100 FortiManager is constantly changing UUID for firewall address object.

632545

After upgrading to 6.2.3, installing the policy package results in "Could not read zone validation results" error.

636732

Copying policy causes interface binding contradiction for object member.

Revision History

Bug ID

Description

594933 Re-installing Policy Package cannot skip to install policy package, which fails validation.
597650 FortiManager cannot install allowed DNS and URL threat feed configuration.

604680

FortiManager sets fsso to disable even though FSSO group is in use.

604927

FortiManager can create a custom device without a category, which may lead to failed installation.

Services

Bug ID

Description

437935 FAD-VM license may not be validated on FortiManager.
541192 FortiManager should keep firmware image files when the files are for different FortiExtender devices.

System Settings

Bug ID

Description

556334

Standard ADOM users should be able to assign system templates to FortiGate devices.

586626 Users should be able to identify who locked their assigned ADOM.
611215 SNMP Hosts in SNMP Community are not displayed in the GUI if ADOM is unlocked.

VPN Manager

Bug ID

Description

596953 The Monitor page displays a white screen when the user goes to VPN manager > Monitor and selects a specific community from the tree menu to show only that community's tunnels.
621209 VPN monitor should show the corresponding VPN community tunnels only under each community.

Known Issues

The following issues have been identified in 6.2.5. For inquires about a particular bug or to report a bug, please contact Customer Service & Support.

AP Manager

Bug ID

Description

607107 FortiManager prompts installation errors when certain channels are selected for Radio 2 in 5 GHZ band of FAP-421E.

Device Manager

Bug ID

Description

547768 FortiManager should allow easier management of the compliance exempt lists.
552492 VAP is always loading under CLI configuration.
558176 The address interface for the interface-subnet type is re-set to zone after it is imported, leading to copy fail during install.
586809 FortiManager incorrectly counts the VDOM license for FortiGate 7000 series.
593364 FortiManager does not install md5 key for OSPF interface configured from Device Manager.
594474 FortiManager ADOM in backup mode is not backing up device configuration changes from super_admin remote radius accounts.
595058 When the user sets "Scheduled Updates" configuration to "1 hour" in FortiGuard on Device Manager, FortiManager installation preview is configured as "set time 1:60".
598916 When creating user groups via CLI Only Objects, comma separated values are treated as a string instead of a list.
599819 Changing static route from subnet to named address does not push the change to FortiGate.
601692 FortiManager is unable to overwrite IPv6 default route.

610568

FortiManager may not follow the order in CLI Script template.

619106 When importing a policy, the conflict page may truncate outputs.

634597

FortiManager may unset speed on ports which are configured with 10000full on FortiGate-1100E/2200E/3300E/3400E.

468776

Unable to retrieve device due to data not exist (g-xxxx firewall object).

Others

Bug ID Description

647337

When installing or refreshing FSSO Agent, FortiManager fails to retrieve FSSO user groups via the FortiGate.

Policy & Objects

Bug ID Description
523350 FortiManager does not show the default certificate under SSL/SSH Inspection within policy.
545759 The From or To column filter displays unmapped interfaces in the drop-down list.
577199 Importing policy package does not add interfaces in dynamic mappings for zone if the zone mapping is empty.
578501 FortiManager should show global icon for global objects assigned to ADOMs.
586026 FortiManager should display zone icon based on existing and non existing dynamic mappings.
598938 FortiManager should allow setting wildcard-fqdn type firewall address as destination on proxy policy.
602176 Creating a proxy policy with a profile group adds additional security profile.
612317 FortiManager shows incorrect country code for Cyprus under User definition.
612445 Policy package for v5.6 cannot be installed on v6.0 devices if default deep SSL inspection is used.
614710 Result of search in device interface should display the zone that the interface is a member of.
617031 Right-clicking on IPv4/Proxy Policy or Installation Targets should not reload the page if the related information is already displayed.
618321 FortiManager is unable to create RSSO Group if Agent is configured with a custom name.
618499 Using right-click to edit a zone incorrectly prompts dynamic interface window.
620092 Interface Pair View is not working for Security Policies.
622040 Security Policy is missing Implicit Deny policy.
623100 FortiManager is constantly changing UUID for firewall address object.

632545

After upgrading to 6.2.3, installing the policy package results in "Could not read zone validation results" error.

636732

Copying policy causes interface binding contradiction for object member.

Revision History

Bug ID

Description

594933 Re-installing Policy Package cannot skip to install policy package, which fails validation.
597650 FortiManager cannot install allowed DNS and URL threat feed configuration.

604680

FortiManager sets fsso to disable even though FSSO group is in use.

604927

FortiManager can create a custom device without a category, which may lead to failed installation.

Services

Bug ID

Description

437935 FAD-VM license may not be validated on FortiManager.
541192 FortiManager should keep firmware image files when the files are for different FortiExtender devices.

System Settings

Bug ID

Description

556334

Standard ADOM users should be able to assign system templates to FortiGate devices.

586626 Users should be able to identify who locked their assigned ADOM.
611215 SNMP Hosts in SNMP Community are not displayed in the GUI if ADOM is unlocked.

VPN Manager

Bug ID

Description

596953 The Monitor page displays a white screen when the user goes to VPN manager > Monitor and selects a specific community from the tree menu to show only that community's tunnels.
621209 VPN monitor should show the corresponding VPN community tunnels only under each community.