Fortinet black logo

Release Notes

Home FortiManager 7.0.4 Release Notes

Known Issues

7.0.4
7.4.2
7.4.1
7.4.0
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.14
6.4.13
6.4.12
6.4.11
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.12
6.2.11
6.2.10
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.3
6.2.2
6.2.1
6.2.0
6.0.12
6.0.11
6.0.10
6.0.9
6.0.8
6.0.7
6.0.6
6.0.5
6.0.4
6.0.3
6.0.2
6.0.1
6.0.0
5.6.11
5.6.10
5.6.9
5.6.8
5.6.7
5.6.6
5.6.5
5.6.4
5.6.3
5.6.2
5.6.1
5.6.0
5.6.0
5.4.7
5.4.6
5.4.5
5.4.4
5.4.3
5.4.2
5.4.1
5.4.0
5.2.10
5.2.9
5.2.7
5.2.6
5.2.4
5.2.3
5.2.2
5.2.1
5.2.0
5.0.12
5.0.11
5.0.10
5.0.9
5.0.8
5.0.7
5.0.6
5.0.5
5.0.4
5.0.3
Copy Link
Copy Doc ID b20eedea-d147-11ec-bb32-fa163e15d75b:454729
Download PDF

Known Issues

The following issues have been identified in 7.0.4. To inquire about a particular bug or to report a bug, please contact Customer Service & Support.

Device Manager

Bug ID

Description

771417

Cannot overriding system template settings.

764369

FortiManager tries to install Security Fabric trusted list to all downstream FGs when a new one is added.

830105

When two or more IPsec phase1-interfaces have same remote-gw IP address, FMG tries to install 1.0.0.0 as remote-gw.

Others

Bug ID

Description

823294

SSH connection between FortiGate and FortiManager v7.0.4 fails due to server_host_key_algorithms mismatch.

Policy & Objects

Bug ID

Description

585177

FortiManager is unable to create VIPv6 virtual server objects.

724011

FortiManager needs to support multiple server certificate list in ssl/ssh profile.

751168

Installation to FortiGate may fail when installing some specific applications.
793240

FortiManager fails to retrieve FortiGate's configuration when external-resource objects include a "g-" prefix.

There are two workarounds; use the approach that works best for your environment. If it is possible, create a new backup of your FMG and FGT(s) before making any changes:

First workaround approach:

  1. Re-create all threat feeds locally in VDOM configuration and update policies and security profiles that reference them to the local threat feed vs. the global feed.

  2. Delete the global threat feed objects.

Second workaround approach:

  1. Perform policy reinstallation. FMG adds original threat feed objects within the VDOM configuration without the 'g' prefix.

  2. FMG reports 'install OK/verify FAIL' at the end of the policy installation.

  3. Run scripts to delete the global threat feed objects (objects with the 'g' prefix) from the FGT.

  4. Retrieve the FGT configuration from FMG.

  5. Perform another policy installation to update the configuration synchronization status between the FGT and FMG. No commands are pushed during this stage according to the install wizard.

822843

FortiManager displays an error when using the access-proxy type VIP and normal VIP in firewall policies as they are both using the same external IP.

838648

"Rename objects to import" inconsistency with "datasrc duplicate" error.

System Settings

Bug ID Description

780245

Install Wizard shows all devices are selected even-though "Default Device Selection for Install" is set to "Deselect All".
Previous
Next

Known Issues

The following issues have been identified in 7.0.4. To inquire about a particular bug or to report a bug, please contact Customer Service & Support.

Device Manager

Bug ID

Description

771417

Cannot overriding system template settings.

764369

FortiManager tries to install Security Fabric trusted list to all downstream FGs when a new one is added.

830105

When two or more IPsec phase1-interfaces have same remote-gw IP address, FMG tries to install 1.0.0.0 as remote-gw.

Others

Bug ID

Description

823294

SSH connection between FortiGate and FortiManager v7.0.4 fails due to server_host_key_algorithms mismatch.

Policy & Objects

Bug ID

Description

585177

FortiManager is unable to create VIPv6 virtual server objects.

724011

FortiManager needs to support multiple server certificate list in ssl/ssh profile.

751168

Installation to FortiGate may fail when installing some specific applications.
793240

FortiManager fails to retrieve FortiGate's configuration when external-resource objects include a "g-" prefix.

There are two workarounds; use the approach that works best for your environment. If it is possible, create a new backup of your FMG and FGT(s) before making any changes:

First workaround approach:

  1. Re-create all threat feeds locally in VDOM configuration and update policies and security profiles that reference them to the local threat feed vs. the global feed.

  2. Delete the global threat feed objects.

Second workaround approach:

  1. Perform policy reinstallation. FMG adds original threat feed objects within the VDOM configuration without the 'g' prefix.

  2. FMG reports 'install OK/verify FAIL' at the end of the policy installation.

  3. Run scripts to delete the global threat feed objects (objects with the 'g' prefix) from the FGT.

  4. Retrieve the FGT configuration from FMG.

  5. Perform another policy installation to update the configuration synchronization status between the FGT and FMG. No commands are pushed during this stage according to the install wizard.

822843

FortiManager displays an error when using the access-proxy type VIP and normal VIP in firewall policies as they are both using the same external IP.

838648

"Rename objects to import" inconsistency with "datasrc duplicate" error.

System Settings

Bug ID Description

780245

Install Wizard shows all devices are selected even-though "Default Device Selection for Install" is set to "Deselect All".
Previous
Next