Fortinet black logo

Release Notes

Home FortiManager 7.2.0 Release Notes

Known Issues

7.2.0
7.4.2
7.4.1
7.4.0
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.14
6.4.13
6.4.12
6.4.11
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.12
6.2.11
6.2.10
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.3
6.2.2
6.2.1
6.2.0
6.0.12
6.0.11
6.0.10
6.0.9
6.0.8
6.0.7
6.0.6
6.0.5
6.0.4
6.0.3
6.0.2
6.0.1
6.0.0
5.6.11
5.6.10
5.6.9
5.6.8
5.6.7
5.6.6
5.6.5
5.6.4
5.6.3
5.6.2
5.6.1
5.6.0
5.6.0
5.4.7
5.4.6
5.4.5
5.4.4
5.4.3
5.4.2
5.4.1
5.4.0
5.2.10
5.2.9
5.2.7
5.2.6
5.2.4
5.2.3
5.2.2
5.2.1
5.2.0
5.0.12
5.0.11
5.0.10
5.0.9
5.0.8
5.0.7
5.0.6
5.0.5
5.0.4
5.0.3
Copy Link
Copy Doc ID af736155-a4a1-11ec-9fd1-fa163e15d75b:454729
Download PDF

Known Issues

The following issues have been identified in 7.2.0. To inquire about a particular bug or to report a bug, please contact Customer Service & Support.

AP Manager

Bug ID

Description

697444

 SSID with MPSK may not pass verification during an install.

708100

AP Manager cannot show Channels when 160 MHz channel width is set.

Device Manager

Bug ID

Description

587404

FortiManager sets incorrect captive-portal-port value when installing v6.0 PolicyPackage to v6.2 devices.

660491

Device Manager system interface should not allow duplicated secondary IP address.

704106

Certificate Enrollment fails using SCEP on Microsoft server with sub-ca certificate chains.

743112

Interface Bandwidth widget on FortiManager under device manager does not display any data for FortiGates.

748578

Retrieve FortiGate configuration may fail due to FSSO connector.

756650

Router > OSPF > Interface is missing configuration window for md5 keys.

764369

FortiManager tries to install Security Fabric trusted list to all downstream FortiGates when a new one is added.

767185

Unable to create route map rule using 'match-interface' when using the BGP templates under the provisioning templates.

770600

Comma between IP address and subnet causes saving problem on Prefix List Rule under BGP Templates.

773147

Installation fails due to the unexpected system interface config changes for "pvc" related settings.

791117

Unable to create simultaneous static routes with named address objects.

793941

Unable to install VPN psk with special characters through CLI template.

795913

Error Probe Failure has been observed when adding FortiAnalyzer to FortiManager.

799259

Duplicate CSF groups for 7.0 FGTs (7.0.2+) due to syntax returning upstream-ip instead of upstream.

Others

Bug ID

Description

729175

FortiManager should highlight device consisting of specific IP address under Fabric View.

781831

FortiManager should be able to retrieve EMS tags using hostname of FortiClient EMS Server if its able to resolve the hostname.

783226

Fabric View may keep loading.

Policy & Objects

Bug ID

Description

523350

FortiManager does not show the default certificate under SSL/SSH Inspection within policy.

652753

When an obsolete internet service is selected, FortiManager may show entries IDs instead of names.

656991

FortiManager should not allow VIP to be created with same IP for External IP and Mapped IP Address.

688586

Exporting Policy Package to "CSV" shows "certificate-inspection" in the "ssl-ssh-profile" column even when the profile is not in use.

698448

'Block Malicious URLs Discovered by FortiSandbox' in Web Filter Profile cannot be saved.

705302

Remote VPN certificate installation failed and cert disappeared from FortiManager however on the FortiGate the certificate installed successfully.

713692

Web Filter Profile install may fail when using pre-defined URL filter.

719774

IP reputation for the policies are not working without source or destination.

721253

FortiManager may not import all the roles and address groups from ClearPass.

724011

FortiManager needs to support multiple server certificate list in ssl/ssh profile.

725024

"Proxy Policy" page shows empty when the "View Mode" is selected as "Interface Pair View".

725132

When modifying IP address of Default VPN Interface of spoke in Device Manager, hub remote gateway should be modified to reflect that change.

725427

Policy package install skips the policy where destination interface is set as SD-WAN zone and policy is IPSEC policy.

731037

There may be File Filter file type mismatch between FortiGate and FortiManager.

751767

Export to excel when filters are applied for a policy package does not work.

758494

Searching members inside an address group does not work.

758680

Unable to complete the Cisco pxGrid fabric connector's configuration on FortiManager.

767255

FortiManager fails to install the custom signature because it is too long.

773249

FortiManager may not display the correct number of firewall address objects while adding the objects to DoS policy.

774058

Rule list order may not be saved under File Filter Profile.

774111

FortiManager does not support Dynamic firewall address with sub-type Switch Controller NAC Policy TAG.

775128

Unable to create more than 20 SAML users in policy package object.

777017

FortiManager purges the "arrp-profile" when installing the v6.2 policy packages to v6.4 FGTs.

779965

Users may not be able to export firewall Header and Footer policies to Excel.

792980

Installation fails when trying to install SAML user configuration.

801876

Installation failed due to "Copy global shared objects" failure.

841187

FOS 7.0.7 syntax support. See FortiManager 7.2.0 and FortiOS 7.0.8 compatibility issues.

Revision History

Bug ID Description

496870

Fabric SDN Connector is installed on FortiGate even if it is not in used.

691240

FortiManager should not unset the value forward-error-correction with certain FortiGate platforms.

779864

FortiManager cannot install ISDB object 'Microsoft-Intune'.

Script

Bug ID

Description

793407

Installation fails if one of the BGP network prefix entry is a supernet.

Services

Bug ID Description

704584

FAP firmware may not be listed and cannot be imported.

798979

FortiManager cannot download the latest IPS DB.

System Settings

Bug ID Description

752916

FortiManager should be able to set desired permissions for Extender Manager in administrator profile settings.

753690

SNMPv3 security option configuration has discrepancy between GUI and CLI.

799504

Local restricted administrator users are able to view the task monitor.

799519

If Management Extension Applications (MEA) are enabled, all system settings may be lost after upgrading the FortiManager.

VPN Manager

Bug ID Description

615890

IPSec VPN Authusergrp option "Inherit from Policy" is missing when setting xauthtype as auto server.

699759

When install a policy package, per device mapped object used in SSL VPN cannot be installed.
Previous
Next

Known Issues

The following issues have been identified in 7.2.0. To inquire about a particular bug or to report a bug, please contact Customer Service & Support.

AP Manager

Bug ID

Description

697444

 SSID with MPSK may not pass verification during an install.

708100

AP Manager cannot show Channels when 160 MHz channel width is set.

Device Manager

Bug ID

Description

587404

FortiManager sets incorrect captive-portal-port value when installing v6.0 PolicyPackage to v6.2 devices.

660491

Device Manager system interface should not allow duplicated secondary IP address.

704106

Certificate Enrollment fails using SCEP on Microsoft server with sub-ca certificate chains.

743112

Interface Bandwidth widget on FortiManager under device manager does not display any data for FortiGates.

748578

Retrieve FortiGate configuration may fail due to FSSO connector.

756650

Router > OSPF > Interface is missing configuration window for md5 keys.

764369

FortiManager tries to install Security Fabric trusted list to all downstream FortiGates when a new one is added.

767185

Unable to create route map rule using 'match-interface' when using the BGP templates under the provisioning templates.

770600

Comma between IP address and subnet causes saving problem on Prefix List Rule under BGP Templates.

773147

Installation fails due to the unexpected system interface config changes for "pvc" related settings.

791117

Unable to create simultaneous static routes with named address objects.

793941

Unable to install VPN psk with special characters through CLI template.

795913

Error Probe Failure has been observed when adding FortiAnalyzer to FortiManager.

799259

Duplicate CSF groups for 7.0 FGTs (7.0.2+) due to syntax returning upstream-ip instead of upstream.

Others

Bug ID

Description

729175

FortiManager should highlight device consisting of specific IP address under Fabric View.

781831

FortiManager should be able to retrieve EMS tags using hostname of FortiClient EMS Server if its able to resolve the hostname.

783226

Fabric View may keep loading.

Policy & Objects

Bug ID

Description

523350

FortiManager does not show the default certificate under SSL/SSH Inspection within policy.

652753

When an obsolete internet service is selected, FortiManager may show entries IDs instead of names.

656991

FortiManager should not allow VIP to be created with same IP for External IP and Mapped IP Address.

688586

Exporting Policy Package to "CSV" shows "certificate-inspection" in the "ssl-ssh-profile" column even when the profile is not in use.

698448

'Block Malicious URLs Discovered by FortiSandbox' in Web Filter Profile cannot be saved.

705302

Remote VPN certificate installation failed and cert disappeared from FortiManager however on the FortiGate the certificate installed successfully.

713692

Web Filter Profile install may fail when using pre-defined URL filter.

719774

IP reputation for the policies are not working without source or destination.

721253

FortiManager may not import all the roles and address groups from ClearPass.

724011

FortiManager needs to support multiple server certificate list in ssl/ssh profile.

725024

"Proxy Policy" page shows empty when the "View Mode" is selected as "Interface Pair View".

725132

When modifying IP address of Default VPN Interface of spoke in Device Manager, hub remote gateway should be modified to reflect that change.

725427

Policy package install skips the policy where destination interface is set as SD-WAN zone and policy is IPSEC policy.

731037

There may be File Filter file type mismatch between FortiGate and FortiManager.

751767

Export to excel when filters are applied for a policy package does not work.

758494

Searching members inside an address group does not work.

758680

Unable to complete the Cisco pxGrid fabric connector's configuration on FortiManager.

767255

FortiManager fails to install the custom signature because it is too long.

773249

FortiManager may not display the correct number of firewall address objects while adding the objects to DoS policy.

774058

Rule list order may not be saved under File Filter Profile.

774111

FortiManager does not support Dynamic firewall address with sub-type Switch Controller NAC Policy TAG.

775128

Unable to create more than 20 SAML users in policy package object.

777017

FortiManager purges the "arrp-profile" when installing the v6.2 policy packages to v6.4 FGTs.

779965

Users may not be able to export firewall Header and Footer policies to Excel.

792980

Installation fails when trying to install SAML user configuration.

801876

Installation failed due to "Copy global shared objects" failure.

841187

FOS 7.0.7 syntax support. See FortiManager 7.2.0 and FortiOS 7.0.8 compatibility issues.

Revision History

Bug ID Description

496870

Fabric SDN Connector is installed on FortiGate even if it is not in used.

691240

FortiManager should not unset the value forward-error-correction with certain FortiGate platforms.

779864

FortiManager cannot install ISDB object 'Microsoft-Intune'.

Script

Bug ID

Description

793407

Installation fails if one of the BGP network prefix entry is a supernet.

Services

Bug ID Description

704584

FAP firmware may not be listed and cannot be imported.

798979

FortiManager cannot download the latest IPS DB.

System Settings

Bug ID Description

752916

FortiManager should be able to set desired permissions for Extender Manager in administrator profile settings.

753690

SNMPv3 security option configuration has discrepancy between GUI and CLI.

799504

Local restricted administrator users are able to view the task monitor.

799519

If Management Extension Applications (MEA) are enabled, all system settings may be lost after upgrading the FortiManager.

VPN Manager

Bug ID Description

615890

IPSec VPN Authusergrp option "Inherit from Policy" is missing when setting xauthtype as auto server.

699759

When install a policy package, per device mapped object used in SSL VPN cannot be installed.
Previous
Next