Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Release Notes

    Home FortiManager 7.2.6 Release Notes
    7.2.6
    7.6.3
    7.6.2
    7.6.1
    7.6.0
    7.4.6
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.5
    6.2.3
    6.2.2
    6.2.1
    6.2.0
    6.0.12
    6.0.11
    6.0.10
    6.0.9
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.6.11
    5.6.10
    5.6.9
    5.6.8
    5.6.7
    5.6.6
    5.6.5
    5.6.4
    5.6.3
    5.6.2
    5.6.1
    5.6.0
    5.6.0
    5.4.7
    5.4.6
    5.4.5
    5.4.4
    5.4.3
    5.4.2
    5.4.1
    5.4.0
    5.2.10
    5.2.9
    5.2.7
    5.2.6
    5.2.4
    5.2.3
    5.2.2
    5.2.1
    5.2.0
    5.0.12
    5.0.11
    5.0.10
    5.0.9
    5.0.8
    5.0.7
    5.0.6
    5.0.5
    5.0.4
    5.0.3

    Known issues

    Known issues

    Known issues are organized into the following categories:

    To inquire about a particular bug or to report a bug, please contact Fortinet Customer Service & Support.

    New known issues

    The following issues have been identified in version 7.2.6.

    Device Manager

    Bug ID

    Description
    1063835 FortiManager ZTP installation to FortiGate versions 7.2.8 and lower may fail due to differing default "ssh-kex-algo" settings between FortiManager and FortiGate.
    1067706

    Metadata variables cannot be used in the firewall address objects.

    1070943

    Unable to upgrade the devices via Device Group Upgrade Firmware feature.

    Workaround:

    Upgrade devices individually by using the "Device Firmware Upgrade" feature or Create New Firmware Template for single devices or device groups and use the "Assign to Devices/Groups" feature.

    Policy & Objects

    Bug ID

    Description
    983591 In the Firewall section, when attempting to add a note to the policy, the comment window shifts towards the left corner.

    1068736

    Best Quality SDWAN rules installation may fail with the following error message: "Commit failed: Bad health check name".

    Script

    Bug ID

    Description
    931088 Unable to delete VDOMs using the FortiManager script. Interfaces remain in the device database, causing the installation to fail.

    Services

    Bug ID

    Description
    1034102

    Unable to upgrade FortiGates from FortiManager due to a "no valid FMWR license" error, despite the FortiGates being licensed. This issue is reported when the "FMG Authorization table" on the FDS server is empty.

    Workaround:

    Re-downloading FortiGate contracts from FDS server by running the following commands on the FortiManager:

    diagnose fmupdate del-device <FGT_SN>

    diagnose fmupdate service-restart fds

    diagnose fmupdate service-restart fwm

    1068809

    Users may encounter a "no valid FMWR license" error message when attempting to upgrade FortiGate firmware images from FortiManager, even if the devices have valid firmware contracts.

    Existing known issues

    The following issues have been identified in a previous version of FortiManager and remain in FortiManager 7.2.6.

    AP Manager

    Bug ID

    Description
    1010632 Floor Map shows wrong AP status and does not show the rest of APs when adding a new AP.

    Device Manager

    Bug ID

    Description
    894948 FortiManager fails to push the FortiAnalyzer override settings to the FortiGate.
    980362 The Firmware Version column in Device Manager incorrectly shows "Upgrading FortiGate from V1 to V2" even after a successful upgrade has been completed.
    1004220 The SD-WAN Overlay template creates route-map names that exceed the 35-character limit.

    1062545

    When using the backslash "\" in the preshared key of IPSEC settings, the install may fail.

    1063635

    FortiManager does not support the "FortiWiFi-80F-2R-3G4G-DSL".

    Others

    Bug ID

    Description
    703585 FortiManager may return "Connection aborted" error with JSON API request.
    777831 When FortiAnalyzer is added as a managed device to FortiManager, the "Incident & Event" tile will be displayed instead of the "FortiSoC".
    1003711

    During the FortiGate HA upgrade, both the primary and secondary FortiGates may reboot simultaneously, which can disrupt the network. This issue is more likely to occur in FortiGates that require disk checks, leading to longer boot times.

    Workaround:

    Disabling the disk check on fmupdate before the upgrade using the following command:

    config fmupdate fwm-setting

    set check-fgt-disk disable

    end
    1019261

    Unable to upgrade ADOM from 7.0 to 7.2, due to the error, "Do not support urlfilter-table for global scope webfilter profile".

    Workaround:

    Run the following script against the ADOM DB:

    config webfilter profile

    edit "g-default"

    config web

    unset urlfilter-table

    end

    next

    end
    1029677

    Unable to upgrade ADOM from v6.4 to v7.0 due to global scope error in webfilter profile.

    Workaround:

    Rename the "g-default" to "g-test" > save. It can be deleted after that. Once ADOM upgraded, new g-default is created.

    Policy & Objects

    Bug ID

    Description
    845022 SDN Connector failed to import objects from VMware VSphere.
    967271 Installation failed when trying to remove firewall internet-service-name objects.

    1004929

    FortiManager removes the Web Filter Profile from the Profile Group for Policy-Based FortiGates.

    Workaround:

    Use individual profiles in the policy instead of the profile group.

    1005161

    The policy package status changes for all devices even when an address object is opened and saved without any modifications. This issue is particularly observed in objects utilizing the per-device mapping feature.

    VPN Manager

    Bug ID

    Description
    784385

    If policy changes are made directly on the FortiGates, the subsequent policy package import creates faulty dynamic mappings for VPN Manager.

    Workaround:

    It is strongly recommended to create a fresh backup of the FortiManager's configuration prior to the workaround. Perform the following command to check & repair the FortiManager's configuration database:

    diagnose cdb check policy-packages <adom>

    After running this command, FortiManager will remove the invalid mappings of vpnmgr interfaces.

    1042701

    The traffic view page for the full mesh does not display the FortiGate and the external gateway.
    Previous
    Next

    Known issues

    Known issues

    Known issues are organized into the following categories:

    To inquire about a particular bug or to report a bug, please contact Fortinet Customer Service & Support.

    New known issues

    The following issues have been identified in version 7.2.6.

    Device Manager

    Bug ID

    Description
    1063835 FortiManager ZTP installation to FortiGate versions 7.2.8 and lower may fail due to differing default "ssh-kex-algo" settings between FortiManager and FortiGate.
    1067706

    Metadata variables cannot be used in the firewall address objects.

    1070943

    Unable to upgrade the devices via Device Group Upgrade Firmware feature.

    Workaround:

    Upgrade devices individually by using the "Device Firmware Upgrade" feature or Create New Firmware Template for single devices or device groups and use the "Assign to Devices/Groups" feature.

    Policy & Objects

    Bug ID

    Description
    983591 In the Firewall section, when attempting to add a note to the policy, the comment window shifts towards the left corner.

    1068736

    Best Quality SDWAN rules installation may fail with the following error message: "Commit failed: Bad health check name".

    Script

    Bug ID

    Description
    931088 Unable to delete VDOMs using the FortiManager script. Interfaces remain in the device database, causing the installation to fail.

    Services

    Bug ID

    Description
    1034102

    Unable to upgrade FortiGates from FortiManager due to a "no valid FMWR license" error, despite the FortiGates being licensed. This issue is reported when the "FMG Authorization table" on the FDS server is empty.

    Workaround:

    Re-downloading FortiGate contracts from FDS server by running the following commands on the FortiManager:

    diagnose fmupdate del-device <FGT_SN>

    diagnose fmupdate service-restart fds

    diagnose fmupdate service-restart fwm

    1068809

    Users may encounter a "no valid FMWR license" error message when attempting to upgrade FortiGate firmware images from FortiManager, even if the devices have valid firmware contracts.

    Existing known issues

    The following issues have been identified in a previous version of FortiManager and remain in FortiManager 7.2.6.

    AP Manager

    Bug ID

    Description
    1010632 Floor Map shows wrong AP status and does not show the rest of APs when adding a new AP.

    Device Manager

    Bug ID

    Description
    894948 FortiManager fails to push the FortiAnalyzer override settings to the FortiGate.
    980362 The Firmware Version column in Device Manager incorrectly shows "Upgrading FortiGate from V1 to V2" even after a successful upgrade has been completed.
    1004220 The SD-WAN Overlay template creates route-map names that exceed the 35-character limit.

    1062545

    When using the backslash "\" in the preshared key of IPSEC settings, the install may fail.

    1063635

    FortiManager does not support the "FortiWiFi-80F-2R-3G4G-DSL".

    Others

    Bug ID

    Description
    703585 FortiManager may return "Connection aborted" error with JSON API request.
    777831 When FortiAnalyzer is added as a managed device to FortiManager, the "Incident & Event" tile will be displayed instead of the "FortiSoC".
    1003711

    During the FortiGate HA upgrade, both the primary and secondary FortiGates may reboot simultaneously, which can disrupt the network. This issue is more likely to occur in FortiGates that require disk checks, leading to longer boot times.

    Workaround:

    Disabling the disk check on fmupdate before the upgrade using the following command:

    config fmupdate fwm-setting

    set check-fgt-disk disable

    end
    1019261

    Unable to upgrade ADOM from 7.0 to 7.2, due to the error, "Do not support urlfilter-table for global scope webfilter profile".

    Workaround:

    Run the following script against the ADOM DB:

    config webfilter profile

    edit "g-default"

    config web

    unset urlfilter-table

    end

    next

    end
    1029677

    Unable to upgrade ADOM from v6.4 to v7.0 due to global scope error in webfilter profile.

    Workaround:

    Rename the "g-default" to "g-test" > save. It can be deleted after that. Once ADOM upgraded, new g-default is created.

    Policy & Objects

    Bug ID

    Description
    845022 SDN Connector failed to import objects from VMware VSphere.
    967271 Installation failed when trying to remove firewall internet-service-name objects.

    1004929

    FortiManager removes the Web Filter Profile from the Profile Group for Policy-Based FortiGates.

    Workaround:

    Use individual profiles in the policy instead of the profile group.

    1005161

    The policy package status changes for all devices even when an address object is opened and saved without any modifications. This issue is particularly observed in objects utilizing the per-device mapping feature.

    VPN Manager

    Bug ID

    Description
    784385

    If policy changes are made directly on the FortiGates, the subsequent policy package import creates faulty dynamic mappings for VPN Manager.

    Workaround:

    It is strongly recommended to create a fresh backup of the FortiManager's configuration prior to the workaround. Perform the following command to check & repair the FortiManager's configuration database:

    diagnose cdb check policy-packages <adom>

    After running this command, FortiManager will remove the invalid mappings of vpnmgr interfaces.

    1042701

    The traffic view page for the full mesh does not display the FortiGate and the external gateway.
    Previous
    Next