Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY 7.4.11
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Release Notes

    Home FortiManager 7.4.11 Release Notes
    7.4.11
    8.0.0
    7.6.6
    7.6.5
    7.6.4
    7.6.3
    7.6.2
    7.6.1
    7.6.0
    7.4.11
    7.4.10
    7.4.9
    7.4.8
    7.4.7
    7.4.6
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.12
    7.2.11
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.5
    6.2.3
    6.2.2
    6.2.1
    6.2.0
    6.0.12
    6.0.11
    6.0.10
    6.0.9
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.6.11
    5.6.10
    5.6.9
    5.6.8
    5.6.7
    5.6.6
    5.6.5
    5.6.4
    5.6.3
    5.6.2
    5.6.1
    5.6.0
    5.6.0
    5.4.7
    5.4.6
    5.4.5
    5.4.4
    5.4.3
    5.4.2
    5.4.1
    5.4.0
    5.2.10
    5.2.9
    5.2.7
    5.2.6
    5.2.4
    5.2.3
    5.2.2
    5.2.1
    5.2.0
    5.0.12
    5.0.11
    5.0.10
    5.0.9
    5.0.8
    5.0.7
    5.0.6
    5.0.5
    5.0.4
    5.0.3

    Resolved issues

    Resolved issues

    The following issues have been fixed in 7.4.11. To inquire about a particular bug, please contact Customer Service & Support.

    AP Manager

    Bug ID

    Description

    1239368

    Duplicate SSID occurs when accented character is used at the end of the SSID name.

    Device Manager

    Bug ID

    Description

    1015138

    Unable to edit interface with dhcp reservation.
    1189821 Failure to add FortiAnalyzer occurs when using the HA cluster's virtual IP in FortiManager.
    1194361

    Installation fails when device description contains single quote characters.

    1215090

    Unable to retrieve correct setting of device-identification in system interface.
    1224965 Device identification is disabled when changing interface role from LAN to undefined.

    1246821

    FortiManager retrieve may fail when an admins remote-group exists only in the root VDOM and the VDOM order starts with a non-root VDOM, causing invalid reference detection during device addition.

    1254998

    Incorrect Interface Syntax Selection for FGT90G/91G Gen1/Gen2 During Model Device (ZTP) Creation has been observed.
    1269401 Performing device deletion may appear very slow. While the deletion process is still ongoing, clients performing policy package installation tasks may experience delays before the task starts or completes. This behavior has been observed in some cases where FortiManager manages more than 6,000 device groups.

    FortiSwitch Manager

    Bug ID

    Description

    1118271

    FortiSwitch Device information is not displayed when FortiSwitch version is 7.4.3.

    1193285

    When changing the name of a FortiSwitch from FortiSwitch Manager, the next Installation will reset the ports configuration of the switch to default configuration.

    1227473

    FortiManager attempts to install set poe-status disable on FortiSwitch ports that already have PoE disabled. The issue persists and reoccurs after configuration installation and synchronization.
    1246204

    Firmware upgrade tasks stall when multiple upgrades for the same FortiSwitch are run concurrently.

    1268279 Deleting custom-command from FortiSwitch Manager template is not deleting it from device.

    Global ADOM

    Bug ID

    Description

    1232811

    Unassigning a Global Policy Package may fail when it is referenced by SSL inspection profiles in the root ADOM.
    1244194

    Global Policy Block appended to Global Policy Package is not visible under root ADOM PP when assigned.

    1245741 The Promote to Global feature for objects created in an ADOM may fail if the object name contains a forward slash (/) character.

    Others

    Bug ID

    Description
    1017440 Import SDN connector failure occurs when special characters are in the username or password

    1081121

    The syslog server is unable to receive FortiManager event logs when the reliable option is enabled.

    1201248

    Historical logs are not displayed when FortiAnalyzer feature is enabled.

    1234093

    Time discrepancy occurs between formatted and raw logs when using GMT timezone.
    1239748 Unable to delete Meta Variables with the following Error: The data is invalid for selected url.
    1241561 ADOM integrity check fails when running diagnose cdb check adom-integrity.

    1244008

    When FortiAnalyzer is added as a managed device in FortiManager, executing any of the "diagnose cdb upgrade check" commands may result in an unexpected behavior in the CLI.
    1255147 The fmg-admin is able to click both the text label and the toggle.
    1256462 FortiClient fails to pull AV signatures from FortiManager acting as FDS server when receiving UM objects over HTTP.
    1266515 When importing a custom firewall service definition through a FortiManager script that mixes the set protocol TCP/UDP/SCTP parameter with set protocol-number <value>, FortiManager allows the configuration without validation errors.
    1268146 An error occurs when upgrading FortiManager due to password length limitations.

    Policy and Objects

    Bug ID

    Description

    1182465

    Installation fails when FortiManager creates a default shaping-profile and binds it to an interface.

    1194560

    Missing CASB applications occur when FortiManager fetches casb application data without the 'get reserved' option.

    1224582

    FortiManager tries to delete access-proxy and all ZTNA-related configuration from the firewall.
    1227209 Insert above or insert below fails when using ISDB objects in the policies.

    1230592

    An error condition in the security console occurs when reinstalling a previous policy package after upgrading ADOM from v7.4 to v7.6.
    1232760 Permit-stun-host configuration is not applied during installation when NAT is disabled.

    1240260

    When the Policy Package setting "Policy Offload Level" is set to Default mode, the Copy Policy Validation may fail and display an error log "COMMIT FAIL - invalid value".

    1240764

    Users may experience slowness when loading large policy packages while switching between Interface Pair views.

    1242707

    Policy package status does not change to "Out of Sync" on FortiManager when local changes are made on FortiGate.

    1247668

    Importing firewall policies may fail when adding an FortiGate with a large number of policies (e.g., over 60K).

    1255176

    Policy package installation may stuck when dynamic mapping member of a "firewall addrgrp" is empty.
    1257077 The securityconsole application may crash when performing an installation from a FortiManager 7.4 ADOM to a FortiGate 7.2 device if an address group is referenced in an SD-WAN rule within a template.

    1257115

    Policy package installation may fail on hardware devices when policy-offload-level is set to default.
    1258985 When disabling the HTTPS protocol under "Protocol Port Mapping" of any "SSL/SSH Inspection" profile, FortiManager tries to push the command "unset ports" which is not recognized by the FortiGate. As a result, the error "Must set at least one port or enable ssl inspect-all. ..."is generated during the Policy Package Installation.
    1259013 Meta-variable modifiers fail when adding colon to a meta-variable within fields such as address objects.
    1270583 Installation fails when FortiManager pushes an invalid limit for policing type shaping-profile.

    Services

    Bug ID

    Description

    1180123

    FortiManager downloads and pushes full-version objects between FDS and FortiGate, which can result in high traffic usage.

    VPN Manager

    Bug ID

    Description

    1262311

    In a FortiManager 7.4 ADOM, attempts to create or retrieve SSL VPN web portal settings for FortiOS 7.4 devices may fail due to per-VDOM limit validation errors.
    Previous
    Next

    Resolved issues

    Resolved issues

    The following issues have been fixed in 7.4.11. To inquire about a particular bug, please contact Customer Service & Support.

    AP Manager

    Bug ID

    Description

    1239368

    Duplicate SSID occurs when accented character is used at the end of the SSID name.

    Device Manager

    Bug ID

    Description

    1015138

    Unable to edit interface with dhcp reservation.
    1189821 Failure to add FortiAnalyzer occurs when using the HA cluster's virtual IP in FortiManager.
    1194361

    Installation fails when device description contains single quote characters.

    1215090

    Unable to retrieve correct setting of device-identification in system interface.
    1224965 Device identification is disabled when changing interface role from LAN to undefined.

    1246821

    FortiManager retrieve may fail when an admins remote-group exists only in the root VDOM and the VDOM order starts with a non-root VDOM, causing invalid reference detection during device addition.

    1254998

    Incorrect Interface Syntax Selection for FGT90G/91G Gen1/Gen2 During Model Device (ZTP) Creation has been observed.
    1269401 Performing device deletion may appear very slow. While the deletion process is still ongoing, clients performing policy package installation tasks may experience delays before the task starts or completes. This behavior has been observed in some cases where FortiManager manages more than 6,000 device groups.

    FortiSwitch Manager

    Bug ID

    Description

    1118271

    FortiSwitch Device information is not displayed when FortiSwitch version is 7.4.3.

    1193285

    When changing the name of a FortiSwitch from FortiSwitch Manager, the next Installation will reset the ports configuration of the switch to default configuration.

    1227473

    FortiManager attempts to install set poe-status disable on FortiSwitch ports that already have PoE disabled. The issue persists and reoccurs after configuration installation and synchronization.
    1246204

    Firmware upgrade tasks stall when multiple upgrades for the same FortiSwitch are run concurrently.

    1268279 Deleting custom-command from FortiSwitch Manager template is not deleting it from device.

    Global ADOM

    Bug ID

    Description

    1232811

    Unassigning a Global Policy Package may fail when it is referenced by SSL inspection profiles in the root ADOM.
    1244194

    Global Policy Block appended to Global Policy Package is not visible under root ADOM PP when assigned.

    1245741 The Promote to Global feature for objects created in an ADOM may fail if the object name contains a forward slash (/) character.

    Others

    Bug ID

    Description
    1017440 Import SDN connector failure occurs when special characters are in the username or password

    1081121

    The syslog server is unable to receive FortiManager event logs when the reliable option is enabled.

    1201248

    Historical logs are not displayed when FortiAnalyzer feature is enabled.

    1234093

    Time discrepancy occurs between formatted and raw logs when using GMT timezone.
    1239748 Unable to delete Meta Variables with the following Error: The data is invalid for selected url.
    1241561 ADOM integrity check fails when running diagnose cdb check adom-integrity.

    1244008

    When FortiAnalyzer is added as a managed device in FortiManager, executing any of the "diagnose cdb upgrade check" commands may result in an unexpected behavior in the CLI.
    1255147 The fmg-admin is able to click both the text label and the toggle.
    1256462 FortiClient fails to pull AV signatures from FortiManager acting as FDS server when receiving UM objects over HTTP.
    1266515 When importing a custom firewall service definition through a FortiManager script that mixes the set protocol TCP/UDP/SCTP parameter with set protocol-number <value>, FortiManager allows the configuration without validation errors.
    1268146 An error occurs when upgrading FortiManager due to password length limitations.

    Policy and Objects

    Bug ID

    Description

    1182465

    Installation fails when FortiManager creates a default shaping-profile and binds it to an interface.

    1194560

    Missing CASB applications occur when FortiManager fetches casb application data without the 'get reserved' option.

    1224582

    FortiManager tries to delete access-proxy and all ZTNA-related configuration from the firewall.
    1227209 Insert above or insert below fails when using ISDB objects in the policies.

    1230592

    An error condition in the security console occurs when reinstalling a previous policy package after upgrading ADOM from v7.4 to v7.6.
    1232760 Permit-stun-host configuration is not applied during installation when NAT is disabled.

    1240260

    When the Policy Package setting "Policy Offload Level" is set to Default mode, the Copy Policy Validation may fail and display an error log "COMMIT FAIL - invalid value".

    1240764

    Users may experience slowness when loading large policy packages while switching between Interface Pair views.

    1242707

    Policy package status does not change to "Out of Sync" on FortiManager when local changes are made on FortiGate.

    1247668

    Importing firewall policies may fail when adding an FortiGate with a large number of policies (e.g., over 60K).

    1255176

    Policy package installation may stuck when dynamic mapping member of a "firewall addrgrp" is empty.
    1257077 The securityconsole application may crash when performing an installation from a FortiManager 7.4 ADOM to a FortiGate 7.2 device if an address group is referenced in an SD-WAN rule within a template.

    1257115

    Policy package installation may fail on hardware devices when policy-offload-level is set to default.
    1258985 When disabling the HTTPS protocol under "Protocol Port Mapping" of any "SSL/SSH Inspection" profile, FortiManager tries to push the command "unset ports" which is not recognized by the FortiGate. As a result, the error "Must set at least one port or enable ssl inspect-all. ..."is generated during the Policy Package Installation.
    1259013 Meta-variable modifiers fail when adding colon to a meta-variable within fields such as address objects.
    1270583 Installation fails when FortiManager pushes an invalid limit for policing type shaping-profile.

    Services

    Bug ID

    Description

    1180123

    FortiManager downloads and pushes full-version objects between FDS and FortiGate, which can result in high traffic usage.

    VPN Manager

    Bug ID

    Description

    1262311

    In a FortiManager 7.4 ADOM, attempts to create or retrieve SSL VPN web portal settings for FortiOS 7.4 devices may fail due to per-VDOM limit validation errors.
    Previous
    Next