Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Release Notes

    Home FortiManager 7.6.1 Release Notes
    7.6.1
    7.6.1
    7.6.0
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.5
    6.2.3
    6.2.2
    6.2.1
    6.2.0
    6.0.12
    6.0.11
    6.0.10
    6.0.9
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.6.11
    5.6.10
    5.6.9
    5.6.8
    5.6.7
    5.6.6
    5.6.5
    5.6.4
    5.6.3
    5.6.2
    5.6.1
    5.6.0
    5.6.0
    5.4.7
    5.4.6
    5.4.5
    5.4.4
    5.4.3
    5.4.2
    5.4.1
    5.4.0
    5.2.10
    5.2.9
    5.2.7
    5.2.6
    5.2.4
    5.2.3
    5.2.2
    5.2.1
    5.2.0
    5.0.12
    5.0.11
    5.0.10
    5.0.9
    5.0.8
    5.0.7
    5.0.6
    5.0.5
    5.0.4
    5.0.3

    FortiManager 7.6.1 and FortiOS 7.2.10 compatibility issues

    FortiManager 7.6.1 and FortiOS 7.2.10 compatibility issues

    This section identifies interoperability issues that have been identified with FortiManager 7.6.1 and FortiOS 7.2.10.

    Note

    When specific platforms are indicated, the syntax change applies to both the FortiGate and FortiCarrier platform for the model.

    For example, (4 platforms: 3980E,3960E) indicates FortiGate-3980E, FortiCarrier-3980E, FortiGate-3960E, FortiCarrier-3960E.

    The following objects were added:

    • (attr) firewall shaping-profile npu-offloading

    • (attr) switch-controller managed-switch radius-nas-ip (133 platforms: excludes 5001E1,5001E)

    • (attr) switch-controller managed-switch radius-nas-ip-override (133 platforms: excludes 5001E1,5001E)

    • (attr) switch-controller security-policy 802-1X authserver-timeout-tagged (133 platforms: excludes 5001E1,5001E)

    • (attr) switch-controller security-policy 802-1X authserver-timeout-tagged-vlanid (133 platforms: excludes 5001E1,5001E)

    • (attr) system csf legacy-authentication

    • (attr) system federated-upgrade source

    • (attr) system npu background-sse-scan scan-stale (21 platforms: 3500F,1801F,4401F,1800F,3000F,4201F,3501F,4200F,4400F,3001F)

    • (attr) system npu background-sse-scan scan-vt (21 platforms: 3500F,1801F,4401F,1800F,3000F,4201F,3501F,4200F,4400F,3001F)

    • (attr) system npu background-sse-scan stats-qual-access (21 platforms: 3500F,1801F,4401F,1800F,3000F,4201F,3501F,4200F,4400F,3001F)

    • (attr) system npu background-sse-scan stats-qual-duration (21 platforms: 3500F,1801F,4401F,1800F,3000F,4201F,3501F,4200F,4400F,3001F)

    • (attr) system npu background-sse-scan udp-qual-access (21 platforms: 3500F,1801F,4401F,1800F,3000F,4201F,3501F,4200F,4400F,3001F)

    • (attr) system npu background-sse-scan udp-qual-duration (21 platforms: 3500F,1801F,4401F,1800F,3000F,4201F,3501F,4200F,4400F,3001F)

    • (attr) system npu default-tcp-refresh-dir (24 platforms: 3500F,1801F,4401F,1800F,3000F,4201F,3501F,4200F,4400F,2600F,3001F)

    • (attr) system npu default-udp-refresh-dir (24 platforms: 3500F,1801F,4401F,1800F,3000F,4201F,3501F,4200F,4400F,2600F,3001F)

    • (attr) system npu nss-threads-option (21 platforms: 3500F,4401F,3000F,4201F,3501F,4200F,4400F,2600F,3001F)

    • (attr) user radius switch-controller-nas-ip-dynamic (133 platforms: excludes 5001E1,5001E)

    The following objects were removed:

    • (attr) system ha logical-sn (113 platforms: excludes 60F,70F-3G4G,81F-2R,40F-3G4G,601E,60F-3G4G,70F,80F,81F-2R-POE,80F-BYPASS,40F,80F-2R,81F-2R-3G4G-POE,81F-POE,61F,81F,71F,80F-POE)

    The following default values changed:

    • report setting fortiview (disable -> enable)

    • report setting pdf-report (disable -> enable)

    • system global ssh-kex-algo (diffie-hellman-group-exchange-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 -> diffie-hellman-group14-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group-exchange-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521)

    • system npu sse-ha-scan gap (6000 -> 200)

    Additional option changes:

    system global ssh-kex-algo

    ++ 3 opts: diffie-hellman-group14-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512

    web-proxy explicit pref-dns-result

    ++ 2 opts: ipv4-strict ipv6-strict

    Other changes:

    system csf group-password

    tag: mu -> None

    system global faz-disk-buffer-size

    tag: lmt -> None

    tag: lsz -> None

    Previous
    Next

    FortiManager 7.6.1 and FortiOS 7.2.10 compatibility issues

    FortiManager 7.6.1 and FortiOS 7.2.10 compatibility issues

    This section identifies interoperability issues that have been identified with FortiManager 7.6.1 and FortiOS 7.2.10.

    Note

    When specific platforms are indicated, the syntax change applies to both the FortiGate and FortiCarrier platform for the model.

    For example, (4 platforms: 3980E,3960E) indicates FortiGate-3980E, FortiCarrier-3980E, FortiGate-3960E, FortiCarrier-3960E.

    The following objects were added:

    • (attr) firewall shaping-profile npu-offloading

    • (attr) switch-controller managed-switch radius-nas-ip (133 platforms: excludes 5001E1,5001E)

    • (attr) switch-controller managed-switch radius-nas-ip-override (133 platforms: excludes 5001E1,5001E)

    • (attr) switch-controller security-policy 802-1X authserver-timeout-tagged (133 platforms: excludes 5001E1,5001E)

    • (attr) switch-controller security-policy 802-1X authserver-timeout-tagged-vlanid (133 platforms: excludes 5001E1,5001E)

    • (attr) system csf legacy-authentication

    • (attr) system federated-upgrade source

    • (attr) system npu background-sse-scan scan-stale (21 platforms: 3500F,1801F,4401F,1800F,3000F,4201F,3501F,4200F,4400F,3001F)

    • (attr) system npu background-sse-scan scan-vt (21 platforms: 3500F,1801F,4401F,1800F,3000F,4201F,3501F,4200F,4400F,3001F)

    • (attr) system npu background-sse-scan stats-qual-access (21 platforms: 3500F,1801F,4401F,1800F,3000F,4201F,3501F,4200F,4400F,3001F)

    • (attr) system npu background-sse-scan stats-qual-duration (21 platforms: 3500F,1801F,4401F,1800F,3000F,4201F,3501F,4200F,4400F,3001F)

    • (attr) system npu background-sse-scan udp-qual-access (21 platforms: 3500F,1801F,4401F,1800F,3000F,4201F,3501F,4200F,4400F,3001F)

    • (attr) system npu background-sse-scan udp-qual-duration (21 platforms: 3500F,1801F,4401F,1800F,3000F,4201F,3501F,4200F,4400F,3001F)

    • (attr) system npu default-tcp-refresh-dir (24 platforms: 3500F,1801F,4401F,1800F,3000F,4201F,3501F,4200F,4400F,2600F,3001F)

    • (attr) system npu default-udp-refresh-dir (24 platforms: 3500F,1801F,4401F,1800F,3000F,4201F,3501F,4200F,4400F,2600F,3001F)

    • (attr) system npu nss-threads-option (21 platforms: 3500F,4401F,3000F,4201F,3501F,4200F,4400F,2600F,3001F)

    • (attr) user radius switch-controller-nas-ip-dynamic (133 platforms: excludes 5001E1,5001E)

    The following objects were removed:

    • (attr) system ha logical-sn (113 platforms: excludes 60F,70F-3G4G,81F-2R,40F-3G4G,601E,60F-3G4G,70F,80F,81F-2R-POE,80F-BYPASS,40F,80F-2R,81F-2R-3G4G-POE,81F-POE,61F,81F,71F,80F-POE)

    The following default values changed:

    • report setting fortiview (disable -> enable)

    • report setting pdf-report (disable -> enable)

    • system global ssh-kex-algo (diffie-hellman-group-exchange-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 -> diffie-hellman-group14-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group-exchange-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521)

    • system npu sse-ha-scan gap (6000 -> 200)

    Additional option changes:

    system global ssh-kex-algo

    ++ 3 opts: diffie-hellman-group14-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512

    web-proxy explicit pref-dns-result

    ++ 2 opts: ipv4-strict ipv6-strict

    Other changes:

    system csf group-password

    tag: mu -> None

    system global faz-disk-buffer-size

    tag: lmt -> None

    tag: lsz -> None

    Previous
    Next