Fortinet black logo

Release Notes

Home FortiNAC 8.6.5 Release Notes
8.6.5
9.4.6
9.4.5
9.4.4
9.4.3
9.4.2
9.4.1
9.4.0
9.2.8
9.2.7
9.2.6
9.2.5
9.2.4
9.2.3
9.2.2
9.2.1
9.2.0
9.1.10
9.1.9
9.1.8
9.1.7
9.1.6
9.1.5
9.1.4
9.1.3
9.1.2
9.1.0
8.8.11
8.8.10
8.8.9
8.8.8
8.8.7
8.8.6
8.8.5
8.8.4
8.8.3
8.8.2
8.8.1
8.8.0
8.7.6
8.7.5
8.7.4
8.7.2
8.7.1
8.7.0
8.6.5
8.6.4
8.6.3
8.6.2
8.6.1
8.6.0
8.5.4
8.5.3
8.5.2
8.5.1
8.3.7
8.3.6

Version 8.6.4.1210

Version 8.6.4.1210

Ticket #

Description (8.6.4.1210)
2969242 Location Based Policy Not Matching Due to SSID Name Containing ":"

3491206

3809688

 Added RADIUS authentication support for HP J9729A and HP J8697A
3817956 Fixed DNS behavior when system fails over in L3 High Availability configurations. Previously, the Secondary Server (in control) was replying to DNS inquiries with the Primary Server ETH1 IP address. This caused DNS resolution to fail for isolated hosts.
Fixed FortiNAC Persistent Agent ADMX template value for disabling the Login Dialog.
3730390 Fixed issue where the SSIDs tab would disappear
3629749 Added SNMP option for reading VLANs for Extreme devices. Enabling this option can improve VLAN read times on switches that support dot1qPvid.

3809105

3831066

3857251

3906623

 Fixed Self-Registration accounts that do not require sponsor approval. Previously, this feature did not work after upgrading to 8.6.2 or higher.

3788773

3832801

Fixed connection issue between Control Manager and managed FortiNAC servers. Previously, this condition could cause the following behavior:

  • Management processes on the Control Manager to report down
  • Managed FortiNAC servers to stop processing RADIUS authentication packets
3787103 Fixed NCM Endpoint Compliance Policy Syncing issues
AutoCompleteManager exceptions in catalina.out
Fixed DeviceImport tool throwing "Unable to parse line" exception when a blank line is encountered in the CSV.
Fixed an issue where grab-log-snapshot did not gather the correct master_loader logs
3812378 Fixed alarms failing to trigger over time when any alarm was configured with an event frequency of "0" events occurring within X hours.
3817011 Fixed Log Receiver Syslog Facility not displaying in the Settings view.
3816601 Fixed VLAN read/write on Juniper Ex 3400 switches.

3839246

Fixed Apply to Group drop down menu under SSO Agent options in the FortiGate model Elements tab. Previously, this menu was grayed out when the Apply to Group check box was selected.

3844800

3893874

Fixed issue with USB external adapter/dongle sharing between hosts. Agent technology can now be configured to remove adapters from the host record when the agent no longer detects the adapter connected.

Note: This function is disabled by default and cannot be enabled through the Administration UI. Contact Support for assistance and reference KB article FD47971.

Fixed an issue where Meraki SSID models are removed on a vlan poll when the SSIDs are disabled on the device

Fixed restarting DHCP fingerprinting on ETH1 interfaces in HA environments

3854444

Fixed processing of add/move/delete FGT syslog messages for managed FSWs in Link Mode.

3824602

Fixed issue with reading VLANs on Cisco 9000 IOS-XE

3872745

Modified Arista.mib login sequence

3872745

Support for Arista "switchport access" and "switchport trunk" modes

3879948

Fixed potential database corruption issue when using Device Profiling Rules with custom DHCP fingerprints.

3852483

3880329

Fixed issue where PODs were not synchronizing in NCM GUI

3860382

3879906

3924319

3926696

Fixed issue where uncompressed database backup replicated to secondary, causing 100% Disk usage

Fixed issue where FortiNAC periodically did not gzip bakcup files on the Secondary HA Server.

3896468

Added RADIUS Authentication support for Aruba JL256A and HP J9727A

3979669

Added the ability for FortiNAC to be configured to respond to traffic using the same interface it was received (policy based routing). Required for VPN integrations and static IP environments. This function is disabled by default and requires configuration via CLI. Refer to the applicable VPN integration guide or contact Support for assistance.

DHCP Fingerprint additions and updates

Under System Updates, if the SFTP protocol is selected, an error dialog will display when attempting to save or test with any names where SFTP access is no longer supported to download code. Other names or IP addresses can still be configured to use SFTP.

3952440

Fixed issue where FSSO Tag is added/removed constantly and toggles the applied firewall policy

3972339

For AWS, fixed ConfigWizard to display UUID and eth0 MAC address in license panel.

Fixed potential issue in Device Profiler for rules containing an Active (AKA nmap) method.

3985152

Added support for new Checkpoints

Fixed issue with Device Profile rules for Fortigate false positives matches

Fixed potential NullPointerException error when "FortiGate" Method was used in Device Profiling Rule. This issue could cause the rule match to fail.

Updated FortiNAC to support changes to the FortiOS firewall session table. Previously, FortiGate Session details were not displayed for when the FortiGate was running version 6.2.2 or newer.

Fixed potential database corruption when using Device Profiling Rules after upgrade from 8.6 to 8.7

4018863

Fixed Adapter View not showing IP address of the host
Previous
Next

Version 8.6.4.1210

Ticket #

Description (8.6.4.1210)
2969242 Location Based Policy Not Matching Due to SSID Name Containing ":"

3491206

3809688

 Added RADIUS authentication support for HP J9729A and HP J8697A
3817956 Fixed DNS behavior when system fails over in L3 High Availability configurations. Previously, the Secondary Server (in control) was replying to DNS inquiries with the Primary Server ETH1 IP address. This caused DNS resolution to fail for isolated hosts.
Fixed FortiNAC Persistent Agent ADMX template value for disabling the Login Dialog.
3730390 Fixed issue where the SSIDs tab would disappear
3629749 Added SNMP option for reading VLANs for Extreme devices. Enabling this option can improve VLAN read times on switches that support dot1qPvid.

3809105

3831066

3857251

3906623

 Fixed Self-Registration accounts that do not require sponsor approval. Previously, this feature did not work after upgrading to 8.6.2 or higher.

3788773

3832801

Fixed connection issue between Control Manager and managed FortiNAC servers. Previously, this condition could cause the following behavior:

  • Management processes on the Control Manager to report down
  • Managed FortiNAC servers to stop processing RADIUS authentication packets
3787103 Fixed NCM Endpoint Compliance Policy Syncing issues
AutoCompleteManager exceptions in catalina.out
Fixed DeviceImport tool throwing "Unable to parse line" exception when a blank line is encountered in the CSV.
Fixed an issue where grab-log-snapshot did not gather the correct master_loader logs
3812378 Fixed alarms failing to trigger over time when any alarm was configured with an event frequency of "0" events occurring within X hours.
3817011 Fixed Log Receiver Syslog Facility not displaying in the Settings view.
3816601 Fixed VLAN read/write on Juniper Ex 3400 switches.

3839246

Fixed Apply to Group drop down menu under SSO Agent options in the FortiGate model Elements tab. Previously, this menu was grayed out when the Apply to Group check box was selected.

3844800

3893874

Fixed issue with USB external adapter/dongle sharing between hosts. Agent technology can now be configured to remove adapters from the host record when the agent no longer detects the adapter connected.

Note: This function is disabled by default and cannot be enabled through the Administration UI. Contact Support for assistance and reference KB article FD47971.

Fixed an issue where Meraki SSID models are removed on a vlan poll when the SSIDs are disabled on the device

Fixed restarting DHCP fingerprinting on ETH1 interfaces in HA environments

3854444

Fixed processing of add/move/delete FGT syslog messages for managed FSWs in Link Mode.

3824602

Fixed issue with reading VLANs on Cisco 9000 IOS-XE

3872745

Modified Arista.mib login sequence

3872745

Support for Arista "switchport access" and "switchport trunk" modes

3879948

Fixed potential database corruption issue when using Device Profiling Rules with custom DHCP fingerprints.

3852483

3880329

Fixed issue where PODs were not synchronizing in NCM GUI

3860382

3879906

3924319

3926696

Fixed issue where uncompressed database backup replicated to secondary, causing 100% Disk usage

Fixed issue where FortiNAC periodically did not gzip bakcup files on the Secondary HA Server.

3896468

Added RADIUS Authentication support for Aruba JL256A and HP J9727A

3979669

Added the ability for FortiNAC to be configured to respond to traffic using the same interface it was received (policy based routing). Required for VPN integrations and static IP environments. This function is disabled by default and requires configuration via CLI. Refer to the applicable VPN integration guide or contact Support for assistance.

DHCP Fingerprint additions and updates

Under System Updates, if the SFTP protocol is selected, an error dialog will display when attempting to save or test with any names where SFTP access is no longer supported to download code. Other names or IP addresses can still be configured to use SFTP.

3952440

Fixed issue where FSSO Tag is added/removed constantly and toggles the applied firewall policy

3972339

For AWS, fixed ConfigWizard to display UUID and eth0 MAC address in license panel.

Fixed potential issue in Device Profiler for rules containing an Active (AKA nmap) method.

3985152

Added support for new Checkpoints

Fixed issue with Device Profile rules for Fortigate false positives matches

Fixed potential NullPointerException error when "FortiGate" Method was used in Device Profiling Rule. This issue could cause the rule match to fail.

Updated FortiNAC to support changes to the FortiOS firewall session table. Previously, FortiGate Session details were not displayed for when the FortiGate was running version 6.2.2 or newer.

Fixed potential database corruption when using Device Profiling Rules after upgrade from 8.6 to 8.7

4018863

Fixed Adapter View not showing IP address of the host
Previous
Next