Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY 7.6.5
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Release Notes

    Home FortiSOAR 7.6.5 Release Notes
    7.6.5
    7.6.5
    7.6.4
    7.6.3
    7.6.2
    7.6.1
    7.6.0
    7.5.3
    7.5.2
    7.5.1
    7.5.0
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.3.3
    7.3.2
    7.3.1
    7.3.0
    7.2.2
    7.2.1
    7.2.0
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.4
    6.4.3
    6.4.1
    6.4.0
    6.0.0

    Special Notices

    Special Notices

    This section highlights key operational changes in FortiSOAR release 7.6.5 for administrators to consider.

    Root Shell Access Disabled for csadmin

    Starting with release 7.6.5, the csadmin user’s sudo privileges are restricted to only the commands required to work with FortiSOAR, instead of providing full 'root' access. This enhancement aligns with the principle of least privilege and reduces exposure to sensitive system files. Therefore, commands such as yum, systemctl, csadm, etc, must be prefixed with sudo, for example, sudo csadm --help.

    To open or edit a file, prefix the command with 'sudo' and specify the file’s full path (sudo vi <full path of file>).
    For example, sudo vi /opt/cyops-auth/utilities/das.ini

    Tooltip

    For security reasons, 'root' access is provided via the system console and is not available over SSH.

    Enhanced Security Validation for Connector Configuration Updates

    Starting with release 7.6.5, changing any connector configuration fields (e.g., Server URL, Hostname, Address, or Server IP) now requires users to re-enter all password-type fields before saving or applying the configuration. This change strengthens security by ensuring that updated host or endpoint details are always paired with reconfirmed credentials, reducing the risk of misconfiguration or unintended access.

    User Impact: Prior to this release, password re-entry was not required after updating the connector configuration fields. Users will now encounter an additional validation step, specifically a prompt to re-enter password-type fields before completing the update.
    Note: This requirement does not apply to fields that are dynamically populated from the vault.

    Enhanced Security for iFrame Content

    After upgrading to release 7.6.5 or later, iFrame content may no longer display. Instead, the following message appears: This domain is not added in the 'Allowed Domains list' and cannot be accessed. Please contact your administrator for further assistance.

    This behavior occurs because release 7.6.5 introduces enhanced iFrame security controls that affect how external content is embedded in the application. Sandbox restrictions are enabled by default, and all domains are blocked unless explicitly added to the 'Allowed Domains' list. To enable iFrame content from specific external domains, update the 'iFrame Settings'. For details on how to change these settings, see the iFrame Settings topic in the Application Configuration section of the "Administration Guide."

    Previous
    Next

    Special Notices

    Special Notices

    This section highlights key operational changes in FortiSOAR release 7.6.5 for administrators to consider.

    Root Shell Access Disabled for csadmin

    Starting with release 7.6.5, the csadmin user’s sudo privileges are restricted to only the commands required to work with FortiSOAR, instead of providing full 'root' access. This enhancement aligns with the principle of least privilege and reduces exposure to sensitive system files. Therefore, commands such as yum, systemctl, csadm, etc, must be prefixed with sudo, for example, sudo csadm --help.

    To open or edit a file, prefix the command with 'sudo' and specify the file’s full path (sudo vi <full path of file>).
    For example, sudo vi /opt/cyops-auth/utilities/das.ini

    Tooltip

    For security reasons, 'root' access is provided via the system console and is not available over SSH.

    Enhanced Security Validation for Connector Configuration Updates

    Starting with release 7.6.5, changing any connector configuration fields (e.g., Server URL, Hostname, Address, or Server IP) now requires users to re-enter all password-type fields before saving or applying the configuration. This change strengthens security by ensuring that updated host or endpoint details are always paired with reconfirmed credentials, reducing the risk of misconfiguration or unintended access.

    User Impact: Prior to this release, password re-entry was not required after updating the connector configuration fields. Users will now encounter an additional validation step, specifically a prompt to re-enter password-type fields before completing the update.
    Note: This requirement does not apply to fields that are dynamically populated from the vault.

    Enhanced Security for iFrame Content

    After upgrading to release 7.6.5 or later, iFrame content may no longer display. Instead, the following message appears: This domain is not added in the 'Allowed Domains list' and cannot be accessed. Please contact your administrator for further assistance.

    This behavior occurs because release 7.6.5 introduces enhanced iFrame security controls that affect how external content is embedded in the application. Sandbox restrictions are enabled by default, and all domains are blocked unless explicitly added to the 'Allowed Domains' list. To enable iFrame content from specific external domains, update the 'iFrame Settings'. For details on how to change these settings, see the iFrame Settings topic in the Application Configuration section of the "Administration Guide."

    Previous
    Next