Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Release Notes

    Home 8.0.0 Release Notes

    Known issues

    Known issues

    This section lists the known issues of this release, but is not a complete list.

    For inquiries about a particular bug, please contact Technical Support within the FortiCare portal.

    Bug ID

    Description
    1203911 FortiAuthenticator should record a log when a guest portal is created/edited/deleted.
    1201488 GUI cannot show the imported image as previous release.
    1208814 Viewing first replacement message displays as blank; viewing next one works.
    1201055 Guest portal backup/restore is incomplete.
    1203907 Guest portal not showing correct message when user or source IP address is locked out.
    1196790 Deletion of CA certificate in FortiAuthenticator VM Trust Anchor store requires a reboot to take effect.
    1203923 Guest portal creation should not be allowed without a default language.
    1187237 Add support to modify debugging level for LB sync daemon from the admin UI.
    1198196 Radius Client configuration cannot be retrieved via REST API with admin with read access for the RADIUS services in admin profile.
    1181149 High CPU observed due to fsae.
    1201163

    When changing the 'Exclude from SSO' option (logoff current user when excluded user logs in) to other option (do not affect current user when excluded user logs in), the logoff log remains generated.
    1204521 Zero Trust Tunnel continues working even after the server certificate is revoked.
    1194782 FortiAuthenticator IdP entity id metadata URL returns the default IdP certificate everytime; SP-specific certificate override is not working.
    1192975 Network interface IP address change does not get applied to the web server until restart.
    1200754 REST API PATCH api/v1/localapiadmin/ error when creating a new local admin.
    1189168 Revoking of certificate is not being seen with OCSP until FortiAuthenticator reboot.
    1196880 Mismatched cert/key in LB secondary side.
    1180386 Permanent IP based lockout cannot be unlocked in the GUI.
    1196760

    Failed to restore configuration after factory reset due to: Database restore failed.
    1134745 Changes to the adaptive MFA rules in the admin UI are not logged.
    1167348 OIDC JWT token cannot include more than one group.
    1157369 When saving a user, even if no changes are made, a PUT request is sent to the FortiToken Cloud server.
    1144845 FortiAuthenticator should not present SAML captcha when performing proxy authentication.
    1147278 SCEP with FortiGate client in FIPS-CC mode does not work because FortiAuthenticator cannot import CA certificates signed with RSA-PSS.
    1134751 Generate a log entry when there are changes made to NetHSM.
    1108618 RADIUS MFA bypass not working for users with FortiToken Cloud/Email or FortiToken Cloud/SMS.
    1133973 Delay in updating user counts after CSV import.
    1134748 Generate a log entry when creating/editing/deleting a Zero Trust Tunnel.
    1135277 Changes to mobile number or email address of guest users are not logged.
    1164075 SmartConnection/EAP-TLS client certificate failed on Android.
    1157157 Radius sessions user-type incorrectly labled 'external' with case sensitivity.
    1140601 CLI logins attempts that fail without a successful follow-up are not logged.
    1158142 Cache-Control header not present on SAML pages served by FastAPI/Gunicorn.
    1145628 SAML IdP FIDO authentication fails on first try after FortiClient disconnect/reconnect.
    1128643 FortiAuthenticator does not include rootCA cert in CMP Initialisation Response as required by 3GPP TS.33.310.
    1068878 Unable to access FortiAuthenticator portals with IPv6 address if the interface does not also have an IPv4 address.
    1084900 Device Self-Enrollment in the legacy self-service portal not working with placeholder variables {{:cn}} for certificate SAN fields.
    1139476 Gateway timeout when loading local users page with a large number of users.
    1148829 SCEP enrollment fails when certmonger client sends large GET request URI (exceeds the maximum length of 8190 bytes).
    1033509 Log message should be recorded when SAML user session expires.
    1026106 Failed to add new Fido key in Chrome with the Bitwarden extension.
    997200 SAML IdP Proxy not able to retrieve the group memberships from the remote OpenLDAP server.
    1143190 Self-service portal shows empty page when all the post-login options are disabled.
    1010053 Gateway timeout error in the GUI when performing a manual sync for a remote user sync rule with a large number of users (users are synced).
    1084583 Exporting raw logs does not reflect the filter selection on the GUI.
    971708 Avoid using the default 'admin' account in AWS since restoring configuration resets its password to instance-id.
    1174109 User still can https access the FortiAuthenticator web page and disable the FortiAuthenticator interface related web access.
    801933 LDAP service logs LDAP_FAC as the source IP address instead of the LDAP client IP address.
    Previous
    Next

    Known issues

    Known issues

    This section lists the known issues of this release, but is not a complete list.

    For inquiries about a particular bug, please contact Technical Support within the FortiCare portal.

    Bug ID

    Description
    1203911 FortiAuthenticator should record a log when a guest portal is created/edited/deleted.
    1201488 GUI cannot show the imported image as previous release.
    1208814 Viewing first replacement message displays as blank; viewing next one works.
    1201055 Guest portal backup/restore is incomplete.
    1203907 Guest portal not showing correct message when user or source IP address is locked out.
    1196790 Deletion of CA certificate in FortiAuthenticator VM Trust Anchor store requires a reboot to take effect.
    1203923 Guest portal creation should not be allowed without a default language.
    1187237 Add support to modify debugging level for LB sync daemon from the admin UI.
    1198196 Radius Client configuration cannot be retrieved via REST API with admin with read access for the RADIUS services in admin profile.
    1181149 High CPU observed due to fsae.
    1201163

    When changing the 'Exclude from SSO' option (logoff current user when excluded user logs in) to other option (do not affect current user when excluded user logs in), the logoff log remains generated.
    1204521 Zero Trust Tunnel continues working even after the server certificate is revoked.
    1194782 FortiAuthenticator IdP entity id metadata URL returns the default IdP certificate everytime; SP-specific certificate override is not working.
    1192975 Network interface IP address change does not get applied to the web server until restart.
    1200754 REST API PATCH api/v1/localapiadmin/ error when creating a new local admin.
    1189168 Revoking of certificate is not being seen with OCSP until FortiAuthenticator reboot.
    1196880 Mismatched cert/key in LB secondary side.
    1180386 Permanent IP based lockout cannot be unlocked in the GUI.
    1196760

    Failed to restore configuration after factory reset due to: Database restore failed.
    1134745 Changes to the adaptive MFA rules in the admin UI are not logged.
    1167348 OIDC JWT token cannot include more than one group.
    1157369 When saving a user, even if no changes are made, a PUT request is sent to the FortiToken Cloud server.
    1144845 FortiAuthenticator should not present SAML captcha when performing proxy authentication.
    1147278 SCEP with FortiGate client in FIPS-CC mode does not work because FortiAuthenticator cannot import CA certificates signed with RSA-PSS.
    1134751 Generate a log entry when there are changes made to NetHSM.
    1108618 RADIUS MFA bypass not working for users with FortiToken Cloud/Email or FortiToken Cloud/SMS.
    1133973 Delay in updating user counts after CSV import.
    1134748 Generate a log entry when creating/editing/deleting a Zero Trust Tunnel.
    1135277 Changes to mobile number or email address of guest users are not logged.
    1164075 SmartConnection/EAP-TLS client certificate failed on Android.
    1157157 Radius sessions user-type incorrectly labled 'external' with case sensitivity.
    1140601 CLI logins attempts that fail without a successful follow-up are not logged.
    1158142 Cache-Control header not present on SAML pages served by FastAPI/Gunicorn.
    1145628 SAML IdP FIDO authentication fails on first try after FortiClient disconnect/reconnect.
    1128643 FortiAuthenticator does not include rootCA cert in CMP Initialisation Response as required by 3GPP TS.33.310.
    1068878 Unable to access FortiAuthenticator portals with IPv6 address if the interface does not also have an IPv4 address.
    1084900 Device Self-Enrollment in the legacy self-service portal not working with placeholder variables {{:cn}} for certificate SAN fields.
    1139476 Gateway timeout when loading local users page with a large number of users.
    1148829 SCEP enrollment fails when certmonger client sends large GET request URI (exceeds the maximum length of 8190 bytes).
    1033509 Log message should be recorded when SAML user session expires.
    1026106 Failed to add new Fido key in Chrome with the Bitwarden extension.
    997200 SAML IdP Proxy not able to retrieve the group memberships from the remote OpenLDAP server.
    1143190 Self-service portal shows empty page when all the post-login options are disabled.
    1010053 Gateway timeout error in the GUI when performing a manual sync for a remote user sync rule with a large number of users (users are synced).
    1084583 Exporting raw logs does not reflect the filter selection on the GUI.
    971708 Avoid using the default 'admin' account in AWS since restoring configuration resets its password to instance-id.
    1174109 User still can https access the FortiAuthenticator web page and disable the FortiAuthenticator interface related web access.
    801933 LDAP service logs LDAP_FAC as the source IP address instead of the LDAP client IP address.
    Previous
    Next