Fortinet black logo

(macOS) Release Notes

Home FortiClient 7.0.9 (macOS) Release Notes
7.0.9
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
6.2.0
6.0.10
6.0.9
6.0.8
6.0.7
6.0.6
6.0.6
6.0.5
6.0.4
6.0.3
6.0.2
6.0.1
5.6.6

Known issues

Known issues

The following issues have been identified in FortiClient (macOS) 7.0.9. For inquiries about a particular bug or to report a bug, contact Customer Service & Support.

Configuration

Bug ID

Description
730415 FortiClient (macOS) backs up configuration that is missing locally configured zero trust network access (ZTNA) connection rules.

Endpoint control

Bug ID

Description

784738

FortiClient console and invalid certificate prompt do not show automatically after installation.

814351

Endpoint information page incorrectly displays device user's domain information after user switches on macOS device.

821379

macOS clients do not show up in Software Inventory > Hosts.
880167 FortiClient (macOS) cannot register with EMS by selecting wrong interface to connect to EMS.

925823

FortiClient does not send the empty domain when switching to local user.

927357

FortiClient (macOS) has connectivity problems when connected over VPN.

GUI

Bug ID

Description
902595 SAML prompt flashes on autoconnect.

Remote Access

Bug ID

Description

736245

IPsec VPN does not work when multiple remote gateways are configured in a priority-based list.

738425

SSL VPN GUI and tray mismatch in unity features.
772247 SAML authentication times out with SSL VPN.
790392 FortiClient blocks the network when Wi-Fi is changed.
793893 Search domains do not transfer correctly to endpoints.
794730 Auto connect and always up options appear as enabled after disconnecting from VPN when they are disabled on the XML profile.
799332 FortiClient for macOS 12.3.1 cannot connect to VPN when there are two gateways listed using SAML.

800529

GUI has issue with Settings > VPN Options > Do not Warn Invalid Server Certificate.
800918 Autoconnect is triggered and fails after system reboot with IPsec VPN tunnel profile using certificate authentication.

800923

Customized host check failure message for SSL VPN does not work.
800978 Autoconnect is triggered twice when both on-fabric and off-fabric profiles are configured.

813239

VPN disconnects intermittently and cannot reconnect on macOS Monterey (version 12).

821660

FortiClient (macOS) behaves inconsistently with LDAP user login and autoconnect.
827685 Host check VPN filter does not filter properly.

833001

When using FortiAuthenticator as SAML identity provider, autoconnect fails after user logout/relogin.
834198 Autoconnect does not work on AWS virtual machine, and FortiClient displays an Initialize VPN system extension was failed error.

835096

FortiClient (macOS) cannot establish VPN with SAML single sign on after Wi-Fi drops or disconnects and reconnects manually.

851600

FortiClient fails to connect to SSL VPN with FQDN resolving to multiple IP addresses when FortiClient (macOS) cannot reach resolved IP address.

854265

SSL VPN connects after sleep.
890227 FortiClient (macOS) stores VPN tunnels manually added by importing XML configuration under Corporate VPN.
893237 FortiClient (macOS) does not offer chance to reinput password during autoconnect after identity provider password change.
919102 No IP address displays on FortiClient after connecting to IPsec VPN tunnel with certificate authentication.
927290 VPN on free client does not work as expected in macOS 13.

929577

Resiliency SSL VPN connection fails after VPN is up and brings down the first gateway.

Vulnerability Scan

Bug ID

Description
786011 Vulnerability feature does not autopatch macOS Monterey 12.2.1 after it detects operating system (OS) vulnerability on macOS Monterey 12.1.

790288

Vulnerability Scan does not detect OS vulnerabilities.

Web Filter and plugin

Bug ID

Description

755055

When action set for site categories is warn, browser does not show the customized webpage, which allows user to bypass blocking.
772332 External Ethernet adapter dongle gets disconnected when speed test is run.
795631 Web Filter does not block the selected categories.

856060

Web Filter with proxy mode does not work on macOS 13.0 Ventura.
885330 FortiClient on macOS 13.0.1 Web Filter does not block websites.
886326 Web Filter cannot filter URL with URI pathway.

890045

Web Filter settings do not display Permission Required for features(s) option.

919522

Web Filter extension causes socket hangup for Docker-hosted Linux containers.

925676

Conflict occurs between FortiEDR and FortiClient.

Zero Trust tags

Bug ID

Description
793033 ZTNA LDAP group rule does not work.
794385 FortiClient detects third party antivirus tag.

Application Firewall

Bug ID

Description
718957 Application Firewall does not work after reboot.

800344

You can remotely access quarantined endpoints using VNC protocol.

814391

FortiClient Cloud Application Firewall application signatures block allowlisted applications.

834500

FortiClient fails to block Application Firewall categories when web client category is set to monitor.

834839

Web Filter does not block traffic when proxy mode is disabled and Application Firewall is disabled.

Avatar and social login information

Bug ID

Description

777013

Avatar changes do not show on FortiAnalyzer.
878050 Avatar does not update on FortiGate dashboards and FortiGate cannot show updated information.

Deployment and installers

Bug ID

Description
764672 FortiClient displays deployment window for user when EMS configured unattended installation.

Installation and upgrade

Bug ID

Description

827939

FortiTray is not open anymore prompt shows when deploying FortiClient using script through mobile device management.
828781 FortiClient (macOS) behaves inconsistently when uninstalling it through commands in terminal and the FortiClientUninstaller GUI tool.

License

Bug ID

Description
874676 EMS tags endpoint with existing ZTNA host tags for vulnerabilities and AV after EMS administrator updates license from Endpoint Protection Platform to Remote Access.

Logs

Bug ID

Description
750703 IPsec and SSL VPN events are not logged on FortiAnalyzer appropriately.

801134

FortiClient (macOS) does not generate or replicate SSL VPN logs for upload to FortiAnalyzer when it establishes a tunnel.

872875

Disabling Client-Based Logging When On-Fabric in EMS does not work.

Malware Protection and Sandbox

Bug ID

Description
719920 FortiClient cannot submit files to FortiClient Cloud Sandbox (SaaS) when downloaded from Thunderbird.

755198

FortiClient (macOS) does not submit files downloaded using Edge browser to Sandbox or FortiClient Cloud Sandbox (SaaS).
829415 When next generation antivirus is enabled, FortiClient (macOS) shows real time protection (RTP) as disabled.

837638

Identifying malware and exploits using signatures received from FortiSandbox does not work.

855555

When RTP is enabled and block_removable_media is set to 1, FortiClient (macOS) fails to block USB device.

888356

User can stop AV quick/full scan triggered from EMS.

Onboarding

Bug ID

Description
811976 FortiClient (macOS) may prioritize using user information from authentication user registered to EMS.

Endpoint management

Bug ID

Description
891264 EMS creates duplicate records for domain-joined Ubuntu endpoints.

ZTNA connection rules

Bug ID

Description

831943

ZTNA client certificate is not removed from user certificate store after FortiClient (macOS) uninstall.
853281 FortiClient (macOS) does not show the ICDB signatures on the About page.
905880 ZTNA certificate prompt displays when deploying FortiClient (macOS) with Jamf Pro configuration profiles.

Workaround: enable ZTNA in both on- and off-Fabric profile if you are using both on- and off-Fabric profiles.
Previous
Next

Known issues

The following issues have been identified in FortiClient (macOS) 7.0.9. For inquiries about a particular bug or to report a bug, contact Customer Service & Support.

Configuration

Bug ID

Description
730415 FortiClient (macOS) backs up configuration that is missing locally configured zero trust network access (ZTNA) connection rules.

Endpoint control

Bug ID

Description

784738

FortiClient console and invalid certificate prompt do not show automatically after installation.

814351

Endpoint information page incorrectly displays device user's domain information after user switches on macOS device.

821379

macOS clients do not show up in Software Inventory > Hosts.
880167 FortiClient (macOS) cannot register with EMS by selecting wrong interface to connect to EMS.

925823

FortiClient does not send the empty domain when switching to local user.

927357

FortiClient (macOS) has connectivity problems when connected over VPN.

GUI

Bug ID

Description
902595 SAML prompt flashes on autoconnect.

Remote Access

Bug ID

Description

736245

IPsec VPN does not work when multiple remote gateways are configured in a priority-based list.

738425

SSL VPN GUI and tray mismatch in unity features.
772247 SAML authentication times out with SSL VPN.
790392 FortiClient blocks the network when Wi-Fi is changed.
793893 Search domains do not transfer correctly to endpoints.
794730 Auto connect and always up options appear as enabled after disconnecting from VPN when they are disabled on the XML profile.
799332 FortiClient for macOS 12.3.1 cannot connect to VPN when there are two gateways listed using SAML.

800529

GUI has issue with Settings > VPN Options > Do not Warn Invalid Server Certificate.
800918 Autoconnect is triggered and fails after system reboot with IPsec VPN tunnel profile using certificate authentication.

800923

Customized host check failure message for SSL VPN does not work.
800978 Autoconnect is triggered twice when both on-fabric and off-fabric profiles are configured.

813239

VPN disconnects intermittently and cannot reconnect on macOS Monterey (version 12).

821660

FortiClient (macOS) behaves inconsistently with LDAP user login and autoconnect.
827685 Host check VPN filter does not filter properly.

833001

When using FortiAuthenticator as SAML identity provider, autoconnect fails after user logout/relogin.
834198 Autoconnect does not work on AWS virtual machine, and FortiClient displays an Initialize VPN system extension was failed error.

835096

FortiClient (macOS) cannot establish VPN with SAML single sign on after Wi-Fi drops or disconnects and reconnects manually.

851600

FortiClient fails to connect to SSL VPN with FQDN resolving to multiple IP addresses when FortiClient (macOS) cannot reach resolved IP address.

854265

SSL VPN connects after sleep.
890227 FortiClient (macOS) stores VPN tunnels manually added by importing XML configuration under Corporate VPN.
893237 FortiClient (macOS) does not offer chance to reinput password during autoconnect after identity provider password change.
919102 No IP address displays on FortiClient after connecting to IPsec VPN tunnel with certificate authentication.
927290 VPN on free client does not work as expected in macOS 13.

929577

Resiliency SSL VPN connection fails after VPN is up and brings down the first gateway.

Vulnerability Scan

Bug ID

Description
786011 Vulnerability feature does not autopatch macOS Monterey 12.2.1 after it detects operating system (OS) vulnerability on macOS Monterey 12.1.

790288

Vulnerability Scan does not detect OS vulnerabilities.

Web Filter and plugin

Bug ID

Description

755055

When action set for site categories is warn, browser does not show the customized webpage, which allows user to bypass blocking.
772332 External Ethernet adapter dongle gets disconnected when speed test is run.
795631 Web Filter does not block the selected categories.

856060

Web Filter with proxy mode does not work on macOS 13.0 Ventura.
885330 FortiClient on macOS 13.0.1 Web Filter does not block websites.
886326 Web Filter cannot filter URL with URI pathway.

890045

Web Filter settings do not display Permission Required for features(s) option.

919522

Web Filter extension causes socket hangup for Docker-hosted Linux containers.

925676

Conflict occurs between FortiEDR and FortiClient.

Zero Trust tags

Bug ID

Description
793033 ZTNA LDAP group rule does not work.
794385 FortiClient detects third party antivirus tag.

Application Firewall

Bug ID

Description
718957 Application Firewall does not work after reboot.

800344

You can remotely access quarantined endpoints using VNC protocol.

814391

FortiClient Cloud Application Firewall application signatures block allowlisted applications.

834500

FortiClient fails to block Application Firewall categories when web client category is set to monitor.

834839

Web Filter does not block traffic when proxy mode is disabled and Application Firewall is disabled.

Avatar and social login information

Bug ID

Description

777013

Avatar changes do not show on FortiAnalyzer.
878050 Avatar does not update on FortiGate dashboards and FortiGate cannot show updated information.

Deployment and installers

Bug ID

Description
764672 FortiClient displays deployment window for user when EMS configured unattended installation.

Installation and upgrade

Bug ID

Description

827939

FortiTray is not open anymore prompt shows when deploying FortiClient using script through mobile device management.
828781 FortiClient (macOS) behaves inconsistently when uninstalling it through commands in terminal and the FortiClientUninstaller GUI tool.

License

Bug ID

Description
874676 EMS tags endpoint with existing ZTNA host tags for vulnerabilities and AV after EMS administrator updates license from Endpoint Protection Platform to Remote Access.

Logs

Bug ID

Description
750703 IPsec and SSL VPN events are not logged on FortiAnalyzer appropriately.

801134

FortiClient (macOS) does not generate or replicate SSL VPN logs for upload to FortiAnalyzer when it establishes a tunnel.

872875

Disabling Client-Based Logging When On-Fabric in EMS does not work.

Malware Protection and Sandbox

Bug ID

Description
719920 FortiClient cannot submit files to FortiClient Cloud Sandbox (SaaS) when downloaded from Thunderbird.

755198

FortiClient (macOS) does not submit files downloaded using Edge browser to Sandbox or FortiClient Cloud Sandbox (SaaS).
829415 When next generation antivirus is enabled, FortiClient (macOS) shows real time protection (RTP) as disabled.

837638

Identifying malware and exploits using signatures received from FortiSandbox does not work.

855555

When RTP is enabled and block_removable_media is set to 1, FortiClient (macOS) fails to block USB device.

888356

User can stop AV quick/full scan triggered from EMS.

Onboarding

Bug ID

Description
811976 FortiClient (macOS) may prioritize using user information from authentication user registered to EMS.

Endpoint management

Bug ID

Description
891264 EMS creates duplicate records for domain-joined Ubuntu endpoints.

ZTNA connection rules

Bug ID

Description

831943

ZTNA client certificate is not removed from user certificate store after FortiClient (macOS) uninstall.
853281 FortiClient (macOS) does not show the ICDB signatures on the About page.
905880 ZTNA certificate prompt displays when deploying FortiClient (macOS) with Jamf Pro configuration profiles.

Workaround: enable ZTNA in both on- and off-Fabric profile if you are using both on- and off-Fabric profiles.
Previous
Next