Known issues
The following issues have been identified in FortiClient (macOS) 7.2.1. For inquiries about a particular bug or to report a bug, contact Customer Service & Support.
Configuration
Bug ID |
Description |
---|---|
730415 | FortiClient (macOS) backs up configuration that is missing locally configured zero trust network access (ZTNA) connection rules. |
Endpoint control
GUI
Bug ID |
Description |
---|---|
857148 |
GUI shows duplicate FortiClient consoles. |
Remote Access
Zero Trust tags
Bug ID |
Description |
---|---|
793033 |
ZTNA LDAP group rule does not work. Workaround: macOS has a limitation with detecting Builtin groups, such as Builtin/Users. However, the login AD group rule should work as expected for non-builtin paths, such as Users/Domain Users. |
794385 | FortiClient detects third-party antivirus tag. |
Avatar and social login information
Bug ID |
Description |
---|---|
878050 | Avatar does not update on FortiOS dashboards and FortiOS cannot show updated information. |
Web Filter and plugin
Bug ID |
Description |
---|---|
755055 |
When setting action to Warn for site categories, it does not show the customized webpage, which allows user to bypass blocking. |
843413 |
Packet drops when Web Filter is enabled. |
856060 |
Web Filter with proxy mode does not work on macOS 13.0 Ventura. |
857879 |
Exclusion list URLs do not work properly. |
872607 |
FortiClient does not support Web Filter custom messages. |
873803 | In-browser message does not show after switching device user without system reboot. |
875298 | Exclusion list does not work properly with regular expressions. |
878055 | Web access does not work. |
885330 | FortiClient Web Filter on macOS 13.0.1 does not block websites. |
886326 | Web Filter cannot filter URL with URI pathway. |
890045 | FortiClient settings does not display permission required for feature(s) option. |
898303 | Web Filter does not work when administrator pushes extensions through Jamf in mobile device management platform. |
899337 | Web Filter causes
packets to drop and increases network latency.
Workaround: Disable Application Firewall for affected FortiClient (macOS) devices. |
905394 | Web Filter disclaimer message does not show up. |
Application Firewall
Bug ID |
Description |
---|---|
814391 | When connected to FortiClient Cloud, application signatures block allowlisted applications. |
834500 |
FortiClient fails to block Application Firewall categories when web client category is set to monitor. |
834839 |
Web Filter does not block traffic when proxy mode and Application Firewall are disabled. |
879985 |
Application Firewall fails to block Web.Client category HTTPS traffic. |
Logs
Bug ID |
Description |
---|---|
711763 |
FortiClient does not point to usfgd1.fortigate.com for EMS web profile setting:Location-US | Server-Fortiguard (Legacy). |
746108 |
FortiClient cannot handle log upload. |
811746 |
FortiClient (macOS) sends duplicated and old logs to FortiAnalyzer. |
872875 | Disabling Client-Based Logging When On-Fabric in EMS does not work for macOS endpoints. |
913767 |
FortiClient cannot send Software Inventory information to FortiAnalyzer in macOS Big Sur 11.7.3. |
Software Inventory
Bug ID |
Description |
---|---|
737970 | Software Inventory may not properly reflect software changes (adding/deleting) on macOS endpoints. |
Quarantine management
Bug ID |
Description |
---|---|
868798 | Custom quarantine message does not work. |
Installation and upgrade
Bug ID |
Description |
---|---|
827939 |
FortiTray is not open anymore prompt shows when deploying FortiClient using script through mobile device management. |
828781 | FortiClient (macOS) behaves inconsistently when uninstalling it through commands in terminal and the FortiClientUninstaller GUI tool. |
Vulnerability Scan
Bug ID |
Description |
---|---|
771833 | FortiClient tags endpoint as vulnerable when EMS administrator has enabled Exclude Application Vulnerabilities Requiring Manual Update from Vulnerability. |
786011 |
Vulnerability feature does not autopatch macOS 12.2.1 after FortiClient (macOS) detects OS vulnerability on Monterey 12.1. |
Malware Protection and Sandbox
Bug ID |
Description |
---|---|
551282 | Sandbox exception for trusted sources does not work and FortiClient (macOS) uploads files sourced from Apple Inc. |
719920 | FortiClient cannot submit files downloaded from Thunderbird to FortiClient Cloud Sandbox (PaaS). |
829415 | When next generation antivirus is enabled, FortiClient (macOS) shows real time protection (RTP) as disabled. |
837638 | Identifying malware and exploits using signatures received from FortiSandbox does not work. |
855555 |
Enabling real-time protection and setting |
855570 |
RTP scans files regardless of the maximum file size setting for scanning files. |
858485 |
Excluding specified folders/files from Sandbox feature works when it is disabled. |
859921 |
Settings > Privacy Status shows fcaptmon under the required permission list when it is not required. |
Onboarding
Bug ID |
Description |
---|---|
811976 | FortiClient (macOS) may prioritize using user information from authentication user registered to EMS. |
872136 | User verification period option under User verification does not work as configured. |
ZTNA connection rules
Bug ID |
Description |
---|---|
831943 |
FortiClient (macOS) uninstall does not remove ZTNA client certificate is not removed from user certificate store. |
853281 | FortiClient (macOS) does not show the inline CASB database signatures on the About page. |
857909 | FortiClient (macOS) does not support enabling encryption for ZTNA TCP forwarding rules acquired form ZTNA service portal. |
857999 |
FortiClient does not support using external browser for SAML authentication for ZTNA rules acquired through service portal. |
864821 | ZTNA does not have proper logging for SaaS portals. |
905880 |
ZTNA certificate prompt displays when deploying FortiClient (macOS) with Jamf Pro configuration profiles. Workaround: enable ZTNA in both on-fabric and off-fabric profile if using both. |