Producent oprogramowania Fortinet opublikował nową aktualizację dla FortiClient EMS w wersji 7.2.2. Update głównie skupia się na poprawkach i naprawie występujących dotychczas błędów takich jak brak możliwości połączenia Fabric z FortiGate 7.2.3 czy też samoistnego wyłączania się reguły wykrywania FortiGuard. Więcej szczegółowych informacji dotyczących zmian w nowej aktualizacji produktu FortiClient EMS można znaleźć w artykule poniżej.
Rozwiązane problemy:
Administration
| Bug ID | Description |
|---|---|
| 901490 | Invalid error on Authentication Servers GUI after deleting domain: „Error mssql: The root container for this domain is missing”. |
| 908004 | EMS does not send email when domain sync fails. |
| 908031 | Admin user with no domain access can create zero trust Active Directory (AD) group tag (access to domain users group list). |
| 912743 | Global authentication servers configuration gives invalid credential error. |
| 918858 | Deleting AD Domain Services in global space fails. |
| 919143 | Certificate hostname check in authentication server form does nothing. |
| 924269 | LDAP sync has error after upgrading EMS to 7.2.1. |
| 932715 | FortiClient Cloud does not update AD server certificate. |
Dashboard
| Bug ID | Description |
|---|---|
| 845168 | FortiClient Cloud Dashboard shows incorrect company name . |
| 887409 | No Endpoint Event Summary Found appears when user clicks quarantined host on Dashboard under Endpoint Alert. |
| 913158 | GUI duplicates vulnerability entries with same FortiGuard IDs. |
| 921421 | GUI does not display proper error message upon database restore failure. |
Endpoint management
Endpoint policy and profile
| Bug ID | Description |
|---|---|
| 466124 | User cannot change <nat_alive_freq>. |
| 910035 | EMS shows Video Filter Events tab on endpoint details page when feature is disabled from Feature Select. |
| 916755 | Port number gets appended incorrectly in XML when IPv6 address is configured as remote gateway SSL VPN address. |
| 919724 | EMS only shows ZTNA Destinations > SaaS Applications on default site. |
| 932308 | Server encounters an error and says to try again later when sync imports Web Filter profile. |
Fortinet Security Fabric devices
| Bug ID | Description |
|---|---|
| 918753 | EMS fails to establish Fabric connection with FortiGate 7.2.3. |
FortiGuard outbreak detection
| Bug ID | Description |
|---|---|
| 925491 | FortiGuard detection rules automatically disable themselves. |
License
| Bug ID | Description |
|---|---|
| 931318 | FortiClient does not receive Endpoint Protection Platform features with license with SKU 297 received from EMS. |
Malware Protection and Sandbox
| Bug ID | Description |
|---|---|
| 833255 | Wildcards do not properly work in the Malware Protection exclusion list . |
Multitenancy
| Bug ID | Description |
|---|---|
| 816600 | Non-default site database does not update EMS serial number after user uploads new license. |
| 838272 | EMS multitenancy has site number limitation. |
Onboarding
| Bug ID | Description |
|---|---|
| 911742 | With EMS user onboarding, registering to EMS URL does not launch FortiClient. |
Software Inventory
| Bug ID | Description |
|---|---|
| 897862 | EMS shows anomalies when filtering applications under Software Inventory. |
| 901431 | Software Inventory-exported table columns are not parsed correctly . |
Deployment and installers
| Bug ID | Description |
|---|---|
| 883481 | EMS has problem creating installer package from Invitations. |
| 917921 | EMS cannot create FortiClient deployment package. |
| 931648 | Privilege Access Management is not disabled in the MSI or MST when it is disabled in the installer package. |
Zero Trust tagging
| Bug ID | Description |
|---|---|
| 907310 | User in AD Group zero trust tagging rule does not contain the domain when the rules are imported from JSON file. |
| 910771 | Import zero trust network access (ZTNA) tags from another EMS server causes connected endpoints to receive all imported tags. |
| 913627 | EMS does not validate tagging rules. |
| 919743 | Importing ZTNA rules leads to duplicates if content is a number. |
| 919888 | Logged in domain tag does not calculate if user is local. |
Endpoint control
| Bug ID | Description |
|---|---|
| 753151 | EMS takes long time to update the endpoint status from Endpoint Notified to Deployed. |
| 920708 | FortiClient migration from EMS fails. |
| 921783 | When Mark All Endpoints As Uninstalled is selected, endpoints stay connected and show telemetry as successfully syncing. |
| 929476 | Registering certain clients to FortiClient Cloud does not work. |
Performance
| Bug ID | Description |
|---|---|
| 914403 | EMS has high memory consumption. |
| 929631 | EMS performance degrades and query times out in SQL log. |
Logs
| Bug ID | Description |
|---|---|
| 916862 | EMS does not send msg=offline to FortiAuthenticator as a syslog. |
Upgrade
| Bug ID | Description |
|---|---|
| 918021 | EMS cannot enforce user verification after upgrade from 6.4.8 to 7.0.8. |
| 923881 | When clients try to upgrate from 7.2.0 to 7.2.1, EMS gives error relating to legacy licensing. |
Vulnerability Scan
| Bug ID | Description |
|---|---|
| 902143 | Vulnerable Endpoints page sorting does not work . |
Web Filter and plugin
| Bug ID | Description |
|---|---|
| 946442 | GUI does not show the correct setting for Web Filter unrated category. |
Zero Trust telemetry
| Bug ID | Description |
|---|---|
| 891853 | FortiClient Telemetry fluctuates from connected to unreachable every few minutes . |
ZTNA connection rules
| Bug ID | Description |
|---|---|
| 923148 | Revoking ZTNA certificate unintentionally causes ZTNA TCP forwarding to work inconsistently . |
Other
| Bug ID | Description |
|---|---|
| 861622 | EMS does not prevent using the same port on components. |
| 889194 | Filtering by tag does not work properly when filtering vulnerable devices. |
Notatki producenta: FortiClient 7.2.2 EMS
Pozdrawiamy,
Zespół B&B
Bezpieczeństwo w biznesie