The following tables provide the latest information on known issues and their workarounds, advice for users and incomplete features for CM2 Dec 7th Update
Known Issues
|
Component
|
Known issues with Explanation |
Workaround |
|
Full Sync |
Some inconsistencies may be observed if a firewall is moved from one group to another even before it fully syncs up with the first group. |
Admin should wait for the completion of Full Sync with the first group, then can move to another group. |
|
Porting – Host and Services |
Unable to delete referred default FQDN hosts even after we remove reference from FQDN host group
|
Admin can clone the defaults and can refer in any rules/policies. |
|
Feature catchup - Authentication |
Admin unable to add Radius server due to invalid parameters. |
Admin can configure the feature through single device management via RP SSO
|
|
Feature Catchup – SSL/TLS Inspection Rules |
Unable to create ssl rule when we select Known Users group, opcode failed.
|
Admin can create new user groups and use it in SSL/TLS policy. In EAP2, we are not supporting “Known/Unknown Users” group |
|
Full Sync |
After skipping transactions , new transactions of same group will stuck in pending. (Frequency : 2 out of 5 times) |
Admin can skip the transaction only when there is subsequent transactions available in task-queue. |
|
Group Management |
Administration->Device Access->Local ACL Rule->Add, Under destination hosts, hosts are coming from different groups
|
Admin can use those hosts which belongs to same group. |
|
Task Queue |
No Data available - pop up keeps coming when there is no data
|
NA |
|
Firewall - UI |
Need to fix the position of "Central Managed" banner in SFOS UI
|
NA |
|
Porting - Wireless |
Unable to add Wireless networks, opcode failed
|
Admin can configure the feature through single device management via RP SSO. |
|
Group Management |
Issue seen in Firewall Groups page: Scrolling issue and Remove firewall button |
NA |
Incomplete Features
|
Component |
Feature |
Missing Configuration Capabilities of Pages/Tabs |
|
Porting - Web
|
Configure and manage Web policies from Central |
· Content Filters |
|
Porting – System Services |
Configure and manage System Services from Central |
· RED · Data Anonymization |
|
Feature Catchup – Firewall Rules and Policies |
Configure add manage Firewall Rules & Policies from Central |
· Add firewall rules in rule group |
|
Feature Catchup – SSL/TLS Inspection Rules |
Configure and manage SSL/TLS Inspection Rules from Central |
· Synchronized security applications selection in SSL/TLS rules |
|
Porting - Certificates
|
Configure and manage Certificates from Central |
· Certificate Revocation Lists · Generate self-signed certificate · Generate certificate signing request (CSR) |
|
CM 1.0 Migration
|
CM1 Migration to CM2 |
· Firmware upgrade is not possible in Firewall Groups page |
|
Dynamic Objects |
Support of Dynamic object to configure Zones, Interfaces, Gateways on different Firewall devices together |
· Support of dynamic objects only in Rules and Policies |
|
Porting – Intrusion Prevention |
Configure and manage Intrusion Prevention from Central |
· Spoof protection general settings |
|
Porting - Applications |
Configure and manage Applications from Central |
· Cloud Applications · Synchronized application control |
|
Porting – Web Server |
Configure and manage Web Server from Central |
· Protection Policies · Authentication Policies · Authentication Templates |