Remote SSL VPN host check

Hi,

I am running Fortigate 501E with remote SSL VPN (os version 5.6.8). I wanted to know if someone came across a problem with the host check configuration. I want to permit access to the LAN through SSL VPN only with computers with specific parameters, so I tried to configure os-check to allow only win-10 os, registry check (for domain), and av-fw but nothing work. 

Some of the configuration:

set os-check enable

config os-check-list "windows-2000" set action deny config os-check-list "windows-xp" set action deny config os-check-list "windows-vista" set action deny config os-check-list "windows-7" set action deny config os-check-list "windows-8" set action deny config os-check-list "windows-8.1" set action deny config os-check-list "windows-10" set host-check custom set host-check-policy "corp.x.com" "WindowsFW-DomainProfile" "Trend-Micro-AV" edit "corp.x.com" set type fw config check-item-list edit 1 set type registry set target "HKEY_LOCAL_MACHINE\\System\\CurrentControlSet\\Services\\Tcpip\\Parameters:Domain==corp.x.com" next end config vpn ssl web host-check-software edit "WindowsFW-DomainProfile" set type fw config check-item-list edit 1 set type registry set target "Computer\\HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\DomainProfile:EnableFirewall=1" next end

I even tried the command:

set skip-check-for-unsupported-os disable