FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
This article describes a change where the users cannot configure host check for the new MacOS Tahoe 26 in the SSL VPN configuration on FortiGate.
Scope
FortiGate.
Solution
Before v7.4.10, FortiGate does not support MacOS Tahoe 26 as an OS checklist for the SSL VPN.
config vpn ssl web portal edit "full-access" set tunnel-mode enable set ipv6-tunnel-mode enable set web-mode enable set ip-pools "SSLVPN_TUNNEL_ADDR1" set ipv6-pools "SSLVPN_TUNNEL_IPv6_ADDR1" set os-check enable config os-check-list "windows-7" end config os-check-list "windows-8.1" end config os-check-list "windows-10" end config os-check-list "windows-11" end config os-check-list "macos-mojave-10.14" end config os-check-list "macos-catalina-10.15" end config os-check-list "macos-bigsur-11" set minor-version 0 end config os-check-list "macos-monterey-12" set minor-version 0 end config os-check-list "macos-ventura-13" set minor-version 0 end config os-check-list "macos-sonoma-14" set minor-version 0 end config os-check-list "macos-sequoia-15" set minor-version 0 end next end
Starting from v7.4.10, MacOS Tahoe 26 is included in the OS checklist for the SSL VPN.
config vpn ssl web portal edit <name> config os-check-list "macos-tahoe-26"
end next end
The issue will be fixed in the following version.
v7.4.10 (scheduled to be released in January 2026).
The timeline for firmware release is an estimate and may be subject to change.
