I have a mac that was blocked in FortiEMS 7.0.2 as we took troubleshooting steps. The initial reason for marking the device as unmanaged was it disconnected from the EMS and would give an error that the EMS has blocked registration - even though the endpoint was already registered.
I had this same issue with some Windows clients however they eventually re-registered. Going to 7.0.1 on the client side made no difference, nor did 7.0.0.
Right now, in the endpoint list on the EMS, the blocked client shows up “greyed out”. You can still click it and look to take action on it ie., select “enable management”, switch ems (we only have 1), and some other actions. None of these work - not even deleting the endpoint.
I have a ticket in with Fortinet however they’re up to a 2-day wait and I’m trying to tshoot this while on vacation so not looking to do some heavy lifting to get it addressed sooner.
Any thoughts folks? Also, is anyone seeing any registration issues with 7.0.2 (SSL endpoint control has not been enabled yet.)