FortiClient EMS 7.4 – Key Innovations and Changes

In addition to performance improvements and optimized communication between FortiOS and FortiClient EMS, there are also significant changes regarding Linux support for the EMS server.

Optimized Communication between FortiOS and FortiClient EMS

One of the most important innovations concerns the communication between FortiOS and FortiClient EMS. Optimized queries that request only incremental updates have improved performance. Additionally, retrieved device information can now be stored in FortiGate’s FortiClient NAC Daemon Cache, increasing the scalability of Zero Trust Network Access (ZTNA) to up to 50,000 concurrent endpoints.

This feature requires FortiClient EMS 7.0.3 or later with the common-tags-api functionality enabled, significantly improving the management of large networks.

Extended Support for Linux with EMS Server

A significant change concerns the FortiClient EMS server. EMS 7.4 introduces a shift to a Linux-based model instead of the Windows Server-based model used in previous EMS versions. This change offers numerous advantages, including improved architecture and flexibility. According to Fortinet's experience, deploying the FortiClient EMS server on a Windows Server has not always provided the best security conditions, making FortiClient vulnerable to some Windows vulnerabilities.

This expansion is particularly relevant for companies using Linux servers and workstations, as they can now be centrally managed via the EMS server—a long-awaited feature for many IT departments.

Installation and Migration of FortiClient EMS 7.4

For companies transitioning to FortiClient EMS 7.4, Fortinet provides a detailed installation and migration guide. Following these instructions is essential for a smooth transition.

If you encounter issues during the migration beyond Fortinet's documentation, the EnBITCon team will be happy to assist you.