Support Center > Search Results > SecureKnowledge Details
Check Point Capsule Docs Client flavors comparison Technical Level
Solution

Check Point Capsule Docs support different client flavors, providing customers with options that best suit their business needs.

The Capsule Docs client has three different flavors:

  • Capsule Docs managed plugin (a blade within the Endpoint Security client)
  • Capsule Docs standalone plugin
  • Capsule Docs Viewer
  Capsule Docs
managed plugin
Capsule Docs
standalone plugin
Capsule Docs
Viewer
Setup
Installation Prerequisites None. None. Microsoft .NET Framework 3.5 and above (Windows 7 and above fulfills the requirement by default).
Installation
  • Client software deployment.
  • Installation using exported package.
  • Installation using online/offline installers.
  • Latest online installer is available at http://securedoc.cc
  • Machine level installation.
  • Admin permissions are required.
  • Machine level installation.
  • Admin permissions are required.
  • User level installation.
  • Admin permissions are not required.
Upgrade Administrator controls when upgrade takes place. Latest version is suggested to the end-user (Windows Registry key can be pushed to avoid asking the user). Upgrade should be initiated by the end-user.
Management
Additional Management Features
  • Software deployment.
  • Reports (connectivity, deployment).
  • Push operations.
  • Alerts.
   
Drawbacks Problematic when using Non-AD users with FDE (will lead to a duplicate users situation).    
Permission Enforcement and Capabilities
Permission Enforcement and Capabilities Provides full editing capabilities according to the assigned permissions. Provides full editing capabilities according to the assigned permissions. Provide read-only capabilities only (regardless of assigned permissions).
Communication and Updates
Communication
  • Communicates directly with the internal servers (according to the server list configuration).
  • Reverse Proxy is not involved.
  • Access to internal servers is always required (VPN in case of remote work)
Communicates through configured DNS (should be available to external networks in case user does not have access to internal network) Communicates through configured DNS (should be available to external networks in case user does not have access to internal network)
Client Updates Client is updated immediately when policy is changed. Periodic update based on administrator configuration. Default is every 24 hours. Periodic update based on administrator configuration. Default is every 24 hours.
Authentication
AD Users SSO Support.    
  • AD users are automatically provisioned to the system.
  • AD credentials are used to login in case SSO is disabled.
Non-AD Users
  • Accounts are based on e-mail address.
  • Users must be invited (either by administrator, or by any registered user if allowed by policy), or part of an automatically accepted domain.
  • Users must activate their accounts.
Policy Assignments and Configuration
AD Users policy assignments Policy Assignments using either AD entities (OUs/groups/users) or Virtual groups.
Non-AD Users policy assignments

Policy Assignments using:

  • Virtual groups.
  • External users container.
  • Specific user entity.
Default Protection Configuration Default Protection for new documents is available. Default Protection for new documents is not available. Default Protection for new documents is not available.
Log Upload Configuration Log Upload interval is configurable from common clients settings. Log Upload interval is 20 minutes. Log Upload interval is 20 minutes.
This solution has been verified for the specific scenario, described by the combination of Product, Version and Symptoms. It may not work in other scenarios.

Give us Feedback
Please rate this document
[1=Worst,5=Best]
Comment