The relevant links to downloads and documentation are located in each section, i.e., Endpoint Security, Check Point Capsule Docs and User and Device Management.
Capsule Docs Bulk Protection Services applies protection to documents based on location and properties. The protection is based on your configuration.
There are two options to manage Bulk Protection Services:
Content-Aware File Protection for CIFS and NFS-compatible Network Locations - Protection is applied through a network gateway with the DLP Software Blade to files that match specified data types.
File Protection for Windows-based Servers and Workstations - Protection is applied locally and runs on the Windows computer. Continuous monitoring on specific targets is also available to protect new files as soon as they are created. Refer to the Capsule Docs Bulk Protection Guide
Content-Aware Protection for Mail Attachments
This feature enables DLP Gateway administrators to set protect action for E-mails:
Seamless experience - Automatic protection based on administrator configuration.
Flexibility - The administrator can allow sending protected documents, and allow or block attachments.
Content Awareness - Different protection settings for different types of data.
Access Control - The authorized user list can include defined users and groups and/or e-mail sender/recipients.
End User Education - UserCheck alerts the user to the organization security policy.
Verifies the identity of the Endpoint Server that manages the client through the Endpoint Servers certificate.
Verifies the clients minimum version.* *For SmartEndpoint-managed Remote Access VPN clients only
Performance improvements and bugs fixes
Bulk Protection Services
Capsule Docs Bulk Protection Services applies protection to documents based on location and properties. The protection is based on your configuration.
There are two options to manage Bulk Protection Services:
Content-Aware File Protection for CIFS and NFS-compatible Network Locations - Protection is applied through a network gateway with the DLP Software Blade to files that match specified data types.
File Protection for Windows-based Servers and Workstations - Protection is applied locally and runs on the Windows computer. Continuous monitoring on specific targets is also available to protect new files as soon as they are created. Refer to the Capsule Docs Bulk Protection Guide
Content-Aware Protection for Mail Attachments
This feature enables DLP Gateway administrators to set protect action for E-mails:
Seamless experience - Automatic protection based on administrator configuration.
Flexibility - The administrator can allow sending protected documents, and allow or block attachments.
Content Awareness - Different protection settings for different types of data.
Access Control - The authorized user list can include defined users and groups and/or e-mail sender/recipients.
End User Education - UserCheck alerts the user to the organization security policy.
Note: The packages provided below are Legacy CLI packages (not CPUSE packages).
Endpoint Security Server Downloads
Platform
Package
Link
Gaia
R77.30.01 HFA1 Check Point Endpoint Security Server Hotfix for Gaia OS
(TGZ)
Windows
R77.30.01 HFA1 Check Point Endpoint Security Server Hotfix for Windows OS
(TGZ)
Important: It is strongly recommended to apply the Gaia server hotfix provided in sk112099.
Installation
The R77.30.01 HFA1 Endpoint Security Server is based on the R77.30 Management Server and must be installed on the R77.30 Management Server. It has all the supported capabilities of a standard Check Point R77.30 Management Server.
The following upgrades are supported:
In place upgrade from R77.30
In place upgrade from R77.30.01
Advanced upgrade from R77.20.01
Note: Other upgrades paths or methods are not supported
Installing R77.30.01 HFA1 together with the R77.30 Jumbo Hotfix Accumulator is not supported. All existing security fixes are integrated into R77.30.01 HFA1.
For installation and upgrade instructions, use the procedures in the relevant guide:
The R77.30.01 HFA1 Endpoint Security Management Server can be activated only on a management-only machine (Standalone machine is not supported, i.e., Gateway + Management)
The R77.30.01 HFA1 Endpoint Security Server can manage Endpoint Security Clients E80.40 and higher.
R77.30.01 Management Server Migration Tools
Platform
Package
Link
Gaia
R77.30.01 Management Server Migration Tools for Gaia
(TGZ)
Windows
R77.30.01 Management Server Migration Tools for Windows
The SmartConsole for Endpoint Security Server allows the Administrator to connect to the Endpoint Security Server and to manage the new Endpoint Security Software Blades.
Platform
Package
Link
Windows
SmartConsole for Endpoint Security Server R77.30.01 HFA1
(EXE)
SmartConsole for Endpoint Security Server E80.62 / R77.20
(EXE)
SmartConsole for Endpoint Security Server E80.62 / R77.30
(EXE)
Endpoint Security E80.62 HFA1 Clients
Endpoint Security Client E80.62 HFA1 Downloads
Platform
Package
Link
Windows
E80.62 HFA1 Endpoint Security Clients for Windows OS
(ZIP)
Mac OS X *
E80.62 Endpoint Security Client and Capsule Docs for Mac OS X (used with R77.30.01 Endpoint Security Server)
(ZIP)
Mac OS X *
E80.62 Endpoint Security Client for Mac OS X (without Capsule Docs) (used with R77.30 Endpoint Security Server)
Media Encryption Offline Access Tool E80.62 for Mac OS X
The Media Encryption Offline Access utility lets you:
Read information on devices encrypted with Media Encryption for Windows.
Write to removable media devices (this depends on the type of removable media device and on the security policy used when encrypting the device). Information you add to the device will also be encrypted.
Note: The utility does not encrypt previously unencrypted removable devices with the Media Encryption for Mac component.
Platform
Package
Link
Mac OS X
E80.50.03 / E80.61 / E80.62 Media Encryption Offline Access Tool for Mac OS X 10.9.x - 10.11.x
E80.62 Endpoint Security VPN for Mac OS X - Disc Image (DMG)
(DMG)
E80.62 Endpoint Security VPN for Mac OS X - Installation package (PKG)
(PKG)
E80.62 Endpoint Security VPN for Mac OS X - Signature for automatic upgrade
(signature)
* Note: Mac OS X 10.11 can work only with E80.62 clients. Therefore, you must upgrade the Remote Access VPN Client to E80.62 version before you can upgrade the Mac OS X to 10.11.
R77.30.01 HFA1 Check Point Capsule Docs Server Hotfix for Gaia OS
(TGZ)
Windows
R77.30.01 HFA1 Check Point Capsule Docs Server Hotfix for Windows OS
(TGZ)
Installation
The R77.30.01 HFA1 Endpoint Security Server is based on the R77.30 Management Server and must be installed on the R77.30 Management Server. It has all the supported capabilities of a standard Check Point R77.30 Management Server.
The following upgrades are supported:
In place upgrade from R77.30
In place upgrade from R77.30.01
Advanced upgrade from R77.20.01
Note: Other upgrades paths or methods are not supported
Installing R77.30.01 HFA1 together with the R77.30 Jumbo Hotfix Accumulator is not supported. All existing security fixes are integrated into R77.30.01 HFA1.
For installation and upgrade instructions, use the procedures in the relevant guide:
The R77.30.01 HFA1 Endpoint Security Management Server can be activated only on a management-only machine (Standalone machine is not supported, i.e., Gateway + Management)
The R77.30.01 HFA1 Endpoint Security Server can manage Endpoint Security Clients E80.40 and higher.
Replaced all Windows Client download files due to stability enhancements and to resolve issue described in sk111096. In addition, it is strongly recommended to apply the Gaia server hotfix provided in sk112099.