Support Center > Search Results > SecureKnowledge Details
Endpoint Security Homepage Technical Level
Solution

Client Releases Downloads  Endpoint Client Releases Information  |   Management Releases  |   Cloud & Web Management for Harmony Endpoint  |   Harmony Endpoint for Linux  |   Architecture and Getting Started  |   Best Practices  |   Client OS Support  |   Server Releases Information  |   Relevant SKs  |   Revision History


Important Notes

  • Always check for compatibility before upgrading Windows OS. Refer to sk115192 - Check Point Endpoint Security Client Support Schedule for New Operating Systems.
  • Enterprise Endpoint Security E87.20 Windows Clients. Added ability to examine VPN configuration and display intersections of IP address ranges. Added File Action push operations which allow to copy, move folders on endpoint computers. Applied Server Profiles will now be shown in the Policies view of Endpoint Client UI. Endpoint Security Client will now automatically disable Windows Defender Firewall during installation on Windows Servers.  Improved protections against AMSI (Anti-Malware Scan Interface) Bypass. Forensics blade will now update management about the status of sending information to Threat Hunting. In Compliance blade, added support for Windows 11, Windows Server 2019 and Windows Server 2022.
  • Enterprise Endpoint Security E87.30 macOS Clients. Connection awareness is now supported on macOS. Added ability to examine VPN configuration and display intersections of IP address ranges. Added ability to configure how VPN client for macOS handles DNS settings. The output of the "./trac info" command will now show the authentication method when SAML authentication is used. Added Built-in Help to the client UI.

Client Releases

Endpoint Security Windows Clients

E86.80 - Released in November 2022 - Recommended

Endpoint Security
clients for Windows

Threat Prevention clients for Windows

Remote Access
clients for Windows

Capsule Docs
Standalone Client

 
sk164896 - Video: How to deploy and upgrade Endpoint Security Client?

E87.20 - Released in March 2023 - Latest

Endpoint Security
clients for Windows

Threat Prevention clients for Windows

Remote Access
clients for Windows

Capsule Docs
Standalone Client



Endpoint Security macOS Clients

E86.60 - Released in August 2022 - Recommended
E87.30 - Released in March 2023 - Latest
Endpoint Security Clients
for macOS
Endpoint Security VPN
for macOS -
Automatic Upgrade package
Endpoint Security
VPN for macOS -
Disc Image
Endpoint Security Clients
for macOS
Endpoint Security VPN
for macOS -
Automatic Upgrade package
Endpoint Security
VPN for macOS -
Disc Image



Client Releases Information

Enterprise Endpoint Security E87.30 macOS Clients
Release Date March 28, 2023
Release Home page For Downloads and Documentation, see sk180725
Release Highlights
  • Connection awareness is now supported on macOS. 
  • Added ability to examine VPN configuration and display intersections of IP address ranges.
  • Added ability to configure how VPN client for macOS handles DNS settings.
  • The output of the "./trac info" command will now show the authentication method when SAML authentication is used.
  • Added Built-in Help to the client UI.
Supported OS macOS 10.15 (Catalina) , macOS 11 (Big Sur) , macOS 12 (Monterey) , macOS 13 (Ventura)
Supported Upgrade Paths E83.20 and higher
OS In-place upgrade From macOS 10.15 (Catalina) to macOS 11 (Big Sur)
From
macOS 11 (Big Sur) to macOS 12 (Monterey)
From macOS 12 (Monterey) to macOS 13 (Ventura)
Supported Management Servers R81.20, R81.10, R81, R80.40, R80.30 and R80.20 Endpoint Security Management Servers, both on-premises and EPMaas solutions.
Supported Blades Firewall for Desktop security , Anti-Malware ,  Forensics and Anti-Ransomware , Media Encryption , Compliance , Remote Access VPN , Native Encryption Management ,  Capsule Docs , SandBlast Agent Browser Extension for Chrome (Threat Emulation ,
TEX , Zero Phishing , Password reuse , URL Filtering)

Enterprise Endpoint Security E87.20 Windows Clients
Release Date  March 8, 2023
Release Home page  For Downloads and Documentation, see sk180585
Release Highlights
  • Added ability to examine VPN configuration and display intersections of IP address ranges.
  • Added File Action push operations which allow to copy, move folders on endpoint computers.
  • Applied Server Profiles will now be shown in the Policies view of Endpoint Client UI.
  • Endpoint Security Client will now automatically disable Windows Defender Firewall during installation on Windows Servers.
  • Improved protections against AMSI (Anti-Malware Scan Interface) Bypass.
  • Forensics blade will now update management about the status of sending information to Threat Hunting.
  • In Compliance blade, added support for Windows 11, Windows Server 2019 and Windows Server 2022.
Supported OS - Workstations  Microsoft Windows: 7, 8.1.1, 10 (versions 1607, 1709, 1803, 1809, 1903, 1909, 2004, 2009, 2103, 21H2, 22H2), 11 (versions 21H2, 22H2)
Supported OS - Servers  Microsoft Windows Server: 2008 R2, 2012, 2012 R2, 2016, 2019, 2022
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade From Win7 / Win 8.1.1 / Win10 1709 / Win10 1803 / Win10 1809 / Win10 1903 / Win10 1909 / Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2  to Win10 22H2 

From Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2 / Win11 21H2 to Win11 22H2
Supported Management Servers R81.20, R81.10, R81, R80.40, R80.30 and R80.20 Endpoint Security Management Servers, both on-premises and EPMaas solutions.
Supported Blades Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)


Enterprise Endpoint Security E87.20 macOS Clients
Release Date March 8, 2023
Release Home page For Downloads and Documentation, see sk180627
Release Highlights
  • Added the "Enable the user to postpone the client installation and upgrade" option.
  • Added File Action push operations which allow to copy, move folders on endpoint computers.
  • When proxy settings are configured on macOS, proxy connection is used by default. When proxy connection is not available, it will be now bypassed by agent to connect directly.
  • Added support for the "VPN Site" push operation.
Supported OS macOS 10.15 (Catalina) , macOS 11 (Big Sur) , macOS 12 (Monterey) , macOS 13 (Ventura)
Supported Upgrade Paths E83.20 and higher
OS In-place upgrade From macOS 10.15 (Catalina) to macOS 11 (Big Sur)
From
macOS 11 (Big Sur) to macOS 12 (Monterey)
From macOS 12 (Monterey) to macOS 13 (Ventura)
Supported Management Servers R81.20, R81.10, R81, R80.40, R80.30 and R80.20 Endpoint Security Management Servers, both on-premises and EPMaas solutions.
Supported Blades Firewall for Desktop security , Anti-Malware ,  Forensics and Anti-Ransomware , Media Encryption , Compliance , Remote Access VPN , Native Encryption Management ,  Capsule Docs , SandBlast Agent Browser Extension for Chrome (Threat Emulation ,
TEX , Zero Phishing , Password reuse , URL Filtering)

Enterprise Endpoint Security E87.10 macOS Clients
Release Date February 14, 2023
Release Home page For Downloads and Documentation, see sk180421
Release Highlights
  • URL Filtering feature based on Network Monitoring is now supported on macOS. It allows to apply URL Filtering policy to all applications in addition to URL filtering provided by previous versions through browser extensions on Safari, Chrome, and Firefox.
  • Added ability to specify fingerprint of the Gateway when creating a site from CLI.
  • Added File Action push operations which allow to copy, move or delete files on endpoint computers. 
Supported OS macOS 10.15 (Catalina) , macOS 11 (Big Sur) , macOS 12 (Monterey) , macOS 13 (Ventura)
Supported Upgrade Paths E83.20 and higher
OS In-place upgrade From macOS 10.15 (Catalina) to macOS 11 (Big Sur)
From
macOS 11 (Big Sur) to macOS 12 (Monterey)
From macOS 12 (Monterey) to macOS 13 (Ventura)
Supported Management Servers R81.20, R81.10, R81, R80.40, R80.30 and R80.20 Endpoint Security Management Servers, both on-premises and EPMaas solutions.
Supported Blades Firewall for Desktop security , Anti-Malware ,  Forensics and Anti-Ransomware , Media Encryption , Compliance , Remote Access VPN , Native Encryption Management ,  Capsule Docs , SandBlast Agent Browser Extension for Chrome (Threat Emulation ,
TEX , Zero Phishing , Password reuse , URL Filtering)

Enterprise Endpoint Security E87.10 Windows Clients
Release Date  January 25, 2023
Release Home page  For Downloads and Documentation, see sk180420
Release Highlights
  • Vulnerability Management capability is now available for EA customers. It reduces the attack surface through accurate assessment of vulnerabilities, risky applications, and computers within the organization.
  • Added ability to specify fingerprint of the Gateway when creating a site from CLI.
Supported OS - Workstations  Microsoft Windows: 7, 8.1.1, 10 (versions 1607, 1709, 1803, 1809, 1903, 1909, 2004, 2009, 2103, 21H2, 22H2), 11 (versions 21H2, 22H2)
Supported OS - Servers  Microsoft Windows Server: 2008 R2, 2012, 2012 R2, 2016, 2019, 2022
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade From Win7 / Win 8.1.1 / Win10 1709 / Win10 1803 / Win10 1809 / Win10 1903 / Win10 1909 / Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2  to Win10 22H2 

From Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2 / Win11 21H2 to Win11 22H2
Supported Management Servers  R81.20, R81.10, R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E87.00 Windows Clients
Release Date  December 14, 2022
Release Home page  For Downloads and Documentation, see sk180365
Release Highlights
  • Added support for Endpoint Security on Windows 10 version 22H2 as an GA (General Availability) version.
  • Endpoint Security Client is now integrated with Intel Threat Detection Technology to improve the Ransomware detection capabilities.
Supported OS - Workstations  Microsoft Windows: 7, 8.1.1, 10 (versions 1607, 1709, 1803, 1809, 1903, 1909, 2004, 2009, 2103, 21H2, 22H2), 11 (versions 21H2, 22H2)
Supported OS - Servers  Microsoft Windows Server: 2008 R2, 2012, 2012 R2, 2016, 2019, 2022
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade From Win7 / Win 8.1.1 / Win10 1709 / Win10 1803 / Win10 1809 / Win10 1903 / Win10 1909 / Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2  to Win10 22H2 

From Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2 / Win11 21H2 to Win11 22H2
Supported Management Servers  R81.20, R81.10, R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E87.01 macOS Clients
Release Date March 28, 2023
Release Home page For Downloads and Documentation, see sk180761
Release Highlights
  • This Hotfix complements the E87.00 release with an important fix in Anti-Bot blade. 
Supported OS macOS 10.15 (Catalina) , macOS 11 (Big Sur) , macOS 12 (Monterey) , macOS 13 (Ventura)
Supported Upgrade Paths E83.20 and higher
OS In-place upgrade From macOS 10.15 (Catalina) to macOS 11 (Big Sur)
From
macOS 11 (Big Sur) to macOS 12 (Monterey)
From macOS 12 (Monterey) to macOS 13 (Ventura)
Supported Management Servers R81.20, R81.10, R81, R80.40, R80.30 and R80.20 Endpoint Security Management Servers, both on-premises and EPMaas solutions.
Supported Blades Firewall for Desktop security , Anti-Malware ,  Forensics and Anti-Ransomware , Media Encryption , Compliance , Remote Access VPN , Native Encryption Management ,  Capsule Docs , SandBlast Agent Browser Extension for Chrome (Threat Emulation ,
TEX , Zero Phishing , Password reuse , URL Filtering)

Enterprise Endpoint Security E87.00 macOS Clients
Release Date December 14, 2022
Release Home page For Downloads and Documentation, see sk180366
Release Highlights
  • Added support for Endpoint Security on macOS 13 (Ventura) as an GA (General Availability) version.
  • Added the Application Control Blade that allows to control which applications can run or use networking.
Supported OS macOS 10.15 (Catalina) , macOS 11 (Big Sur) , macOS 12 (Monterey) , macOS 13 (Ventura)
Supported Upgrade Paths E83.20 and higher
OS In-place upgrade From macOS 10.15 (Catalina) to macOS 11 (Big Sur)
From
macOS 11 (Big Sur) to macOS 12 (Monterey)
From macOS 12 (Monterey) to macOS 13 (Ventura)
Supported Management Servers R81.20, R81.10, R81, R80.40, R80.30 and R80.20 Endpoint Security Management Servers, both on-premises and EPMaas solutions.
Supported Blades Firewall for Desktop security , Anti-Malware ,  Forensics and Anti-Ransomware , Media Encryption , Compliance , Remote Access VPN , Native Encryption Management ,  Capsule Docs , SandBlast Agent Browser Extension for Chrome (Threat Emulation ,
TEX , Zero Phishing , Password reuse , URL Filtering)

Enterprise Endpoint Security E86.80 macOS Clients
Release Date November 17, 2022
Release Home page For Downloads and Documentation, see sk180146
Release Highlights
  • Added support for Endpoint Security on macOS 13 (Ventura) as an EA (Early Availability) version.
Supported OS macOS 11 (Big Sur) , macOS 12 (Monterey) , macOS 13 (Ventura) - EA
Supported Upgrade Paths E86.70, E86.60, E86.50, E86.40, E86.30, E86.20, E85.30, E84.70, E84.30, E83.20
OS In-place upgrade From macOS 10.15 (Catalina) to macOS 11 (Big Sur)
From
macOS 11 (Big Sur) to macOS 12 (Monterey)
From macOS 12 (Monterey) to macOS 13 (Ventura)
Supported Management Servers R81.10, R81, R80.40, R80.30 and R80.20 Endpoint Security Management Servers, both on-premises and EPMaas solutions.
Supported Blades Firewall for Desktop security , Anti-Malware ,  Forensics and Anti-Ransomware , Media Encryption , Compliance , Remote Access VPN , Native Encryption Management ,  Capsule Docs , SandBlast Agent Browser Extension for Chrome (Threat Emulation ,
TEX , Zero Phishing , Password reuse , URL Filtering)

Enterprise Endpoint Security E86.80 Windows Clients - Recommended
Release Date  November 8, 2022
Release Home page  For Downloads and Documentation, see sk180149
Release Highlights
  • Added support for Endpoint Security on Windows 10 version 22H2 as an EA (Early Availability) version.
  • Application Control blade now includes a flexible and easy-to-use interface. 
  • Installation of the client on Windows Servers is now blocked when Windows Security Center is not installed, and Windows Defender is running.
  • Improved location placement and naming of Honeypot folders to improve ransomware detection.
  • Added the "Detect" (silent) option in Files Threat Emulation Mode.
  • Behavioral Guard: Commands related to development tools are now executed faster.
  • Policy changes will be enforced faster with the Browser Extension. In Firefox, Browser policy changes will be enforced even without a Browser restart.
  • Improved stability of VPN core service.
  • VPN: Added ability to define the Build number of Windows 10 and Windows 11 in OsMonitor rules.
    VPN: Service pack number is no longer applicable for Windows 10 and Windows in OsMonitor rules.
Supported OS - Workstations  Microsoft Windows: 7, 8.1.1, 10 (versions 1607, 1709, 1803, 1809, 1903, 1909, 2004, 2009, 2103, 21H2, 22H2), 11 (versions 21H2, 22H2)
Supported OS - Servers  Microsoft Windows Server: 2008 R2, 2012, 2012 R2, 2016, 2019, 2022
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade From Win7 / Win 8.1.1 / Win10 1709 / Win10 1803 / Win10 1809 / Win10 1903 / Win10 1909 / Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2  to Win10 22H2 

From Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2 / Win11 21H2 to Win11 22H2
Supported Management Servers  R81.10, R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E86.70 Windows Clients
Release Date  October 2, 2022
Release Home page  For Downloads and Documentation, see sk179790
Release Highlights
  • Added support for Endpoint Security on Windows 11 version 22H2.
  • Added the Endpoint Security browser extension to the Brave browser. Improved the detection algorithm reducing the amount of false-positive ransomware detections.
  • Anti-Malware can now update signatures from https://kav8.zonealarm.com/v6. Enhanced the purge mechanism to reduce memory consumption during AMSI logs cleanup. Also, added AR and BG support for asterisks and environment variables support on exclusions.
Supported OS - Workstations  Microsoft Windows: 7, 8.1.1, 10 (versions 1607, 1709, 1803, 1809, 1903, 1909, 2004, 2009, 2103, 21H2), 11 (versions 21H2, 22H2)
Supported OS - Servers  Microsoft Windows Server: 2008 R2, 2012, 2012 R2, 2016, 2019, 2022
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade From Win7 / Win 8.1.1 / Win10 1709 / Win10 1803 / Win10 1809 / Win10 1903 / Win10 1909 / Win10 2004 / Win10 2009 / Win10 2103 to Win10 21H2 

From Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2 / Win11 21H2 to Win11 22H2
Supported Management Servers  R81.10, R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E86.70 macOS Clients
Release Date October 2, 2022
Release Home page  For Downloads and Documentation, see sk179789
Release Highlights
  • Anti-Malware blade now supports File Exclusions by MD5.
  • Anti-Malware blade now supports Folder Exclusions.
  • The macOS Client now supports three notification levels: "All", "When user experience is affected" and "Critical Only". It is now possible to choose which notifications will be displayed. 
Supported OS  macOS Catalina (10.15) , macOS 11 (Big Sur) , macOS 12 (Monterey) 
Supported Upgrade Paths  E86.60, E86.50, E86.40, E86.30, E86.20, E85.30, E84.70, E84.30, E83.20
OS In-place upgrade From macOS 10.15 (Catalina) to macOS 11 (Big Sur)
From macOS 11 (Big Sur) to macOS 12 (Monterey)
Supported Management Servers R81.10, R81, R80.40, R80.30 and R80.20 Endpoint Security Management Servers, both on-premises and EPMaas solutions.
Supported Blades Firewall for Desktop security , Anti-Malware ,  Forensics and Anti-Ransomware , Media Encryption , Compliance , Remote Access VPN , Native Encryption Management ,  Capsule Docs , SandBlast Agent Browser Extension for Chrome (Threat Emulation ,
TEX , Zero Phishing , Password reuse , URL Filtering)

Enterprise Endpoint Security E86.60 Windows Clients
Release Date  August 10, 2022
Release Home page  For Downloads and Documentation, see sk179587
Release Highlights
  • The Endpoint Client now blocks against more encryption programs that may be used to encrypt a drive as part of a Ransomware attack. Programs that are used for legitimate purposes can be allowed by excluding the encryptor's signature. The feature is controlled by the "Block Bitlocker Encryption" option in the Endpoint management.
Supported OS - Workstations  Microsoft Windows: 7, 8.1.1, 10 (versions 1607, 1709, 1803, 1809, 1903, 1909, 2004, 2009, 2103, 21H2), 11 (version 21H2)
Supported OS - Servers  Microsoft Windows Server: 2008 R2, 2012, 2012 R2, 2016, 2019, 2022
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade From Win7 / Win 8.1.1 / Win10 1709 / Win10 1803 / Win10 1809 / Win10 1903 / Win10 1909 / Win10 2004 / Win10 2009 / Win10 2103 to Win10 21H2 

From Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2 to Win11 21H2
Supported Management Servers  R81.10, R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E86.60 macOS Clients - Recommended
Release Date August 10, 2022
Release Home page  For Downloads and Documentation, see sk179304
Release Highlights
  • Added Anti-Bot as new protection for macOS (supports macOS versions 10.15 and higher, limited support for legacy Endpoint UI).
Supported OS  macOS Catalina (10.15) , macOS 11 (Big Sur) , macOS 12 (Monterey) 
Supported Upgrade Paths  E86.50, E86.40, E86.30, E86.20, E85.30, E84.70, E84.30, E83.20
OS In-place upgrade From macOS 10.15 (Catalina) to macOS 11 (Big Sur)
From macOS 11 (Big Sur) to macOS 12 (Monterey)
Supported Management Servers R81.10, R81, R80.40, R80.30 and R80.20 Endpoint Security Management Servers, both on-premises and EPMaas solutions.
Supported Blades Firewall for Desktop security , Anti-Malware ,  Forensics and Anti-Ransomware , Media Encryption , Compliance , Remote Access VPN , Native Encryption Management ,  Capsule Docs , SandBlast Agent Browser Extension for Chrome (Threat Emulation ,
TEX , Zero Phishing , Password reuse , URL Filtering)

Enterprise Endpoint Security E86.51 Windows Clients
Release Date  September 13, 2022
Release Home page  For Downloads and Documentation, see sk179856
Release Highlights
  • This Hotfix complements the E86.50 release with important fixes. 
  • Enhanced the purge mechanism to reduce memory consumption during AMSI logs cleanup.
  • The version upgrade on 32bit Win7 computers now runs smoothly.
  • After an upgrade when machine is disconnected from the Internet, the Security Gateway and Anti-Malware blade have stable performance.
Supported OS - Workstations  Microsoft Windows: 7, 8.1.1, 10 (versions 1607, 1709, 1803, 1809, 1903, 1909, 2004, 2009, 2103, 21H2), 11 (version 21H2)
Supported OS - Servers  Microsoft Windows Server: 2008 R2, 2012, 2012 R2, 2016, 2019, 2022
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade From Win7 / Win 8.1.1 / Win10 1709 / Win10 1803 / Win10 1809 / Win10 1903 / Win10 1909 / Win10 2004 / Win10 2009 / Win10 2103 to Win10 21H2 

From Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2 to Win11 21H2
Supported Management Servers  R81.10, R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E86.50 Windows Clients
Release Date  June 21, 2022
Release Home page  For Downloads and Documentation, see sk179044
Release Highlights
  • New "Search And Fetch" Push Operation that allows Security Administrators to search for files on clients and upload them to SFTP sites.
  • "Block BitLocker Encryption" is now on by default, which blocks any BitLocker encryption to prevent attackers from the use of BitLocker to encrypt the disk.
  • Media Encryption and Port Protection blades are now certified for a Citrix VDI environment.
  • The DHS Compliant Anti-Malware (E2) now fully supports VDI environments.
Supported OS - Workstations  Microsoft Windows: 7, 8.1.1, 10 (versions 1607, 1709, 1803, 1809, 1903, 1909, 2004, 2009, 2103, 21H2), 11 (version 21H2)
Supported OS - Servers  Microsoft Windows Server: 2008 R2, 2012, 2012 R2, 2016, 2019, 2022
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade From Win7 / Win 8.1.1 / Win10 1709 / Win10 1803 / Win10 1809 / Win10 1903 / Win10 1909 / Win10 2004 / Win10 2009 / Win10 2103 to Win10 21H2 

From Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2 to Win11 21H2
Supported Management Servers  R81.10, R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E86.50 macOS Clients
Release Date June 21, 2022
Release Home page  For Downloads and Documentation, see sk179045
Release Highlights
  • This releases includes resolved issues for various categories, specifically for VPN Endpoint Client certification. 
Supported OS  macOS Catalina (10.15) , macOS 11 (Big Sur) , macOS 12 (Monterey) 
Supported Upgrade Paths  E86.40, E86.30, E86.20, E85.30, E84.70, E84.30, E83.20
OS In-place upgrade From macOS 10.15 (Catalina) to macOS 11 (Big Sur)
From macOS 11 (Big Sur) to macOS 12 (Monterey)
Supported Management Servers  R81.10, R81, R80.40, R80.30 and R80.20 Endpoint Security Management Servers, both on-premises and EPMaas solutions.
Supported Blades Firewall for Desktop security , Anti-Malware ,  Forensics and Anti-Ransomware , Media Encryption , Compliance , Remote Access VPN , Native Encryption Management ,  Capsule Docs , SandBlast Agent Browser Extension for Chrome (Threat Emulation ,
TEX , Zero Phishing , Password reuse , URL Filtering)

Enterprise Endpoint Security E86.40 Windows Clients
Release Date  May 8, 2022
Release Home page  For Downloads and Documentation, see sk178665
Release Highlights
  • Endpoint Client now supports new Push Operations: creating and deleting a VPN site and registry key or value, collecting processed information from the client machine, and moving or deleting a file on the client machine.
  • Endpoint Client now supports turning ON/OFF admin-enabled capabilities.
  • Harmony Endpoint now supports multi-users in Windows environments. The solution includes Microsoft Terminal Servers (RDS), Citrix Virtual Apps (XenApp), and VMware Horizon Apps.
Supported OS - Workstations  Microsoft Windows: 7, 8.1.1, 10 (versions 1607, 1709, 1803, 1809, 1903, 1909, 2004, 2009, 2103, 21H2), 11 (version 21H2)
Supported OS - Servers  Microsoft Windows Server: 2008 R2, 2012, 2012 R2, 2016, 2019, 2022
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade From Win7 / Win 8.1.1 / Win10 1709 / Win10 1803 / Win10 1809 / Win10 1903 / Win10 1909 / Win10 2004 / Win10 2009 / Win10 2103 to Win10 21H2 

From Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2 to Win11 21H2
Supported Management Servers  R81.10, R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E86.40 macOS Clients
Release Date May 8, 2022
Release Home page  For Downloads and Documentation, see sk178865
Release Highlights
  • Added Native Support for Apple  M1 for Threat Emulation, Anti-Ransomware, Forensics, and Threat Hunting.
  • Added Detection Events to Threat Hunting.
  • IPv6 rules defined on server are now enforced on client.
  • Firewall blade Push Operations, called Isolate and Release, are now supported.
Supported OS  macOS Catalina (10.15) , macOS 11 (Big Sur) , macOS 12 (Monterey) 
Supported Upgrade Paths  E86.30, E86.20, E85.30, E84.70, E84.30, E83.20
OS In-place upgrade From macOS 10.15 (Catalina) to macOS 11 (Big Sur)
From macOS 11 (Big Sur) to macOS 12 (Monterey)
Supported Management Servers  R81.10, R81, R80.40, R80.30 and R80.20 Endpoint Security Management Servers, both on-premises and EPMaas solutions.
Supported Blades Firewall for Desktop security , Anti-Malware ,  Forensics and Anti-Ransomware , Media Encryption , Compliance , Remote Access VPN , Native Encryption Management ,  Capsule Docs , SandBlast Agent Browser Extension for Chrome (Threat Emulation ,
TEX , Zero Phishing , Password reuse , URL Filtering)

Enterprise Endpoint Security E86.30 Windows Clients
Release Date  April 10, 2022
Release Home page  For Downloads and Documentation, see sk178324
Release Highlights
  • Through the network-level URL Filtering, the Endpoint's full network traffic can now be monitored by the URL Filtering logic. 
  • The Endpoint Security Client new User Interface is available in Early Availability mode.
  • The "Block BitLocker Encryption" feature for non-encrypted volumes is now enabled, preventing Ransomware attackers from encrypting drives with BitLocker.
Supported OS - Workstations  Microsoft Windows: 7, 8.1.1, 10 (versions 1607, 1709, 1803, 1809, 1903, 1909, 2004, 2009, 2103, 21H2), 11 (version 21H2)
Supported OS - Servers  Microsoft Windows Server: 2008 R2, 2012, 2012 R2, 2016, 2019, 2022
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade From Win7 / Win 8.1.1 / Win10 1709 / Win10 1803 / Win10 1809 / Win10 1903 / Win10 1909 / Win10 2004 / Win10 2009 / Win10 2103 to Win10 21H2 

From Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2 to Win11 21H2
Supported Management Servers  R81.10, R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E86.30 macOS Clients
Release Date April 10, 2022
Release Home page  For Downloads and Documentation, see sk178465
Release Highlights
  • A small executable named Mac Tiny Agent which is downloaded from an Endpoint server. Once it runs, it downloads and installs the initial client. Tiny Agent's functionality is very similar to tiny/nano agent in Windows.
  • A popular Microsoft MDM named Intune MDM. Its support entails the tiny agent, which can generate a special script that should be uploaded to Intune.
  • A new supplementary guide named Endpoint Security for Mac Mobile Device Management (MDM) Deployment Guide is also released, explaining how to upgrade using PKG file only.
Supported OS  macOS Catalina (10.15) , macOS 11 (Big Sur) , macOS 12 (Monterey) - GA
Supported Upgrade Paths  E86.20, E85.30, E84.70, E84.30, E83.20 
OS In-place upgrade From macOS 10.15 (Catalina) to macOS 11 (Big Sur)
From macOS 11 (Big Sur) to macOS 12 (Monterey)
Supported Management Servers R81.10, R81, R80.40, R80.30 and R80.20 Endpoint Security Management Servers, both on-premises and EPMaas solutions.
Supported Blades Firewall for Desktop security , Anti-Malware ,  Forensics and Anti-Ransomware , Media Encryption , Compliance , Remote Access VPN , Native Encryption Management ,  Capsule Docs , SandBlast Agent Browser Extension for Chrome (Threat Emulation ,
TEX , Zero Phishing , Password reuse , URL Filtering)

Enterprise Endpoint Security E86.26 Windows Clients 
Release Date  April 18, 2022
Release Home page  For Downloads and Documentation, see sk178725
Release Highlights
  • This Hotfix complements the E86.25 release with important fixes.
  • Writing a CD/DVD when Media Encryption is installed is now successful.
  • When working with DHS compliant Anti-Malware blade (E2), files located on network drives are now always inspected by the Threat Emulation blade.
  • Deploying endpoints by a remote deployment agent can now successfully enable a connection to the Management Server.
  • When working with DHS compliant Anti-Malware blades (E2), Filesystem scanning is fully stable. 
Supported OS - Workstations  Microsoft Windows: 7, 8.1.1, 10 (versions 1607, 1709, 1803, 1809, 1903, 1909, 2004, 2009, 2103, 21H2), 11 (version 21H2)
Supported OS - Servers  Microsoft Windows Server:  2008 R2, 2012, 2012 R2, 2016, 2019, 2022
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade From Win7 / Win 8.1.1 / Win10 1709 / Win10 1803 / Win10 1809 / Win10 1903 / Win10 1909 / Win10 2004 / Win10 2009 / Win10 2103 to Win10 21H2 

From Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2 to Win11 21H2
Supported Management Servers R81.10, R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E86.25 Windows Clients
Release Date  March 02, 2022
Release Home page  For Downloads and Documentation, see sk177584
Release Highlights
  • Accessing a USB device while upgrading from client version E85.00 or earlier, where the Anti-Ransomware blade is active, is now always possible.
  • A Sharing violation while using network drive for Microsoft Office / PDF files, which yields the message “Someone else is working in <filename>. Please try again later”, no longer occurs.
  • Firewall blade now always functions correctly when adding it during the Harmony Endpoint Client upgrade procedure.
  • System crash (BSOD) when upgrading Harmony Endpoint Client while Check Point's Root Certificate is not installed no longer occurs.
Supported OS - Workstations  Microsoft Windows: 7, 8.1.1, 10 (versions 1607, 1709, 1803, 1809, 1903, 1909, 2004, 2009, 2103, 21H2), 11 (version 21H2)
Supported OS - Servers  Microsoft Windows Server:  2008 R2, 2012, 2012 R2, 2016, 2019, 2022
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade From Win7 / Win 8.1.1 / Win10 1709 / Win10 1803 / Win10 1809 / Win10 1903 / Win10 1909 / Win10 2004 / Win10 2009 / Win10 2103 to Win10 21H2 

From Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2 to Win11 21H2
Supported Management Servers R81.10, R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E86.20 macOS Clients
Release Date January 05, 2022
Release Home page  For Downloads and Documentation, see sk176934
Release Highlights
  • General  Availability support for the Endpoint Security Clients on macOS Monterey (12)
  • Software Deployment General Availability 
  • Port Protection Early Availability feature for blocking USB, Bluetooth, camera and printer devices. See sk176366 for more details.
  • Initial client: A small sized client (~20MB) which allows easier initial deployment of Endpoint Clients to an organization
  • Push operations: the following push operations are supported- Collect Logs to Check Point FTP server, Kill process, Uninstall client, Reboot machine, Shutdown machine, Scan for malware (AM), Update signatures (AM), Restore quarantined files (AM), Analyze by indicator, File Remediation
  • AM on access performance improvements 
  • macOS endpoints now have support for Threat Hunting

    VPN features:
  • VPN client for macOS can be installed without Firewall blade
  • Location Aware Connectivity Early Availability:  Remote Access Clients intelligently detects whether or not it is inside the VPN domain (Enterprise LAN), and automatically connects or disconnects as required
  • VPN client for macOS can use additional cypher suites from TLS1.2 while creating VPN sites
Supported OS  macOS Catalina (10.15) , macOS 11 (Big Sur) , macOS 12 (Monterey) - GA
Supported Upgrade Paths  E85.30, E84.70, E84.30, E83.20   
OS In-place upgrade From macOS 10.15 (Catalina) to macOS 11 (Big Sur)
From macOS 11 (Big Sur) to macOS 12 (Monterey)
Supported Management Servers  R81.10, R81, R80.40, R80.30 and R80.20 Endpoint Security Management Servers, both on-premises and EPMaas solutions.
Supported Blades  Firewall for Desktop security , Anti-Malware ,  Forensics and Anti-Ransomware , Media Encryption , Compliance , Remote Access VPN , Native Encryption Management ,  Capsule Docs , SandBlast Agent Browser Extension for Chrome (Threat Emulation ,
TEX , Zero Phishing , Password reuse , URL Filtering)

Enterprise Endpoint Security E86.20 Windows Clients
Release Date  December 28, 2021
Release Home page  For Downloads and Documentation, see sk176853
Release Highlights
  • Endpoint Protection Solution for Terminal Servers is now open for all customers in Public Early Availability.
  • Users can now add IOCs to their Management Endpoint. Adding an IOC causes the Endpoint to block this IOC and protects the Endpoint from it.
  • The administrator can now exclude traffic to dynamically located SaaS services from a VPN tunnel in Hub Mode.
Supported OS - Workstations  Microsoft Windows: 7, 8.1.1, 10 (versions 1607, 1709, 1803, 1809, 1903, 1909, 2004, 2009, 2103, 21H2), 11 (version 21H2)
Supported OS - Servers Microsoft Windows Server:  2008 R2, 2012, 2012 R2, 2016, 2019, 2022
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade From Win7 / Win 8.1.1 / Win10 1709 / Win10 1803 / Win10 1809 / Win10 1903 / Win10 1909 / Win10 2004 / Win10 2009 / Win10 2103 to Win10 21H2 

From Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2 to Win11 21H2
Supported Management Servers  R81.10, R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades   Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E86.10 Windows Clients
Release Date  December 7, 2021
Release Home page  For Downloads and Documentation, see sk176164
Release Highlights
  • Harmony Endpoint Blades can access the Internet from an authenticated NTLM proxy with a logged-in user's credentials.
  • Added ability to create a unique VPN configuration for each Windows user.
Supported OS - Workstations  Microsoft Windows: 7, 8.1.1, 10 (versions 1607, 1709, 1803, 1809, 1903, 1909, 2004, 2009, 2103, 21H2), 11 (version 21H2)
Supported OS - Servers Microsoft Windows Server:  2008 R2, 2012, 2012 R2, 2016, 2019, 2022
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade  From Win7 / Win 8.1.1 / Win10 1709 / Win10 1803 / Win10 1809 / Win10 1903 / Win10 1909 / Win10 2004 / Win10 2009 / Win10 2103 to Win10 21H2 

From Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2 to Win11 21H2
Supported Management Servers  R81.10, R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades  Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E86.01 Windows Clients
Release Date  November 29, 2021
Release Home page  For Downloads and Documentation, see sk176526
Release Highlights
  • Resolves rare Blue Screens (BSOD) appearing in Endpoint Client.
  • Resolves a delay while opening office files located on a network share drive.
Supported OS - Workstations  Microsoft Windows: 7, 8.1.1, 10 (versions 1607, 1709, 1803, 1809, 1903, 1909, 2004, 2009, 2103, 21H2), 11 (version 21H2)
Supported OS - Servers  Microsoft Windows Server:  2008 R2, 2012, 2012 R2, 2016, 2019, 2022
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade  From Win7 / Win 8.1.1 / Win10 1709 / Win10 1803 / Win10 1809 / Win10 1903 / Win10 1909 / Win10 2004 / Win10 2009 / Win10 2103 to Win10 21H2 

From Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2 to Win11 21H2
Supported Management Servers  R81.10, R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades  Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E86.00 Windows Clients
Release Date  November 1, 2021
Release Home page  For Downloads and Documentation, see sk175945
Release Highlights
  • Adds support for Endpoint Security on Windows Server 10 version 21H2.
Supported OS - Workstations  Microsoft Windows: 7, 8.1.1, 10 (versions 1607, 1709, 1803, 1809, 1903, 1909, 2004, 2009, 2103, 21H2), 11 (version 21H2)
Supported OS - Servers Microsoft Windows Server:  2008 R2, 2012, 2012 R2, 2016, 2019, 2022
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade  From Win7 / Win 8.1.1 / Win10 1709 / Win10 1803 / Win10 1809 / Win10 1903 / Win10 1909 / Win10 2004 / Win10 2009 / Win10 2103 to Win10 21H2 

From Win10 2004 / Win10 2009 / Win10 2103 / Win10 21H2 to Win11 21H2
Supported Management Servers  R81.10, R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades  Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

     Click here to see Endpoint Clients released earlier

Enterprise Endpoint Security E85.40 Windows Clients
Release Date  October 11, 2021
Release Home page  For Downloads and Documentation, see sk175451
Release Highlights
  • Adds support for Endpoint Security on Windows Server 2022 and Windows 11 21H2
  • Endpoint Client Super Node now supports software deployment
  • Added ability to validate the updated certificate on cloud servers
  • Added ability to customize the certificate warning dialog in Remote Access VPN clients
Supported OS  Win7, Win8.1.1, Win10 1607, Win10 1709, Win10 1803, Win10 1809, Win10 1903, Win10 1909, Win10 2004, Win10 2009, Win10 2103, Win11 21H2
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade From Win7 / Win 8.1.1 / Win10 1709 / Win10 1803 / Win10 1809 / Win10 1903 / Win10 1909 / Win10 2004 / Win10 2009 to Win10 2103

From Win10 2004 / Win10 2009 / Win10 2103 to Win11 21H2
Supported Management Servers  R81.10, R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades  Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E85.30 macOS Clients
Release Date  November 16, 2021
Release Home page  For Downloads and Documentation, see sk174663
Release Highlights
  • Introduces Early Availability support for macOS 12 (Monterey).
Supported OS  macOS Catalina (10.15) , macOS 11 (Big Sur) , macOS 12 (Monterey) - EA
Supported Upgrade Paths  E84.70, E84.30, E83.20, E82.50
OS In-place upgrade From macOS 10.15 (Catalina) to macOS 11 (Big Sur)
From macOS 11 (Big Sur) to macOS 12 (Monterey)
Supported Management Servers   R81.10, R81, R80.40, R80.30 and R80.20 Endpoint Security Management Servers, both on-premises and EPMaas solutions.
Supported Blades  Firewall for Desktop security , Anti-Malware ,  Forensics and Anti-Ransomware , Media Encryption , Compliance , Remote Access VPN , Native Encryption Management ,  Capsule Docs , SandBlast Agent Browser Extension for Chrome (Threat Emulation ,
TEX , Zero Phishing , Password reuse , URL Filtering)

Enterprise Endpoint Security E85.30 Windows Clients
Release Date  September 13, 2021
Release Home page  For Downloads and Documentation, see sk174884
Release Highlights
  • Users can now execute PowerShell scripts on client computers using Push operations
  • Static Detection Engines have moved to monitor the access to the file, and not only the creation of the file
  • Behavioral Guard has a new active behavioral security technology that attempts to find zero-day local privilege escalation (LPE) attempts
  • Media Encryption events are now sent to Threat Hunting.
Supported OS  Win7, Win8.1.1, Wine10 1607, Win10 1709, Win10 1803, Win10 1809, Win10 1903, Win10 1909, Win10 2004, Win10 2009, Win10 2103
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade  From Win7 / Win 8.1.1 / Win10 1709 / Win10 1803 / Win10 1809 / Win10 1903 / Win10 1909 / Win10 2004 / Win10 2009 to Win10 2103
Supported Management Servers  R81.10, R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades  Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E85.20 Windows Clients
Release Date  July 26, 2021
Release Home page  For Downloads and Documentation, see sk174345
Release Highlights
  • Introduces many enhancements under various categories.
Supported OS  Win7, Win8.1.1, Win10 1607, Win10 1709, Win10 1803, Win10 1809, Win10 1903, Win10 1909, Win10 2004, Win10 2009, Win10 2103
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade  From Win7/Win 8.1.1/Win10 1709/Win10 1803/Win10 1809/Win10 1903/Win10 1909/Win10 2004/Win10 2009 to Win10 2103
Supported Management Servers  R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades  Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E85.10 Windows Clients
Release Date  June 30, 2021
Release Home page  For Downloads and Documentation, see sk173386
Release Highlights
  • During an upgrade from E85.10, the firewall stays connected
  • Portuguese translations for the Client UI
  • Customers can now execute PowerShell scripts on client machines, using push operations
  • Browser Extension New Capability; Sandblast Agent is now called Harmony Endpoint.
Supported OS  Win7, Win8.1.1, Win10 1607, Win10 1709, Win10 1803, Win10 1809, Win10 1903, Win10 1909, Win10 2004, Win10 2009, Win10 2103
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade  From Win7/Win 8.1.1/Win10 1709/Win10 1803/Win10 1809/Win10 1903/Win10 1909/Win10 2004/Win10 2009 to Win10 2103
Supported Management Servers  R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades  Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E85.00 Windows Clients
Release Date  May 18, 2021
Release Home page  For Downloads and Documentation, see sk173504
Release Highlights
  • Adds support for Endpoint Security on Windows 10 21H1 (version 2103)
  • Introduces enhancements under Anti-Ransomware, Behavioral Guard and Forensics.
Supported OS  Win7, Win8.1.1, Win10 1607, Win10 1709, Win10 1803, Win10 1809, Win10 1903, Win10 1909, Win10 2004, Win10 2009, Win10 2103
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade  From Win7/Win 8.1.1/Win10 1709/Win10 1803/Win10 1809/Win10 1903/Win10 1909/Win10 2004/Win10 2009 to Win10 2103
Supported Management Servers  R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades  Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E84.71 Windows Clients
Release Date  May 10, 2021
Release Home page  For Downloads and Documentation, see sk173408
Release Highlights
  • Introduces a hotfix on top of E84.70 in addition to all the E84.70 contents. In this release, the PPL processes for Windows Security Center: Anti-Malware, Firewall and Threat Emulation were signed with a new cross-signed certificate. The new signature preempts the possibility that a future KB release of Microsoft Windows will block the Check Point PPL processes. This fixes an issue that only exists in E84.70.
Supported OS  Win7, Win8.1.1, Win10 1709, Win10 1803, Win10 1809, Win 10 1903, Win 10 1909, Win 10 2004, Win 10 2009
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade  From Win7/Win 8.1.1/Win10 1709/Win10 1803/Win10 1809/Win10 1903/Win10 1909/Win10 2004 to Win10 2009
Supported Management Servers  R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades  Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E84.70 macOS Clients
Release Date  June 8, 2021
Release Home page  For Downloads and Documentation, see sk172941
Release Highlights
  • Provides support for Macs with Apple M1 chip using Rosetta 2 translator, Firefox and Safari extension URL-Filtering, Self-Protection and more.
Supported OS  Big Sur (11) , macOS Catalina (10.15) , macOS Mojave (10.14)
Supported Upgrade Paths  E84.30 , E83.20 , E82.50
OS In-place upgrade  From Catalina (10.15) , macOS Mojave (10.14)
Supported Management Servers  R81, R80.40, R80.30 and R80.20 Endpoint Security Management Servers, both on-premises and EPMaas solutions.
Supported Blades  Firewall for Desktop security , Anti-Malware ,  Forensics and Anti-Ransomware , Media Encryption , Compliance , Remote Access VPN , Native Encryption Management ,  Capsule Docs , SandBlast Agent Browser Extension for Chrome (Threat Emulation ,
TEX , Zero Phishing , Password reuse , URL Filtering)

Enterprise Endpoint Security E84.70 Windows Clients
Release Date  April 25, 2021
Release Home page  For Downloads and Documentation, see sk172938
Release Highlights
  • Connect to a VPN gateway via a hotspot, while restricting internet access from other applications
  • VPN support for the Security Assertion Markup Language (SAML) protocol in user authentications
  • Management Servers can now limit registration to clients which have unique time-limited tokens
Supported OS  Win7, Win8.1.1, Win10 1709, Win10 1803, Win10 1809, Win 10 1903, Win 10 1909, Win 10 2004, Win 10 2009
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade  From Win7/Win 8.1.1/Win10 1709/Win10 1803/Win10 1809/Win10 1903/Win10 1909/Win10 2004 to Win10 2009
Supported Management Servers  R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades  Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E84.60 Windows Clients
Release Date  March 15, 2021
Release Home page  For Downloads and Documentation, see sk172325
Release Highlights
  • Process terminations with Endpoint's Push Operation
  • "Super Nodes" where clients share Anti-Malware signatures for less external network use
  • Several new features in Anti-Ransomware, Behavioral Guard and Forensics
Supported OS  Win7, Win8.1.1, Win10 1709, Win10 1803, Win10 1809, Win10 1903, Win10 1909, Win10 2004, Win10 2009
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade  From Win7/Win 8.1.1/Win10 1709/Win10 1803/Win10 1809/Win10 1903/Win10 1909/Win10 2004 to Win10 2009
Supported Management Servers  R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades  Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E84.50 Windows Clients
Release Date  February 21, 2021
Release Home page  For Downloads and Documentation, see sk171920
Release Highlights
  • Enhancements in Anti-Ransomware, Full Disk Encryption and Installer.
Supported OS  Win7, Win8.1.1, Win10 1709, Win10 1803, Win10 1809, Win10 1903, Win10 1909, Win10 2004, Win10 2009
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade  From Win7/Win 8.1.1/Win10 1709/Win10 1803/Win10 1809/Win10 1903/Win10 1909/Win10 2004 to Win10 2009
Supported Management Servers  R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades  Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E84.40 Windows Clients
Release Date  January 31, 2021
Release Home page  For Downloads and Documentation, see sk171419
Release Highlights
  • Introduces a new technique in Anti-Ransomware that significantly improves the time to detection of many ransomware families.
  • Adds 8 sensors in Threat Hunting and Forensics. 
Supported OS  Win7, Win8.1.1, Win10 1709, Win10 1803, Win10 1809, Win10 1903, Win10 1909, Win10 2004, Win10 2009
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade  From Win7/Win 8.1.1/Win10 1709/Win10 1803/Win10 1809/Win10 1903/Win10 1909/Win10 2004 to Win10 2009
Supported Management Servers  R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades  Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E84.30 Windows Clients
Release Date  December 21, 2020
Release Home page  For Downloads and Documentation, see sk170892
Release Highlights
  • Adds a new sensor to monitor WMI-Get requests
  • Adds the option to uninstall the Endpoint Security Client with a Push Operation from the Management Server
  • VPN can now display a warning message with custom text prior to a VPN connection.
Supported OS  Win7, Win8.1.1, Win10 1709, Win10 1803, Win10 1809, Win10 1903, Win10 1909, Win10 2004, Win10 2009
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade  From Win7/Win 8.1.1/Win10 1709/Win10 1803/Win10 1809/Win10 1903/Win10 1909/Win10 2004 to Win10 2009
Supported Management Servers  R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades  Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E84.30 macOS Clients
Release Date  January 14, 2021 (General Availability)
Release Home page  For Downloads and Documentation, see sk170513
Release Highlights
  • Provides support for the Endpoint Security Clients on macOS Big Sur (11) and adds Machine Authentication for the VPN client.
  • Adds a post-connect message for the VPN client. It allows to display a message to the end user upon every VPN connection.
Supported OS  Big Sur (11) , macOS Catalina (10.15) , macOS Mojave (10.14)
Supported Upgrade Paths  E83.20 , E82.50 , E82.00
OS In-place upgrade  From Catalina (10.15) , macOS Mojave (10.14)
Supported Management Servers  R81, R80.40, R80.30 and R80.20 Endpoint Security Management Servers, both on-premises and EPMaas solutions.
Supported Blades  Anti-Malware , Remote Access VPN , Firewall for Desktop security , Compliance , Media Encryption , Native Encryption Management , Threat Emulation , Forensics and Anti-Ransomware , Capsule Docs , SandBlast Agent Browser Extension for Chrome (Threat Emulation, TEX , Zero Phishing , Password reuse , URL Filtering)

Enterprise Endpoint Security E84.20 Windows Clients
Release Date  November 24, 2020
Release Home page  For Downloads and Documentation, see sk170512
Release Highlights
  • Remote Installation of Initial Client, Citrix VDI (Virtual Desktop Infrastructure)
  • New "Isolated" mode that isolates the computer from the outside world
  • Adds an option to switch the language of the VPN standalone client user interface to the Windows locale.
Supported OS  Win7, Win8.1.1, Win10 1709, Win10 1803, Win10 1809, Win10 1903, Win10 1909, Win10 2004, Win10 2009
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade  From Win7/Win 8.1.1/Win10 1709/Win10 1803/Win10 1809/Win10 1903/Win10 1909/Win10 2004 to Win10 2009
Supported Management Servers  R81, R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades  Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E84.10 Windows Clients
Release Date  October 31, 2020
Release Home page  For Downloads and Documentation, see sk170117
Release Highlights
  • Threat Hunting - an investigative tool to collect all events from Endpoints that provides Security administrators with multiple manual remediation options such as Quarantine, KillProcess and Forensics Analysis with remediation.
  • Anti-Malware can download signatures from an authenticated NTLM proxy with a logged in user's credentials and can also work in "Detect only" mode. 
Supported OS  Win7, Win8.1.1, Win10 1709, Win10 1803, Win10 1809, Win10 1903, Win10 1909, Win10 2004, Win10 2009
Supported Upgrade Paths  E81.00 and higher
OS In-place upgrade  From Win7/Win 8.1.1/Win10 1709/Win10 1803/Win10 1809/Win10 1903/Win10 1909/Win10 2004 to Win10 2009
Supported Management Servers  R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades  Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

Enterprise Endpoint Security E84.00 Windows Clients
Release Date  October 25, 2020
Release Home page  For Downloads and Documentation, see sk169852
Release Highlights
  • Adds support for Endpoint Security on Windows 10 20H2 (version 2009).
Supported OS  Win7, Win8.1.1, Win10 1709, Win10 1803, Win10 1809, Win10 1903, Win10 1909, Win10 2004, Win10 2009
Supported Upgrade Paths  E80.64 and higher
OS In-place upgrade  From Win7/Win 8.1.1/Win10 1709/Win10 1803/Win10 1809/Win10 1903/Win10 1909/Win10 2004 to Win10 2009
Supported Management Servers  R80.40, R80.30, R80.20, R80.20.M2, R80.10
Supported Blades  Desktop Firewall and Application Control , Anti-Malware , Forensics and Anti-Ransomware , URL Filtering , Anti-Bot , 
Threat Emulation & Anti-Exploit , Media Encryption and Port Protection , Full Disk Encryption , Compliance , Remote Access VPN (SA/Managed) , Capsule Docs (SA/Managed)

For Endpoint Security Client Legacy Releases, refer to sk171496 - Endpoint Security Client Legacy Releases (Detailed Information per Release).



Harmony Endpoint for Linux

Main key features:

  • Endpoint Protection for many Linux distributions, including Ubuntu, Debian, RHEL, CentOS, Oracle Linux, Amazon Linux, and more. 
  • Contains both static and dynamic engines such as Anti-Malware and Behavioral Guard for providing a high level of security for your Linux clients and servers. 
  • Integrated with Endpoint Detection and Response (EDR) and Threat Hunting for easy searching of threats and various investigations capabilities.
  • Automatically updated for up-to-date protection against the latest attacks in the wild.
  • Low footprint and good performance, optimized for both Linux clients and Linux servers.

For more information, refer to Harmony Endpoint for Linux



Management Releases

Check Point Recommended version for all deployments is R81.10 Take 335 with its Recommended Jumbo Hotfix Accumulator Take. 

R81.20 - Released in November 2022
Latest

R81.10 - Released in July 2021
Recommended

Documentation

Documentation

R81.20 Release Notes Endpoint Security R81.20 Administration Guide R81.20 Endpoint Security Web Management Administration Guide R81.10 Release Notes Endpoint Security R81.10 Administration Guide R81.10 Endpoint Security Web Management Administration Guide

Downloads

Downloads

SmartConsole Management Server   SmartConsole Management Server
It is also required to download the latest General Availability Take of the R81.10 Jumbo Hotfix Accumulator



Cloud & Web Management for Harmony Endpoint

Main key features:

  • Hosted on Amazon Web Services (AWS), secured by Check Point.
  • Use the Harmony Endpoint Management Platform, to manage your Threat Prevention capabilities. 
  • Low latency by using USA or Europe AWS regions. 
  • Simple, easy and quick creation of a new tenant management environment. 
  • No installations and no pre-requisite required, everything is accessible through your browser.
  • Fully managed service by Check Point, removes the overhead of managing and maintaining the management server. 

Register at: https://portal.checkpoint.com/

For more information, refer to:


    Architecture and Getting Started


  • Clients communicate with the Management Server over HTTP/HTTPs.
  • The Endpoint Management architecture works in a "star" scheme to support large-scale environments.
  • The central "brain" of the system is the "Management Server" and the delegate servers are named "Policy Servers".
  • Each Management Server can support a maximum of ~10,000 endpoints. Multiple Policy Servers can be chained to support a management of up to 400,000 devices from a single environment.
  • The environment supports unified log reporting through SmartLog.


   Best Practices



   Client OS Support

Check Point Endpoint Security clients protect all of your Windows and Mac workstations, including laptops, Desktops, and Windows Servers.

Check Point takes part in various OS manufactures' development processes and we start the support of new versions when vendors release development builds.

We are committed to offer early availability clients within 3 weeks of OS GA and to announce GA within 2 months of OS GA, however in practice we are delivering much faster. See sk115192 for OS support timeline.



   Server Releases Information

Check Point R81.20 - What’s New for Endpoint Management:

Endpoint Policy Management

  • Use Single Sign-On to connect to the Endpoint Web Management Console.

Harmony Endpoint Web UI

  • IoC Management - Users can now add Indicators of Compromise to their Endpoint Policy Management.
  • Connection Awareness - Allows administrators to configure their own entity to determine the connectivity of the clients, and change a device's policy type from "Connected" to "Disconnected", and vice-versa accordingly.

Remote Access VPN

  • Exclude SaaS applications (such as Office 365) from the Remote Access VPN tunnel.
  • Use SAML 2.0 to authenticate Remote Access VPN users with an Identity Provider.

Check Point R81.10 - What’s New for Endpoint Management:
  • Media Encryption & Port Protection policy
  • Firewall policy
  • Application Control policy
  • Developer protection policy
  • Push Operation for Host Isolation and Client Uninstall


Check Point R81 - What’s New for Endpoint Management:
  • SandBlast Agent Web Management - A new Web-based management interface for Endpoint Threat Prevention components.
    Note: For the best user experience it is recommended to use SandBlast Agent Web Management with Google Chrome.
  • Communication with management services remains on port 443, instead of port 4434, when the Endpoint Management component is activated.
  • Anti-Malware support for shared signature locations to support non-persistent VDI environments.
  • Manage URL Filtering capabilities of SandBlast Agent Browser Extension.
  • Application Control policy changes - Support multiple versions per product, terminate application and block WSL. (Windows Subsystem for Linux).
  • New set of Developer Protections for developers computers.
  • Compliance integration with Windows Server Update Services (WSUS).
  • TACACS authentication for Web Remote Help (WebRH).
  • Media Encryption & Port Protection - Import device overrides from a file.


Note
: These R8x Servers (running Gaia OS) can manage both Gateway and Endpoints.

Server version GA Date Latest Revision Date Supported Upgrade Paths Supported Client Versions
R81.10 6-Jul-2021 CPUSE & Advanced:

R80.20 , R80.30 , R80.40 , R81

E80.64 Win and higher
E80.64 Mac and higher
R81 21-Oct-2020 27-Dec-2020 CPUSE & Advanced:

R80.20 , R80.30 , R80.40

E80.64 Win and higher 
E80.64 Mac , E80.89 Mac , E82.00 Mac
R80.40 28-Jan-2020 28-Jan-2020 CPUSE & Advanced:

R77.30.x , R80.10 , R80.20 , R80.30

E80.64 Win and higher 
E80.64 Mac , E80.89 Mac , E82.00 Mac
R80.30 07-May-2019 14-May-2019 CPUSE & Advanced:

R77.30.x , R80.10 , R80.20

E80.64 Win and higher 
E80.64 Mac , E80.89 Mac , E82.00 Mac 
R80.20 26-Sep-2018 26-Sep-2018 CPUSE & Advanced:

R77.30.x , R80.10

E80.64 Win and higher
E80.64 Mac , E80.89 Mac , E82.00 Mac 

For Endpoint Security Server Legacy Releases, refer to sk171583 - Endpoint Security Server Legacy Releases (Detailed Information per Release).



   Relevant SK articles

For more information on Check Point releases, see: Release map, Upgrade and Backward Compatibility maps, Releases Terminology, Support Life Cycle Policy.

For more information on Enterprise Endpoint Security, see:


For more information on Enterprise Endpoint Security MacOS client, see:


For more information on Harmony Endpoint on Enterprise Endpoint Security, see:

You can also visit our Endpoint forum, Remote Access forum, or any other CHECKMATES forum to ask questions and get answers from technical peers and Support experts.

 


Revision History

Show / Hide this section
Date Description
28 Mar 2023 Added information about E87.30 macOS
28 Mar 2023 Added information about E87.01 macOS
08 Mar 2023 Added information about E87.20 Windows and macOS
14 Feb 2023 Added information about E87.10 macOS
25 Jan 2023 Added information about E87.10 Windows
14 Dec 2022 Added information about E87.00 Windows and macOS
17 Nov 2022 Added information about E86.80 macOS
8 Nov 2022 Added information about E86.80 Windows
02 Oct 2022 Added information about E86.70 Windows and macOS
13 Sep 2022 Added information about E86.51 Windows
10 Aug 2022 Added information about E86.60 Windows and macOS
21 Jun 2022 Added information about E86.50 Windows and macOS
08 May 2022 Added information about E86.40 Windows and macOS
18 Apr 2022 Added information about E86.26
10 Apr 2022 Added information about E86.30
02 Mar 2022 Added information about E86.25
28 Dec 2021 Added information about E86.20
07 Dec 2021 Added information about E86.10
29 Nov 2021 Added information about E86.01
21 Nov 2021 Added information about E85.30 macOS
01 Nov 2021 Added information about E86.00

Give us Feedback
Please rate this document
[1=Worst,5=Best]
Comment