Support Center > Search Results > SecureKnowledge Details
Enterprise Endpoint Security E80.81 Windows Clients
Solution

Table of Contents:

  • In a Nutshell
  • What's New in E80.81
  • Endpoint Security Server Downloads
  • Management Console Downloads
  • Endpoint Security Clients Downloads
  • Standalone Clients Downloads
  • Utilities/Services Downloads
  • Known Limitations
  • Resolved Issues
  • Documentation and Related SecureKnowledge Articles
  • Revision History

Notes:

Click Here to Show the Entire Article

In a Nutshell

Item Description Link
Server Package 1 R77.30 Jumbo Hotfix for Endpoint Security Server (TGZ)
Server Package 2 R77.30.03 Endpoint Security Server Package for Gaia OS (TGZ)
Console SmartConsole for Endpoint Security Server R77.30.03 / E80.81
(EXE)
Managed Client E80.81 Endpoint Security Clients for Windows OS
(ZIP)
VPN Standalone Client

E80.81 Remote Access Clients for Windows

(MSI)
Capsule Docs E80.81 Capsule Docs Standalone Client
(EXE)
Documentation E80.81 Endpoint Security Client for Windows Release Notes  
R77.30.03 Endpoint Security Management Administration Guide  

What's New in E80.81

Show / Hide this section
This release supports all Software Blades and features of previous releases.  

New Features

  • Full Disk Encryption - Support for NVMe-based Opal Self Encrypting Drives.
  • Anti-Exploit - ROP exploit protection for the Firefox browser.

Enhancements

  • Anti-Bot
    • Improved triggering of the forensics report when the URL contains specific characters.
  • Anti-Ransomware
    • Optimization of the size of the backup database.
    • Reduced the number of false positives by improving the handling of the exclusions policy.
    • Invalid paths are removed from the exclusions policy.
    • Honeypot files are deleted after the client is upgraded.
  • Anti-Exploit
    • Improved interoperability with Capsule Docs.
    • Improved compatibility with third-party Microsoft Office add-ins.
  • SandBlast Agent for Browsers - Web Extension
    • Improved handling of policy settings that are updated through the Windows registry.

Endpoint Security Server Downloads

Show / Hide this section

Note: In order to download some of the packages you will need to have a Software Subscription or Active Support plan.

The packages provided below are Legacy CLI packages (not CPUSE packages).
 

Clean installation and In-Place Upgrade

  • Before installing the hotfixes, you need R77.30 to be installed and to update CPUSE (sk92449) to the latest build.
  • You must install the R77.30 Jumbo Hotfix for Endpoint Security Server before you install the Endpoint Security Server Package for Gaia OS.
Order of Installation Package Link
1 R77.30 Jumbo Hotfix for Endpoint Security Server (TGZ)
2 R77.30.03 Endpoint Security Server Package for Gaia OS (TGZ)

Management Console Downloads

Show / Hide this section

Management Console for Endpoint Security Server

The SmartConsole for Endpoint Security Server allows the Administrator to connect to the Endpoint Security Server and to manage the new Endpoint Security Software Blades.

Latest Version (R77.30.03)

Endpoint Security Server Package Link
R77.30.03 SmartConsole for Endpoint Security Server R77.30.03 / E80.81 (EXE)

Previous Versions

Endpoint Security Server Package Link
R77.30 SmartConsole for Endpoint Security Server R77.30 / E80.81 (EXE)
R80.10 SmartConsole for Endpoint Security Server R80.10 / E80.81 (EXE)
R77.30 EP6.5 SmartConsole for Endpoint Security Server R77.30 EP6.5 / E80.81 (EXE)
R77.20 EP6.2  SmartConsole for Endpoint Security Server R77.20 EP6.2 / E80.81
(EXE)

Endpoint Security Clients Downloads

Show / Hide this section

Endpoint Security E80.81 Clients

Platform Package Description Link
Windows E80.81 Endpoint Security Clients for Windows OS (Recommended) A zip file that contains all package permutations listed below. (ZIP)
E80.81 Complete Endpoint Security Client for 32 bit systems
A package for 32bit devices that includes Endpoint Complete package:
  • Desktop FW and Application Control
  • Anti-Malware
  • Forensics and Anti-Ransomware
  • URL Filtering
  • Anti-Bot
  • Threat Emulation
  • Media Encryption and Port Protection
  • Full Disk Encryption
  • Compliance
  • Remote Access VPN
  • Capsule Docs 
(ZIP)
E80.81 Complete Endpoint Security Client for 64 bit systems
A package for 64bit devices that includes Endpoint Complete package:
  • Desktop FW and Application Control
  • Anti-Malware
  • Forensics and Anti-Ransomware
  • URL Filtering
  • Anti-Bot
  • Threat Emulation
  • Media Encryption and Port Protection
  • Full Disk Encryption
  • Compliance
  • Remote Access VPN
  • Capsule Docs 
 (ZIP)
E80.81 Complete Endpoint Security Client without Anti-Malware for 32 bit systems
A package for 32bit devices that includes Endpoint Complete package with the exception of Anti-Malware:
  • Desktop FW and Application Control
  • Forensics and Anti-Ransomware
  • URL Filtering
  • Anti-Bot
  • Threat Emulation
  • Media Encryption and Port Protection
  • Full Disk Encryption
  • Compliance
  • Remote Access VPN
  • Capsule Docs 
(ZIP)
E80.81 Complete Endpoint Security Client without Anti-Malware for 64 bit systems
A package for 64bit devices that includes Endpoint Complete package with the exception of Anti-Malware:
  • Desktop FW and Application Control
  • Forensics and Anti-Ransomware
  • URL Filtering
  • Anti-Bot
  • Threat Emulation
  • Media Encryption and Port Protection
  • Full Disk Encryption
  • Compliance
  • Remote Access VPN
  • Capsule Docs 
 (ZIP)
E80.81 SandBlast Agent Client for 32 bit systems
SandBlast Agent package for 32bit devices:
  • Forensics and Anti-Ransomware
  • Anti-Bot
  • Threat Emulation
(ZIP)
E80.81 SandBlast Agent Client for 64 bit systems
SandBlast Agent package for 64bit devices:
  • Forensics and Anti-Ransomware
  • Anti-Bot
  • Threat Emulation
 (ZIP)
E80.81 Full Disk Encryption and Media Encryption and Port Protection client for 32 bit systems Full Disk Encryption and Media Encryption and Port Protection package for 32 bit systems
 (ZIP)
E80.81 Full Disk Encryption and Media Encryption and Port Protection client for 64 bit systems Full Disk Encryption and Media Encryption and Port Protection package for 64 bit systems 
 (ZIP)
E80.81 Initial client Initial client is a very thin client without any blade used for software deployment purposes. (ZIP)

Standalone Clients Downloads

Show / Hide this section
Note: These Standalone clients do not require Endpoint Security Server installation as part of their deployment.

E80.81 Standalone Clients

Platform Package Description Link
Windows E80.81 Remote Access Clients for Windows Remote Access VPN Client for SmartDashboard-managed clients (MSI)
E80.81 Remote Access VPN Clients - Automatic Upgrade file Remote Access VPN Client for automatic upgrade through the gateway. For SmartDashboard-managed clients only. (CAB)
E80.81 Remote Access VPN Clients for ATM Unattended Remote Access VPN clients, managed with CLI and API and do not have a User interface. (MSI)
E80.81 Remote Access VPN Clients for ATM - Automatic Upgrade file Unattended Remote Access VPN clients, managed with CLI and API and do not have a User interface for automatic upgrade through the gateway. For SmartDashboard-managed clients only. (CAB)
E80.81 Capsule Docs Standalone Client Capsule Docs package for environments that are managed by Capsule Docs Cloud Service.
(EXE)
Capsule Docs PC Viewer Check Point Capsule Docs Viewer is a stand-alone client that lets you view documents that were protected through Capsule Docs. Get from: Capsule Docs Portal

Utilities/Services Downloads

Show / Hide this section
Utilities

Platform Package Description Link
Windows SandBlast Agent Remediation Manager for Administrators

The administrator utility contains the capabilities of the end-user utility plus these additional features:

  • Quarantine - Send files to quarantine. 
  • Delete - Use the SandBlast Agent remediation service to delete a file. 
  • Import - Import a quarantined file from a different computer or location. Get the administrator utility from the release homepage
(EXE)
Capsule Docs Bulk Protection Services for Windows-based Servers and Workstations Capsule Docs Bulk Protection lets you manage file protection settings based on file locations and properties.  (EXE)
R77.30 DLP Gateway HF for Content-aware Capsule Docs protection (Mail attachments / Network locations)   (TGZ)

For more information about Capsule Docs Bulk Protection, refer to Capsule Docs Bulk Protection Services Reference Guide.

Advanced Upgrade Tools

Platform Package Link
Gaia R77.30.03 Management Server Migration Tools for Gaia (TGZ)
Windows R77.30.03 Management Server Migration Tools for Windows (TGZ)

Full Disk Encryption Offline Management Tool

Platform Package Description Link
Windows
Full Disk Encryption Offline Management Tool The Endpoint Offline Management Tool lets administrators manage offline mode users and give them password recovery and disk recovery. (TGZ)
Windows Full Disk Encryption Offline Management Tool (Japanese) The Endpoint Offline Management Tool lets administrators manage offline mode users and give them password recovery and disk recovery.
(TGZ)

Known Limitations

Show / Hide this section
ID Description
Full Disk Encryption
EPS-9587  NVMe systems with Samsung Opal Self Encrypting Drives with names starting with MZVLW and firmware version 4L7QCXB7 cannot use the Opal Self Encrypting Drives (SED) functionality. Systems with these disks cause Full Disk Encryption (FDE) to automatically revert to Software Encryption because of incompatibilities in the disk firmware.
Remote Access VPN
ESVPN-363
Starting E80.8x, the Remote Access VPN client is not supported on a computer with the end-of-life Check Point Full Disk Encryption standalone client (R7.x or FDE 7.x). Installing or upgrading the Remote Access VPN Client on a computer with the Full Disk Encryption standalone client may cause the computer to become non-functional.
Forensics
AHTP-5893
The Forensics blade does not analyze malware events from Windows Defender in Windows 10.

Resolved Issues

Show / Hide this section
ID Description
Media Encryption
EPS-13400

CD and DVD media that are encrypted with Media Encryption do not show the encrypted volume.

SandBlast Agent Anti-Exploit
AHTP-3316

If Check Point Capsule Docs is installed, the Anti-Exploit blade does not detect or protect against ROP exploits aimed at Microsoft Office applications. 

AHTP-3045 The Anti-Exploit blade does not detect or protect against Return-oriented programming (ROP) exploits on the Firefox browser. 

Documentation and Related SecureKnowledge Articles

Show / Hide this section
Document
Endpoint Security Server
R77.30.03 Management Endpoint Security Release Notes 
R77.30.03 Endpoint Security Management Administration Guide
Endpoint Security Clients
E80.72 and higher Endpoint Security Client for Windows User Guide
E80.81 Endpoint Security Client for Windows Release Notes
Remote Access VPN Clients
E80.81 Remote Access Clients for Windows Release Notes
E80.72 and higher Remote Access Clients for Windows Administration Guide
Capsule Docs Client
E80.72 and higher Capsule Docs Plugin User Guide
Check Point Capsule Docs Viewer User Guide: Get from: Capsule Docs Portal
Capsule Docs Bulk Protection Services
Capsule Docs Bulk Protection Guide

Revision History

Show / Hide this section
Date Description
18 Mar 2018 Endpoint Security Client GA build was replaced on March 18 with a fix for a rare MS-Office/Chrome crash, caused by the Anti-Exploit blade. In addition to the fix, Anti-Exploit is disabled by default in this version. Customers who installed the original GA version before 18/3 may encounter (on rare occasions) crashes in Anti-Exploit protected applications like Chrome or OneNote, if launched right after reboot. Customers can enable/disable Anti-Exploit by following the procedure published in sk121793.
07 Mar 2018 First release of this document.

Give us Feedback
Please rate this document
[1=Worst,5=Best]
Comment