On macOS 10.15 Catalina, Full Disk Access has to be approved for several blades to work properly, including Media Encryption, VPN, Threat Emulation, Anti-Ransomware and Forensics. macOS does not provide any notifications about this automatically, so Endpoint Security presents a UserCheck message, as a guide for which application to grant FDA access, and a button to open the System Preferences.
Post-upgrade from the E80.89 release, there are no historic AR/TE events shown in the UI.
If nodeJS is installed on the Mac, build directories should be excluded in SBA policy (AR/EFR and TE) to improve performance.
If the default name of the compliance rule for checking if assigned blades are running is changed, i.e. cloned or edited, this rule will not be applied to the macOS compliance blade. Then, on the server side there will be no compliance reporting (inform, warn, restrict). Client will also not go into the assumed compliance state.
In some rare cases during the upgrade of VPN client from previous version, user may experience temporary inability to connect to VPN site. Delay may be from seconds to several minutes. To address this issue user should perform reboot of operating system.
Documentation and Related SecureKnowledge Articles
Second release of Check Point Endpoint Security Client for macOS (without Capsule Docs and SandBlast Agent) package. Issued due to bug and security fix. It is recommended to upgrade to this version.
08 Dec 2019
Release of Check Point Endpoint Security Client for macOS package including support for the following SBA blades functionality: SandBlast Agent Forensics (new for macOS), Threat Emulation and Anti-Ransomware.
21 Jan 2020
GA release of this document.
Give us Feedback
Thanks for your feedback!
Are you sure you want to rate this stars?