BitLocker Management Check Point Endpoint Security E82.00 Client introduces BitLocker Management as an option in the Full Disk Encryption Blade. BitLocker is an integrated part of Windows. The Check Point BitLocker Management feature uses the Endpoint Security Server, Client Agent and Management UI to manage BitLocker. BitLocker Management is Windows 10 only. See the BitLocker Management Administration Guide.
New Detection Techniques
Meterpreter / Reverse Shell Detection Behavioral Guard now supports enhanced behavioral detections of reverse shells. This detection is currently in silent and will be turned on via a remote update at a later stage.
RDP Brute Force Detections Behavioral Guard now supports RDP Brute Force detections. This detection is currently in silent and will be turned on via a remote update at a later stage.
Starting from E80.85, SandBlast Agent improves coverage of malicious threats by sending anonymized Incident related data to the Check Point Threat Cloud. This feature is turned on by default. For more information, including how to disable this feature, refer to sk129753.
To support SmartLog or SmartView Tracker reporting with Endpoint Security Clients for all supported servers (except R80.20), you must update the log schema. Follow instructions in sk106662.
Endpoint Security E82.00 Clients
E82.00 Endpoint Security Clients for Windows OS (Recommended)
A zip file that contains all package permutations listed below.
E82.00 Complete Endpoint Security Client for 32 bit systems
Note: These Standalone clients do not require Endpoint Security Server installation as part of their deployment.
Known issue: The below Standalone Clients VPN packages have a small cosmetic issue. The version shows in the Help About screen is VPN E81.40 instead of VPN E82.00. The version of the software itself is OK (E82.00).
You can use the below installation, or if preferred, you can contact Check Point Support to get an updated version with the fix in the Help About screen.
E82.00 Standalone Clients
E82.00 Remote Access Clients for Windows
Remote Access VPN Client for SmartDashboard-managed clients
Machines using Self Encrypting Drives (Opal) hardware encryption cannot switch to BitLocker using the BitLocker policy option.
A machine with BitLocker enabled, by default, is not a supported scenario in Check Point Full Disk Encryption. If BitLocker is enabled, by default, it must be turned off, before you install FDE with a Check Point Full Disk Encryption Policy in effect.
Note: If you install FDE with a BitLocker management policy, this limitation does not apply.
Documentation and Related SecureKnowledge Articles