Support Center > Search Results > SecureKnowledge Details
Enterprise Endpoint Security E82.00 Windows Clients Technical Level
Solution

Table of Contents:

  • In a Nutshell
  • What's New in E82.00
  • Endpoint Security Clients Downloads
  • Standalone Clients Downloads
  • Endpoint Security Server Downloads
  • Management Console Downloads
  • Utilities/Services Downloads
  • Known Limitations
  • Documentation and Related SecureKnowledge Articles
  • Revision History

 Endpoint Security Homepage is now available.

Notes:

  • To support SmartLog or SmartView Tracker reporting with Endpoint Security Clients for all supported servers (except R80.20 and higher), you must update the log schema. Follow instructions in sk106662.
  • Starting in E80.85, anonymized incident related data is sent to Check Point ThreatCloud, by default. To learn more see sk129753.
  • Important: Download SmartConsole with the E80.92 client to avoid "signature verification failed" messages when uploading the client to the SmartConsole.
  • The relevant links to downloads are located in the relevant section, i.e., Endpoint Security Server, Management Console, Endpoint Security Clients, Standalone Clients, Utilities/Services.
  • The relevant links to documentation are located in the "Documentation" section.
  • It is strongly recommended that you read the E82.00 Endpoint Security Client Release Notes, before installing this release.
  • This release includes all limitations of earlier releases unless explicitly shown as resolved.
  • For E80.89 releases for Mac: Refer to sk131152 - Enterprise Endpoint Security E80.89 Mac Clients.
Click Here to Show the Entire Article

In a Nutshell

Item Description Link
Managed Client E82.00 Endpoint Security Clients for Windows OS (ZIP)
VPN Standalone Client

E82.00 Remote Access Clients for Windows

 (MSI)
Capsule Docs E81.40 Capsule Docs Standalone Client (EXE)
Documentation E82.00 Endpoint Security Client for Windows Release Notes  

What's New in E82.00

Show / Hide this section

New Features

  • BitLocker Management
    Check Point Endpoint Security E82.00 Client introduces BitLocker Management as an option in the Full Disk Encryption Blade.
    BitLocker is an integrated part of Windows. The Check Point BitLocker Management feature uses the Endpoint Security Server, Client Agent and Management UI to manage BitLocker. BitLocker Management is Windows 10 only. See the BitLocker Management Administration Guide.
  • New Detection Techniques
    • Meterpreter / Reverse Shell Detection
      Behavioral Guard now supports enhanced behavioral detections of reverse shells. This detection is currently in silent and will be turned on via a remote update at a later stage.
    • RDP Brute Force Detections
      Behavioral Guard now supports RDP Brute Force detections. This detection is currently in silent and will be turned on via a remote update at a later stage.
  • VPN's Post Disconnect Feature
    The post disconnect script feature allows users to run scripts on client computers after disconnections from gateways. See the Revision History of the Remote Access for Windows Administration Guide.

Enhancements 

  • Anti-Ransomware, Behavioral Guard and Forensics
    • Fixes a rare issue which causes Forensics to crash if there is corruption in the backup and restoration database.
    • Fixes an issue that results in the entire Forensics database being purged when the database size limit is reached.
    • Fixes an issue where Privilege Escalation is not determined for the start process in the Forensics Report.
    • Fixes an issue where the Bypass User Account Control Mitre ATT&CK technique is not determined accurately.
  • Firewall and Application Control
    • Fixes a rare issue where Firewall blade is not running after an upgrade.
    • Fixes a rare issue where arbitrary processes are suspended.
  • Capsule Docs
    • Enforcements to prevent screen captures are not implemented now because there are no practical needs for them.
  • Media Encryption and Port Protection
    • Resolves the "Unrecognized scan log format" message when scanning a removable media with McAfee 8.8 on the Japanese OS version.
    • Fixes a localization issue of Japanese text in the Offline Access tool.
  • Installation
    • Fixes the rejected client msi import in MS AD GPO deployment.
    • Informs the user to reboot the machine after Windows 10 OS upgrade from builds below 18000 instead of forcing the reboot. 
  • General
    • Automatically initiates client registration renewal with the server, if a new SID was assigned to the client machine.
    • Fixes a rare issue where the cpda process crashes. 
    • Fixes a rare issue where the client's connection status is incorrectly displayed as "connected". 

        Endpoint Security Clients Downloads

        Show / Hide this section
        Important:
          • Starting from E80.85, SandBlast Agent improves coverage of malicious threats by sending anonymized Incident related data to the Check Point Threat Cloud. This feature is turned on by default. For more information, including how to disable this feature, refer to sk129753.

        • To support SmartLog or SmartView Tracker reporting with Endpoint Security Clients for all supported servers (except R80.20), you must update the log schema. Follow instructions in sk106662.

        Endpoint Security E82.00 Clients

        Platform Package Description Link
        Windows E82.00 Endpoint Security Clients for Windows OS (Recommended) A zip file that contains all package permutations listed below. (ZIP)
        E82.00 Complete Endpoint Security Client for 32 bit systems
        A package for 32bit devices that includes Endpoint Complete package:
        • Desktop FW and Application Control
        • Anti-Malware
        • Forensics and Anti-Ransomware
        • URL Filtering
        • Anti-Bot
        • Threat Emulation
        • Media Encryption and Port Protection
        • Full Disk Encryption
        • Compliance
        • Remote Access VPN
        • Capsule Docs 
        		 (ZIP)
        E82.00 Complete Endpoint Security Client for 64 bit systems
        A package for 64bit devices that includes Endpoint Complete package:
        • Desktop FW and Application Control
        • Anti-Malware
        • Forensics and Anti-Ransomware
        • URL Filtering
        • Anti-Bot
        • Threat Emulation
        • Media Encryption and Port Protection
        • Full Disk Encryption
        • Compliance
        • Remote Access VPN
        • Capsule Docs 
        		  (ZIP)
        E82.00 Complete Endpoint Security Client without Anti-Malware for 32 bit systems
        A package for 32bit devices that includes Endpoint Complete package with the exception of Anti-Malware:
        • Desktop FW and Application Control
        • Forensics and Anti-Ransomware
        • URL Filtering
        • Anti-Bot
        • Threat Emulation
        • Media Encryption and Port Protection
        • Full Disk Encryption
        • Compliance
        • Remote Access VPN
        • Capsule Docs 
        		 (ZIP)
        E82.00 Complete Endpoint Security Client without Anti-Malware for 64 bit systems
        A package for 64bit devices that includes Endpoint Complete package with the exception of Anti-Malware:
        • Desktop FW and Application Control
        • Forensics and Anti-Ransomware
        • URL Filtering
        • Anti-Bot
        • Threat Emulation
        • Media Encryption and Port Protection
        • Full Disk Encryption
        • Compliance
        • Remote Access VPN
        • Capsule Docs 
        		  (ZIP)
        E82.00 SandBlast Agent Client for 32 bit systems
        SandBlast Agent package for 32bit devices:
        • Forensics and Anti-Ransomware
        • Anti-Bot
        • Threat Emulation
        		 (ZIP)
        E82.00 SandBlast Agent Client for 64 bit systems
        SandBlast Agent package for 64bit devices:
        • Forensics and Anti-Ransomware
        • Anti-Bot
        • Threat Emulation
        		  (ZIP)
        E82.00 Full Disk Encryption and Media Encryption and Port Protection client for 32 bit systems Full Disk Encryption and Media Encryption and Port Protection package for 32 bit systems  (ZIP)
        E82.00 Full Disk Encryption and Media Encryption and Port Protection client for 64 bit systems Full Disk Encryption and Media Encryption and Port Protection package for 64 bit systems   (ZIP)
        E82.00 Initial client Initial client is a very thin client without any blade used for software deployment purposes. (ZIP)
        E82.00 Threat Prevention Client for 32 bit systems Threat Prevention package for 32bit devices: 
        • Desktop FW and Application Control
        • Anti-Malware
        • Forensics and Anti-Ransomware
        • Anti-Bot
        • Threat Emulation
        • Compliance
        		 (ZIP)
        E82.00 Threat Prevention Client for 64 bit systems Threat Prevention package for 64bit devices:
        • Desktop FW and Application Control
        • Anti-Malware
        • Forensics and Anti-Ransomware
        • Anti-Bot
        • Threat Emulation
        • Compliance
        		 (ZIP)

        Standalone Clients Downloads

        Show / Hide this section
        Note: These Standalone clients do not require Endpoint Security Server installation as part of their deployment.

        Known issue: The below Standalone Clients VPN packages have a small cosmetic issue. The version shows in the Help About screen is VPN E81.40 instead of VPN E82.00. The version of the software itself is OK (E82.00).

        You can use the below installation, or if preferred, you can contact Check Point Support to get an updated version with the fix in the Help About screen.

        E82.00 Standalone Clients

        Platform Package Description Link
        Windows E82.00 Remote Access Clients for Windows Remote Access VPN Client for SmartConsole-managed clients (MSI)
        E82.00 Remote Access VPN Clients - Automatic Upgrade file Remote Access VPN Client for automatic upgrade through the gateway. For SmartConsole-managed clients only. (CAB)
        E82.00 Remote Access VPN Clients for ATM Unattended Remote Access VPN clients, managed with CLI and API and do not have a User interface. (MSI)
        E82.00 Remote Access VPN Clients for ATM - Automatic Upgrade file Unattended Remote Access VPN clients, managed with CLI and API and do not have a User interface for automatic upgrade through the gateway. For SmartConsole-managed clients only. (CAB)
        E81.40 Capsule Docs Standalone Client Capsule Docs package for environments that are managed by Capsule Docs Cloud Service. (EXE)
        Capsule Docs PC Viewer Check Point Capsule Docs Viewer is a stand-alone client that lets you view documents that were protected through Capsule Docs. Get from: Capsule Docs Portal

        Endpoint Security Server Downloads

        Show / Hide this section

        Note: In order to download some of the packages you will need to have a Software Subscription or Active Support plan.

        The packages provided below are Legacy CLI packages (not CPUSE packages).         

        R77.30.03

        Clean installation and In-Place Upgrade

        • Before installing the hotfixes, you need R77.30 to be installed and to update CPUSE (sk92449) to the latest build.
        • You must install the R77.30 Jumbo Hotfix for Endpoint Security Server before you install the Endpoint Security Server Package for Gaia OS.
        Order of Installation Package Link
        1 R77.30 Jumbo Hotfix for Endpoint Security Server (TGZ)
        2 R77.30.03 Endpoint Security Server Package for Gaia OS (TGZ)

        R80.30

         

        Endpoint Security Server Package Link
        R80.30 Endpoint Security Server R80.30  (ISO)

        Management Console Downloads

        Show / Hide this section

        Management Console for Endpoint Security Server

        The SmartConsole for Endpoint Security Server allows the Administrator to connect to the Endpoint Security Server and to manage the new Endpoint Security Software Blades.

        Latest Versions

        Endpoint Security Server Package Link
        R77.30.03 SmartConsole for Endpoint Security Server R77.30.03 / E81.40 and higher (EXE)
        R80.20 SmartConsole for Endpoint Security Server R80.20 / E81.40 and higher sk137593
        R80.30 SmartConsole for Endpoint Security Server R80.30 / E81.40 and higher sk153153

        Previous Versions

        Endpoint Security Server Package Link
        R77.30 SmartConsole for Endpoint Security Server R77.30 / E81.40 and higher (EXE)
        R80.10 SmartConsole for Endpoint Security Server R80.10 / E81.40 and higher (EXE)
        R77.30 EP6.5 SmartConsole for Endpoint Security Server R77.30 EP6.5 / E81.40 and higher  (EXE)
        R77.20 EP6.2 SmartConsole for Endpoint Security Server R77.20 EP6.2 / E81.40 and higher (EXE)

        Utilities/Services Downloads

        Show / Hide this section
        Utilities

        Platform Package Description Link
        Windows SandBlast Agent Remediation Manager for Administrators

        The administrator utility contains the capabilities of the end-user utility plus these additional features:

        • Quarantine - Send files to quarantine. 
        • Delete - Use the SandBlast Agent remediation service to delete a file. 
        • Import - Import a quarantined file from a different computer or location. Get the administrator utility from the release homepage
        		 (EXE)
        Capsule Docs Bulk Protection Services for Windows-based Servers and Workstations Capsule Docs Bulk Protection lets you manage file protection settings based on file locations and properties.  (EXE)
        R77.30 DLP Gateway HF for Content-aware Capsule Docs protection (Mail attachments / Network locations)   (TGZ)

        For more information about Capsule Docs Bulk Protection, refer to Capsule Docs Bulk Protection Services Reference Guide.

        Full Disk Encryption Offline Management Tool

        Platform Package Description Link
        Windows Full Disk Encryption Offline Management Tool The Endpoint Offline Management Tool lets administrators manage offline mode users and give them password recovery and disk recovery. (TGZ)
        Windows Full Disk Encryption Offline Management Tool (Japanese) The Endpoint Offline Management Tool lets administrators manage offline mode users and give them password recovery and disk recovery. (TGZ)

        Known Limitations

        Show / Hide this section
        Issue ID Description
        EPS-20286 Machines using Self Encrypting Drives (Opal) hardware encryption cannot switch to BitLocker using the BitLocker policy option.
        EPS-23145

        A machine with BitLocker enabled, by default, is not a supported scenario in Check Point Full Disk Encryption. If BitLocker is enabled, by default, it must be turned off, before you install FDE with a Check Point Full Disk Encryption Policy in effect.

        Note: If you install FDE with a BitLocker management policy, this limitation does not apply.
        Show / Hide this section      
        Document
        Endpoint Security Server
        R80.30 Release Notes 
        Endpoint Security R80.30 Administration Guide
        Endpoint Security Clients
        E80.85 and higher Endpoint Security Client for Windows User Guide
        E82.00 Endpoint Security Client for Windows Release Notes
        Remote Access VPN Clients
        E82.00 Remote Access Clients for Windows Release Notes
        E80.72 and higher Remote Access Clients for Windows Administration Guide
        Capsule Docs Client
        E80.72 and higher Capsule Docs Plugin User Guide
        Check Point Capsule Docs Viewer User Guide: Get from: Capsule Docs Portal
        Capsule Docs Bulk Protection Services
        Capsule Docs Bulk Protection Guide

        For more information on Check Point releases see: Maintrain Release map, Maintrain Upgrade map, Maintrain Backward Compatibility map, Maintrain Releases plan.

        For more information on the Enterprise Endpoint Security Windows Client, see:

        You can also visit our Endpoint forum, Remote Access forum, Capsule Docs forum, or any other CHECKMATES forum to ask questions and get answers from technical peers and Support experts.

        Revision History

        Show / Hide this section
        Date Description
        03 Nov 2019 First release of this document.

        Give us Feedback
        Please rate this document
        [1=Worst,5=Best]
        Comment