To support SmartLog or SmartView Tracker reporting with Endpoint Security Clients for all supported servers (except R80.20 and higher), you must update the log schema. Follow instructions in sk106662.
Starting in E80.85, anonymized incident related data is sent to Check Point ThreatCloud, by default. To learn more see sk129753.
Important: Download SmartConsole with the E80.92 client to avoid "signature verification failed" messages when uploading the client to the SmartConsole.
The relevant links to downloads are located in the relevant section, i.e., Endpoint Security Server, Management Console, Endpoint Security Clients, Standalone Clients, Utilities/Services.
The relevant links to documentation are located in the "Documentation" section.
The relevant links to downloads are located in the relevant section, i.e., Endpoint Security Server, Management Console, Endpoint Security Clients, Standalone Clients, Utilities/Services.
The relevant links to documentation are located in the "Documentation" section.
E82.10 adds support for Endpoint on Windows 10 19H2 (version 1909).
Enhancements
Compliance
Fixes an issue when the Compliance blade fails to detect the McAfee Endpoint Security running status, if no user is logged in.
Anti-Malware
Fixes an issue where the Endpoint Security client upgrade fails because the Anti-Malware process fails to unload.
Fixes an issue for sites blocked by Anti-Malware web protection.
Fixes an issue where Endpoint Security significantly slows the Kaspersky Endpoint Protection upgrade process.
Anti-Ransomware, Behavioral Guard and Forensics
Fixes an issue where symbolic links with Anti-Ransomware honeypot restoration may allow Denial of Service attacks.
Older Anti-Ransomware honeypots are now deleted on upgrades.
Fixes an issue where Anti-Ransomware honeypots are not created on newer locations like program data and app data, when upgrading from an earlier version of the product.
Fixes an Anti-Ransomware False Positive that can occur due to the VMware Horizon Persona Management application.
Improves performance of the injection sensor when many processes are launched in a short period of time.
Fixes an issue that may cause the Forensics Analysis to include benign processes when NVIDIA processes are launched prior to the Logon screen appearing.
Fixes an issue where the entire Forensic incident is not analyzed if it involves the use of NTFS Alternate Data Streams.
Fixes an issue where some IPv6 addresses are not correctly identified as internal IPs for the RDP Brute Force detection in Behavioral Guard.
Media Encryption and Port Protection
Fixes an issue where Media Encryption and Port Protection does not update the Offline Data Access utility on an encrypted removable media.
Full Disk Encryption
Fixes a rare issue where an FDE process crashes when switching from BitLocker Management to FDE.
VPN
Includes stability and quality fixes. Supports all the features of previous releases.
Improves the log mechanism. Logs will stay on the machine for a longer time.
Includes performance improvements with large scale topology.
Install
CVE-2019-8463: Resolves a denial of service vulnerability in releases before E82.10 to prevent service log files storing in non-standard locations.
General
The initial connection to the server does not require the Endpoint Security Client to be connected to the domain controller.
Fixes an issue for the Endpoint Security Client to report its name to display accurately in Deployment reports of SmartEndpoint.
Fixes a rare case of BSOD that may happen during an arbitrary process creation.
Starting from E80.85, SandBlast Agent improves coverage of malicious threats by sending anonymized Incident related data to the Check Point Threat Cloud. This feature is turned on by default. For more information, including how to disable this feature, refer to sk129753.
To support SmartLog or SmartView Tracker reporting with Endpoint Security Clients for all supported servers (except R80.20), you must update the log schema. Follow instructions in sk106662.
Endpoint Security E82.10 Clients
Platform
Package
Description
Link
Windows
E82.10 Endpoint Security Clients for Windows OS (Recommended)
A zip file that contains all package permutations listed below.
(ZIP)
E82.10 Complete Endpoint Security Client for 32 bit systems
Unattended Remote Access VPN clients, managed with CLI and API and do not have a User interface for automatic upgrade through the gateway. For SmartConsole-managed clients only.
(CAB)
E82.10 Capsule Docs Standalone Client
Capsule Docs package for environments that are managed by Capsule Docs Cloud Service.
(EXE)
Capsule Docs PC Viewer
Check Point Capsule Docs Viewer is a stand-alone client that lets you view documents that were protected through Capsule Docs.
The SmartConsole for Endpoint Security Server allows the Administrator to connect to the Endpoint Security Server and to manage the new Endpoint Security Software Blades.
Latest Versions
Endpoint Security Server
Package
Link
R77.30.03
SmartConsole for Endpoint Security Server R77.30.03 / E81.40 and higher
(EXE)
R80.20
SmartConsole for Endpoint Security Server R80.20 / E81.40 and higher