Support Center > Search Results > SecureKnowledge Details
Enterprise Endpoint Security E82.40 Windows Clients Technical Level
Solution

Table of Contents:

  • In a Nutshell
  • What's New in E82.40
  • Endpoint Security Clients Downloads
  • Standalone Clients Downloads
  • Endpoint Security Server Downloads
  • Management Console Downloads
  • Utilities/Services Downloads
  • Documentation and Related SecureKnowledge Articles
  • Revision History

 Endpoint Security Homepage is now available.

Notes:

  • To support SmartLog or SmartView Tracker reporting with Endpoint Security Clients for all supported servers (except R80.20 and higher), you must update the log schema. Follow instructions in sk106662.
  • Starting in E80.85, anonymized incident related data is sent to Check Point ThreatCloud, by default. To learn more see sk129753.
  • Important: Download SmartConsole with the E80.92 client to avoid "signature verification failed" messages when uploading the client to the SmartConsole.
  • The relevant links to downloads are located in the relevant section, i.e., Endpoint Security Server, Management Console, Endpoint Security Clients, Standalone Clients, Utilities/Services.
  • The relevant links to documentation are located in the "Documentation" section.
  • It is strongly recommended that you read the E82.40 Endpoint Security Client Release Notes, before installing this release.
  • This release includes all limitations of earlier releases unless explicitly shown as resolved.
  • For E80.89 releases for Mac: Refer to sk131152 - Enterprise Endpoint Security E80.89 Mac Clients.

Click Here to Show the Entire Article

In a Nutshell

Item Description Link
Managed Client E82.40 Endpoint Security Clients for Windows OS (ZIP)
VPN Standalone Client

E82.40 Remote Access Clients for Windows

(MSI)
Capsule Docs E82.40 Capsule Docs Standalone Client (EXE)
Documentation E82.40 Endpoint Security Client for Windows Release Notes  
sk164896 - Video: How to deploy and upgrade Endpoint Security Client?

What's New in E82.40

Show / Hide this section

New Features

  • Adds a new protection in Static Analysis against CVE-2020-0601. This prevents the use of spoofed ECC (Elliptic Curve Cryptography) certificates on malicious executables.
  • Behavioral Guard now detects Windows-reported CVEs to generate a log and Forensic Analysis. An example is CVE-2020.0601. This is different from the Static Analysis protection that is not dependent on Windows-reported CVEs.
  • Behavioral Guard Meterpreter Reverse Shell detections are now active, by default.
  • Behavioral Guard new injection detections including Process Hollowing are now active, by default.
  • Forensics can now identify starting points of attacks originating from lateral movement and Windows Management Instrumentation (WMI). Indirect execution on a single machine through WMI is now detected and followed in the Forensics Analysis.

Enhancements 

  • Anti-Malware
    • Resolves the issue where an Anti-Malware infection event is not showing in SmartEndpoint Reporting, if special characters are in the path.
    • Resolves an issue where Anti-Malware reporting does not update in SmartEndpoint, after the infections list changes in the Anti-Malware blade.
    • Fixes an Anti-Malware system scan memory issue, when scanning files with alternate data streams.
  • Anti-Exploit
    • Fixes an issue that can cause the Anti-Exploit service to crash in x86 systems, after an upgrade.
    • Fixes a rare issue where the machine hangs during an upgrade (related to a driver that Anti-Exploit uses).
    • Fixes an issue where Anti-Exploit may not work immediately after an upgrade.
  • Anti-Bot
    • Anti-Bot detection status now updates to the server User Interface continuously for additions and removals from the client.
  • Behavioral Guard and Forensics
      • Improves performance slightly by removing unnecessary logs from Behavioral Guard.
      • Fixes an issue in the Forensics Log Card to report a trigger rather than the process of a trigger.
      • Fixes an issue with a Forensic crash in a Virtual Disk Infrastructure (VDI) environment.
    • Firewall and Application Control
      • Resolves a possible issue where the Firewall blade has the Initializing status after an upgrade due to some missing dll files.
      • Resolves a possible issue where registry parsing, while self protection is active, causes a BSOD.
      • Fixes the vsdatant.sys driver synchronization issue that causes a BSOD on driver unload.
      • Resolves the issue where Long Term Evolution (LTE) and Universal Mobile Telecommunication System (UMTS) devices are not recognized as wireless by the "Disconnect wireless connections when connected to the LAN" feature.
    • Full Disk Encryption
      • Resolves an incorrect report about the Full Disk Encryption blade not running during a Windows shutdown, when the Deployment Agent (CPDA) does not receive a shutdown notification.
      • Sets BCDBOOT as the default on fresh installs.
      • Fixes Unified Extensible Firmware Interface (UEFI) to use the customized image rebrandings of UEFI preboots.
      • No longer forces a reboot when the pre-boot bypass is off, by policy.
    • Media Encryption and Port Protection
      • Fixes and removes the requirement to install Visual Studio 2017 runtimes when running the Media Encryption offline utility "Access to Business Data". Note: The Mac offline utility now supports macOS Catalina (10.15).
    • VPN
      • Fixes an issue where the location inside the organization is not recognized properly.
      • Adds the detection of McAfee Security Endpoint v10.6 into Secure Configuration Verification (SCV).
      • Fixes an issue where the user is not able to use several question marks in the password.
    • Installer
      • Resolves a possible issue where the client upgrade fails, when the Anti-Malware blade cannot reach a database file, after an ungraceful process termination.
      • Resolves a sudden reboot, after a client upgrade finishes, before a custom countdown timer ends.
      • Resolves an issue where Installer terminates on machines with specific locales, if the user has a name with specific localized UTF-8 characters.
      • Resolves a possible issue where the installation fails, by waiting for a process from a previous installation to stop.
      • Increases the timeout value for Windows Installer (MSI) to wait for Full Disk Encryption to finish a deployment in offline mode.
      • Fixes the Full Disk Encryption uninstall, after a Windows 10 upgrade.
    • General
      • Fixes an issue with the Deployment Agent (CPDA). Now, it tries to resend the UpdateRegister message, when the machine has network configuration changes, if the message did not go through, during startup.
      • Resolves an issue where the "Disconnected Policy" is not defined, and appears in the display, when the client is connected.
      • Fixes the issue of duplicate user objects for the same user in Other Users / Computers.

    Endpoint Security Clients Downloads

    Show / Hide this section
    Important:
      • Starting from E80.85, SandBlast Agent improves coverage of malicious threats by sending anonymized Incident related data to the Check Point Threat Cloud. This feature is turned on by default. For more information, including how to disable this feature, refer to sk129753.

    • To support SmartLog or SmartView Tracker reporting with Endpoint Security Clients for all supported servers (except R80.20), you must update the log schema. Follow instructions in sk106662.

    Endpoint Security E82.40 Clients

    Platform Package Description Link
    Windows E82.40 Endpoint Security Clients for Windows OS (Recommended) A zip file that contains all package permutations listed below. (ZIP)
    E82.40 Complete Endpoint Security Client for 32 bit systems
    A package for 32bit devices that includes Endpoint Complete package:
    • Desktop FW and Application Control
    • Anti-Malware
    • Forensics and Anti-Ransomware
    • URL Filtering
    • Anti-Bot
    • Threat Emulation
    • Media Encryption and Port Protection
    • Full Disk Encryption
    • Compliance
    • Remote Access VPN
    • Capsule Docs 
    (ZIP)
    E82.40 Complete Endpoint Security Client for 64 bit systems
    A package for 64bit devices that includes Endpoint Complete package:
    • Desktop FW and Application Control
    • Anti-Malware
    • Forensics and Anti-Ransomware
    • URL Filtering
    • Anti-Bot
    • Threat Emulation
    • Media Encryption and Port Protection
    • Full Disk Encryption
    • Compliance
    • Remote Access VPN
    • Capsule Docs 
     (ZIP)
    E82.40 Complete Endpoint Security Client without Anti-Malware for 32 bit systems
    A package for 32bit devices that includes Endpoint Complete package with the exception of Anti-Malware:
    • Desktop FW and Application Control
    • Forensics and Anti-Ransomware
    • URL Filtering
    • Anti-Bot
    • Threat Emulation
    • Media Encryption and Port Protection
    • Full Disk Encryption
    • Compliance
    • Remote Access VPN
    • Capsule Docs 
    (ZIP)
    E82.40 Complete Endpoint Security Client without Anti-Malware for 64 bit systems
    A package for 64bit devices that includes Endpoint Complete package with the exception of Anti-Malware:
    • Desktop FW and Application Control
    • Forensics and Anti-Ransomware
    • URL Filtering
    • Anti-Bot
    • Threat Emulation
    • Media Encryption and Port Protection
    • Full Disk Encryption
    • Compliance
    • Remote Access VPN
    • Capsule Docs 
     (ZIP)
    E82.40 SandBlast Agent Client for 32 bit systems
    SandBlast Agent package for 32bit devices:
    • Forensics and Anti-Ransomware
    • Anti-Bot
    • Threat Emulation
    (ZIP)
    E82.40 SandBlast Agent Client for 64 bit systems
    SandBlast Agent package for 64bit devices:
    • Forensics and Anti-Ransomware
    • Anti-Bot
    • Threat Emulation
     (ZIP)
    E82.40 Full Disk Encryption and Media Encryption and Port Protection client for 32 bit systems Full Disk Encryption and Media Encryption and Port Protection package for 32 bit systems  (ZIP)
    E82.40 Full Disk Encryption and Media Encryption and Port Protection client for 64 bit systems Full Disk Encryption and Media Encryption and Port Protection package for 64 bit systems   (ZIP)
    E82.40 Initial client Initial client is a very thin client without any blade used for software deployment purposes. (ZIP)
    E82.40 Threat Prevention Client for 32 bit systems Threat Prevention package for 32bit devices: 
    • Desktop FW and Application Control
    • Anti-Malware
    • Forensics and Anti-Ransomware
    • Anti-Bot
    • Threat Emulation
    • Compliance
    (ZIP)
    E82.40 Threat Prevention Client for 64 bit systems Threat Prevention package for 64bit devices:
    • Desktop FW and Application Control
    • Anti-Malware
    • Forensics and Anti-Ransomware
    • Anti-Bot
    • Threat Emulation
    • Compliance
    (ZIP)

    Standalone Clients Downloads

    Show / Hide this section
    Note: These Standalone clients do not require Endpoint Security Server installation as part of their deployment.

    E82.40 Standalone Clients

    Platform Package Description Link
    Windows E82.40 Remote Access Clients for Windows Remote Access VPN Client for SmartDashboard-managed clients (MSI)
    E82.40 Remote Access VPN Clients - Automatic Upgrade file Remote Access VPN Client for automatic upgrade through the gateway. For SmartDashboard-managed clients only. (CAB)
    E82.40 Remote Access VPN Clients for ATM Unattended Remote Access VPN clients, managed with CLI and API and do not have a User interface. (MSI)
    E82.40 Remote Access VPN Clients for ATM - Automatic Upgrade file Unattended Remote Access VPN clients, managed with CLI and API and do not have a User interface for automatic upgrade through the gateway. For SmartDashboard-managed clients only. (CAB)
    E82.40 Capsule Docs Standalone Client Capsule Docs package for environments that are managed by Capsule Docs Cloud Service. (EXE)
    Capsule Docs PC Viewer Check Point Capsule Docs Viewer is a stand-alone client that lets you view documents that were protected through Capsule Docs. Get from: Capsule Docs Portal

    Endpoint Security Server Downloads 

    Show / Hide this section

    Note: In order to download some of the packages you will need to have a Software Subscription or Active Support plan.

    The packages provided below are Legacy CLI packages (not CPUSE packages).
     

    R77.30.03

    Clean installation and In-Place Upgrade

    • Before installing the hotfixes, you need R77.30 to be installed and to update CPUSE (sk92449) to the latest build.
    • You must install the R77.30 Jumbo Hotfix for Endpoint Security Server before you install the Endpoint Security Server Package for Gaia OS.
    Order of Installation Package Link
    1 R77.30 Jumbo Hotfix for Endpoint Security Server (TGZ)
    2 R77.30.03 Endpoint Security Server Package for Gaia OS (TGZ)

    R80.30


    Endpoint Security Server Package Link
    R80.30 Endpoint Security Server R80.30  (ISO)

    R80.40


    Endpoint Security Server Package Link
    R80.40 Endpoint Security Server R80.40  (ISO)

    Management Console Downloads

    Show / Hide this section

    Management Console for Endpoint Security Server

    The SmartConsole for Endpoint Security Server allows the Administrator to connect to the Endpoint Security Server and to manage the new Endpoint Security Software Blades.

    Latest Versions

    Endpoint Security Server Package Link
    R80.40 SmartConsole for Endpoint Security Server R80.40 / E82.40 and higher (EXE)
    R80.30 SmartConsole for Endpoint Security Server R80.30 / E82.40 and higher (EXE)
    R80.30 SmartConsole for Endpoint Security Server R80.30 for BitLocker / E82.40 and higher (EXE)

    Previous Versions

    Endpoint Security Server Package Link
    R80.20 SmartConsole for Endpoint Security Server R80.20 / E82.40 and higher (EXE)
    R77.30.03 SmartConsole for Endpoint Security Server R77.30.03 / E82.40 and higher (EXE)
    R77.30 SmartConsole for Endpoint Security Server R77.30 / E82.40 and higher (EXE)
    R80.10 SmartConsole for Endpoint Security Server R80.10 / E82.40 and higher (EXE)
    R77.30 EP6.5 SmartConsole for Endpoint Security Server R77.30 EP6.5 / E82.40 and higher  (EXE)
    R77.20 EP6.2 SmartConsole for Endpoint Security Server R77.20 EP6.2 / E82.40 and higher (EXE)
    Internal note - Above packages includes Recovery Image of version 86.2.40.3

    Utilities/Services Downloads

    Show / Hide this section
    Utilities

    Platform Package Description Link
    Windows SandBlast Agent Remediation Manager for Administrators

    The administrator utility contains the capabilities of the end-user utility plus these additional features:

    • Quarantine - Send files to quarantine. 
    • Delete - Use the SandBlast Agent remediation service to delete a file. 
    • Import - Import a quarantined file from a different computer or location. Get the administrator utility from the release homepage
    (EXE)
    Capsule Docs Bulk Protection Services for Windows-based Servers and Workstations Capsule Docs Bulk Protection lets you manage file protection settings based on file locations and properties.  (EXE)
    R77.30 DLP Gateway HF for Content-aware Capsule Docs protection (Mail attachments / Network locations)   (TGZ)

    For more information about Capsule Docs Bulk Protection, refer to Capsule Docs Bulk Protection Services Reference Guide.

    Full Disk Encryption Offline Management Tool

    Platform Package Description Link
    Windows Full Disk Encryption Offline Management Tool The Endpoint Offline Management Tool lets administrators manage offline mode users and give them password recovery and disk recovery. (TGZ)
    Windows Full Disk Encryption Offline Management Tool (Japanese) The Endpoint Offline Management Tool lets administrators manage offline mode users and give them password recovery and disk recovery. (TGZ)
    Show / Hide this section      
    Document
    Endpoint Security Server
    R80.40 Release Notes
    Endpoint Security R80.40 Administration Guide
    R80.30 Release Notes 
    Endpoint Security R80.30 Administration Guide
    Endpoint Security Clients
    E80.85 and higher Endpoint Security Client for Windows User Guide
    E82.40 Endpoint Security Client for Windows Release Notes
    sk164896 - Video: How to deploy and upgrade Endpoint Security Client?
    Remote Access VPN Clients
    E82.40 Remote Access Clients for Windows Release Notes
    E80.72 and higher Remote Access Clients for Windows Administration Guide
    Capsule Docs Client
    E80.72 and higher Capsule Docs Plugin User Guide
    Check Point Capsule Docs Viewer User Guide: Get from: Capsule Docs Portal
    Capsule Docs Bulk Protection Services
    Capsule Docs Bulk Protection Guide

    Revision History

    Show / Hide this section
    Date Description
    16 Feb 2020 First release of this document.

    Give us Feedback
    Please rate this document
    [1=Worst,5=Best]
    Comment