Support Center > Search Results > SecureKnowledge Details
Enterprise Endpoint Security E83.00 Windows Clients Technical Level
Solution

Table of Contents:

  • In a Nutshell
  • What's New in E83.00
  • Endpoint Security Clients Downloads
  • Standalone Clients Downloads
  • Endpoint Security Server Downloads
  • Management Console Downloads
  • Utilities/Services Downloads
  • Known Limitations
  • Documentation and Related SecureKnowledge Articles
  • Revision History

 Endpoint Security Homepage is now available.

Notes:

  • To support SmartLog or SmartView Tracker reporting with Endpoint Security Clients for all supported servers (except R80.20 and higher), you must update the log schema. Follow instructions in sk106662.
  • Starting in E80.85, anonymized incident related data is sent to Check Point ThreatCloud, by default. To learn more see sk129753.
  • Important: Download SmartConsole with the E80.92 client to avoid "signature verification failed" messages when uploading the client to the SmartConsole.
  • The relevant links to downloads are located in the relevant section, i.e., Endpoint Security Server, Management Console, Endpoint Security Clients, Standalone Clients, Utilities/Services.
  • The relevant links to documentation are located in the "Documentation" section.
  • It is strongly recommended that you read the E83.00 Endpoint Security Client Release Notes, before installing this release.
  • This release includes all limitations of earlier releases unless explicitly shown as resolved.
  • For E82.50 releases for Mac: Refer to sk165573 - Enterprise Endpoint Security E82.50 macOS Clients.

Click Here to Show the Entire Article

In a Nutshell

Item Description Link
Managed Client E83.00 Endpoint Security Clients for Windows OS (ZIP)
E83.00 Endpoint Security Clients for Windows OS - Dynamic package (EXE)
VPN Standalone Client E83.00 Remote Access Clients for Windows (MSI)
Capsule Docs E83.00 Capsule Docs Standalone Client (EXE)
Documentation E83.00 Endpoint Security Client for Windows Release Notes  
sk164896 - Video: How to deploy and upgrade Endpoint Security Client?

What's New in E83.00

Show / Hide this section

New Features

  • SandBlast Agent now uses ssdeep-computed Fuzzy Hashing to detect and block malicious files. This adds to the standard hash-based reputation check and to similarities through Static Analysis Machine Learning to improve SBA’s ability to catch polymorphic variants of known malware.
  • Adds a SandBlast Agent Chrome Browser Extension with URL Filtering capabilities.
    Note: The feature is available for SandBlast Agent Web Management users. It is in Early Availability mode for Chrome users. The Google Chrome-store update for the new browser extension may not be available yet. If the URLF policy page is visible on your web-management, the URLF is available.

Enhancements

  • File Reputation, Static File Analysis and Threat Emulation
    • SandBlast Agent now checks the reputation of files based on their similarity to a known ssdeep hash.
  • Anti-Exploit
    • Fixes an issue where Anti-Exploit may not work immediately after an upgrade.
  • Anti-Ransomware, Behavioral Guard and Forensics
    • Fixes a rare Forensics service crash that can occur when a client disconnects from the Management server.
    • Improves Forensics performance by not monitoring Windows Update operations
    • Improves Forensics, Behavioral Guard and Threat Hunting performance slightly by filtering out some sensor data from well known processes.
    • Fixes the re-creation of certain folders such as the document folder if the admin redirects them.
    • Policy can now disable Forensic Analysis for Anti-Ransomware and Behavioral Guard.
    • Fixes a rare issue where the Anti-Ransomware backup driver may not stop on upgrades.
    • Fixes an issue that can prevent an Anti-Ransomware file backup due to a specific sequence of file modification operations.
    • Improves the time to detection for Behavioral Guard and Anti-Ransomware rules by prioritizing active rules over rules being field-tested.
    • Windows Management Instrumentation (WMI) executions are now supported in Behavioral Guard rules.
  • Full Disk Encryption
    • Suspended BitLocker drives now display as unencrypted.
    • Now shows the Caps Lock notification in the pre-boot password change dialog.
    • Fixes a rare Full Disk Encryption pre-boot loop.
  • Media Encryption and Port Protection
      • Resolves an authorization issue, when the scan fails if there are files with long paths on the media.
    • VPN
      • Fixes an issue with privilege escalation vulnerability, where a regular user might be able to execute arbitrary code with system privileges.
    • Installation
      • Resolves a possible issue where an Anti-Malware blade addition that uses Dynamic Package results in Anti-Malware in an error state.
      • Resolves an issue where a command line window pops up briefly during the installation of an exported package.
      • Resolves a possible issue where a client upgrade fails if it happens during a signature update.
      • Resolves a possible issue where the client upgrade fails due to the Vsmon shutdown time being longer than expected.
      • Resolves a possible issue where an upgrade that uses Dynamic Package fails when the zip file extraction fails.
    • Infrastructure
      • Fixes an issue where the status of the client stays in "Deployment is in progress" although the deployment finishes successfully.
      • Fixes an issue where the tray icon of the Endpoint Security client is sometimes missing.
      • Resolves a possible issue where the client's failure to retrieve the SID does not show in the client UI.
      • Resolves an issue where the "Instprep.log" log file has no limit in size.
      • Resolves a possible issue where the reconnect tool doesn't restart the Device Agent service because of an incorrect certificate.
      • Resolves a possible issue where the client log viewer crashes.
      • The Anti-Bot blade is now "Anti-Bot and URL Filtering".
      • Resolves an issue where informative popups display although the policy for "Client User Interface Settings" is not set to "Show all notifications".

    Endpoint Security Clients Downloads

    Show / Hide this section
    Important:
      • Starting from E80.85, SandBlast Agent improves coverage of malicious threats by sending anonymized Incident related data to the Check Point Threat Cloud. This feature is turned on by default. For more information, including how to disable this feature, refer to sk129753.

    • To support SmartLog or SmartView Tracker reporting with Endpoint Security Clients for all supported servers (except R80.20), you must update the log schema. Follow instructions in sk106662.

    Endpoint Security E83.00 Clients

    Platform Package Description Link
    Windows E83.00 Endpoint Security Clients for Windows OS - Dynamic package Complete Endpoint Security Client for any CPU (32bit or 64bit). This is a self-extracting executable EXE file with all components (Blades) to be used as Dynamic package with R80.40 and above. (EXE)
    E83.00 Endpoint Security Clients for Windows OS (Recommended) A zip file that contains all package permutations listed below. (ZIP)
    E83.00 Complete Endpoint Security Client for 32 bit systems
    A package for 32bit devices that includes Endpoint Complete package:
    • Desktop FW and Application Control
    • Anti-Malware
    • Forensics and Anti-Ransomware
    • URL Filtering
    • Anti-Bot
    • Threat Emulation
    • Media Encryption and Port Protection
    • Full Disk Encryption
    • Compliance
    • Remote Access VPN
    • Capsule Docs 
    (ZIP)
    E83.00 Complete Endpoint Security Client for 64 bit systems
    A package for 64bit devices that includes Endpoint Complete package:
    • Desktop FW and Application Control
    • Anti-Malware
    • Forensics and Anti-Ransomware
    • URL Filtering
    • Anti-Bot
    • Threat Emulation
    • Media Encryption and Port Protection
    • Full Disk Encryption
    • Compliance
    • Remote Access VPN
    • Capsule Docs 
     (ZIP)
    E83.00 Complete Endpoint Security Client without Anti-Malware for 32 bit systems
    A package for 32bit devices that includes Endpoint Complete package with the exception of Anti-Malware:
    • Desktop FW and Application Control
    • Forensics and Anti-Ransomware
    • URL Filtering
    • Anti-Bot
    • Threat Emulation
    • Media Encryption and Port Protection
    • Full Disk Encryption
    • Compliance
    • Remote Access VPN
    • Capsule Docs 
    (ZIP)
    E83.00 Complete Endpoint Security Client without Anti-Malware for 64 bit systems
    A package for 64bit devices that includes Endpoint Complete package with the exception of Anti-Malware:
    • Desktop FW and Application Control
    • Forensics and Anti-Ransomware
    • URL Filtering
    • Anti-Bot
    • Threat Emulation
    • Media Encryption and Port Protection
    • Full Disk Encryption
    • Compliance
    • Remote Access VPN
    • Capsule Docs 
     (ZIP)
    E83.00 SandBlast Agent Client for 32 bit systems
    SandBlast Agent package for 32bit devices:
    • Forensics and Anti-Ransomware
    • Anti-Bot
    • Threat Emulation
    (ZIP)
    E83.00 SandBlast Agent Client for 64 bit systems
    SandBlast Agent package for 64bit devices:
    • Forensics and Anti-Ransomware
    • Anti-Bot
    • Threat Emulation
     (ZIP)
    E83.00 Full Disk Encryption and Media Encryption and Port Protection client for 32 bit systems Full Disk Encryption and Media Encryption and Port Protection package for 32 bit systems  (ZIP)
    E83.00 Full Disk Encryption and Media Encryption and Port Protection client for 64 bit systems Full Disk Encryption and Media Encryption and Port Protection package for 64 bit systems   (ZIP)
    E83.00 Initial client Initial client is a very thin client without any blade used for software deployment purposes. (ZIP)
    E83.00 Threat Prevention Client for 32 bit systems Threat Prevention package for 32bit devices: 
    • Desktop FW and Application Control
    • Anti-Malware
    • Forensics and Anti-Ransomware
    • Anti-Bot
    • Threat Emulation
    • Compliance
    (ZIP)
    E83.00 Threat Prevention Client for 64 bit systems Threat Prevention package for 64bit devices:
    • Desktop FW and Application Control
    • Anti-Malware
    • Forensics and Anti-Ransomware
    • Anti-Bot
    • Threat Emulation
    • Compliance
    (ZIP)

    Standalone Clients Downloads

    Show / Hide this section
    Note: These Standalone clients do not require Endpoint Security Server installation as part of their deployment.

    E83.00 Standalone Clients

    Platform Package Description Link
    Windows E83.00 Remote Access Clients for Windows Remote Access VPN Client for SmartDashboard-managed clients (MSI)
    E83.00 Remote Access VPN Clients - Automatic Upgrade file Remote Access VPN Client for automatic upgrade through the gateway. For SmartDashboard-managed clients only. (CAB)
    E83.00 Remote Access VPN Clients for ATM Unattended Remote Access VPN clients, managed with CLI and API and do not have a User interface. (MSI)
    E83.00 Remote Access VPN Clients for ATM - Automatic Upgrade file Unattended Remote Access VPN clients, managed with CLI and API and do not have a User interface for automatic upgrade through the gateway. For SmartDashboard-managed clients only. (CAB)
    E83.00 Capsule Docs Standalone Client Capsule Docs package for environments that are managed by Capsule Docs Cloud Service. (EXE)
    Capsule Docs PC Viewer Check Point Capsule Docs Viewer is a stand-alone client that lets you view documents that were protected through Capsule Docs. Get from: Capsule Docs Portal

    Endpoint Security Server Downloads 

    Show / Hide this section

    Note: In order to download some of the packages you will need to have a Software Subscription or Active Support plan.

    The packages provided below are Legacy CLI packages (not CPUSE packages).
     

    R77.30.03

    Clean installation and In-Place Upgrade

    • Before installing the hotfixes, you need R77.30 to be installed and to update CPUSE (sk92449) to the latest build.
    • You must install the R77.30 Jumbo Hotfix for Endpoint Security Server before you install the Endpoint Security Server Package for Gaia OS.
    Order of Installation Package Link
    1 R77.30 Jumbo Hotfix for Endpoint Security Server (TGZ)
    2 R77.30.03 Endpoint Security Server Package for Gaia OS (TGZ)

    R80.30


    Endpoint Security Server Package Link
    R80.30 Endpoint Security Server R80.30  (ISO)

    R80.40


    Endpoint Security Server Package Link
    R80.40 Endpoint Security Server R80.40  (ISO)

    Management Console Downloads

    Show / Hide this section

    Management Console for Endpoint Security Server

    The SmartConsole for Endpoint Security Server allows the Administrator to connect to the Endpoint Security Server and to manage the new Endpoint Security Software Blades.

    Latest Versions

    Endpoint Security Server Package Link
    R80.40 SmartConsole for Endpoint Security Server R80.40 / E82.40 and higher (EXE)
    R80.30 SmartConsole for Endpoint Security Server R80.30 / E82.40 and higher (EXE)
    R80.30 SmartConsole for Endpoint Security Server R80.30 for BitLocker / E82.40 and higher (EXE)

    Previous Versions

    Endpoint Security Server Package Link
    R80.20 SmartConsole for Endpoint Security Server R80.20 / E82.40 and higher (EXE)
    R77.30.03 SmartConsole for Endpoint Security Server R77.30.03 / E82.40 and higher (EXE)
    R77.30 SmartConsole for Endpoint Security Server R77.30 / E82.40 and higher (EXE)
    R80.10 SmartConsole for Endpoint Security Server R80.10 / E82.40 and higher (EXE)
    R77.30 EP6.5 SmartConsole for Endpoint Security Server R77.30 EP6.5 / E82.40 and higher  (EXE)
    R77.20 EP6.2 SmartConsole for Endpoint Security Server R77.20 EP6.2 / E82.40 and higher (EXE)
    Internal note - Above packages includes Recovery Image of version 86.2.40.3

    Utilities/Services Downloads

    Show / Hide this section
    Utilities

    Platform Package Description Link
    Windows SandBlast Agent Remediation Manager for Administrators

    The administrator utility contains the capabilities of the end-user utility plus these additional features:

    • Quarantine - Send files to quarantine. 
    • Delete - Use the SandBlast Agent remediation service to delete a file. 
    • Import - Import a quarantined file from a different computer or location. Get the administrator utility from the release homepage
    (EXE)
    Capsule Docs Bulk Protection Services for Windows-based Servers and Workstations Capsule Docs Bulk Protection lets you manage file protection settings based on file locations and properties.  (EXE)
    R77.30 DLP Gateway HF for Content-aware Capsule Docs protection (Mail attachments / Network locations)   (TGZ)

    For more information about Capsule Docs Bulk Protection, refer to Capsule Docs Bulk Protection Services Reference Guide.

    Full Disk Encryption Offline Management Tool

    Platform Package Description Link
    Windows Full Disk Encryption Offline Management Tool The Endpoint Offline Management Tool lets administrators manage offline mode users and give them password recovery and disk recovery. (TGZ)
    Windows Full Disk Encryption Offline Management Tool (Japanese) The Endpoint Offline Management Tool lets administrators manage offline mode users and give them password recovery and disk recovery. (TGZ)

    Known Limitations

    Show / Hide this section
    Issue ID Description
    AHTP-17437

    The Google Chrome-store update for the new browser extension may not be available yet. If the URLF policy page is visible on your web-management, the URLF is available.

    Show / Hide this section      
    Document
    Endpoint Security Server
    R80.40 Release Notes
    Endpoint Security R80.40 Administration Guide
    R80.30 Release Notes 
    Endpoint Security R80.30 Administration Guide
    Endpoint Security Clients
    E80.85 and higher Endpoint Security Client for Windows User Guide
    E83.00 Endpoint Security Client for Windows Release Notes
    sk164896 - Video: How to deploy and upgrade Endpoint Security Client?
    Remote Access VPN Clients
    E83.00 Remote Access Clients for Windows Release Notes
    E80.72 and higher Remote Access Clients for Windows Administration Guide
    Capsule Docs Client
    E80.72 and higher Capsule Docs Plugin User Guide
    Check Point Capsule Docs Viewer User Guide: Get from: Capsule Docs Portal
    Capsule Docs Bulk Protection Services
    Capsule Docs Bulk Protection Guide

    Revision History

    Show / Hide this section
    Date Description
    06 May 2020 First release of this document.

    Give us Feedback
    Please rate this document
    [1=Worst,5=Best]
    Comment