Support for SandBlast Agent Chrome Browser Extension with URL Filtering capabilities. Note: The feature is available for SandBlast Agent Web Management users only, or via the new Web Management UI that is included in R81.
Support for additional VPN features:
Multiple Authentication Factors
Multiple Entry Point, Implicit mode
Secondary Connect
Enhancements
This release includes stability, quality and performance fixes.
The SmartConsole for Endpoint Security Server allows the Administrator to connect to the Endpoint Security Server and to manage the new Endpoint Security Software Blades.
Endpoint Security Server
Package
Link
R77.30.03
SmartConsole for Endpoint Security Server R77.30.03 / E80.89
(EXE)
R77.20 EP6.2
SmartConsole for Endpoint Security Server R77.20 EP6.2 / E80.89
On macOS 10.15 Catalina, Full Disk Access has to be approved for several blades to work properly, including Media Encryption, VPN, Threat Emulation, Anti-Ransomware and Forensics. macOS does not provide any notifications about this automatically, so Endpoint Security presents a UserCheck message, as a guide for which application to grant FDA access, and a button to open the System Preferences.
AHTP-15580
Post-upgrade from the E80.89 release, there are no historic AR/TE events shown in the UI.
AHTP-15310
If nodeJS is installed on the Mac, build directories should be excluded in SBA policy (AR/EFR and TE) to improve performance.
EPS-23361
If the default name of the compliance rule for checking if assigned blades are running is changed, i.e. cloned or edited, this rule will not be applied to the macOS compliance blade. Then, on the server side there will be no compliance reporting (inform, warn, restrict). Client will also not go into the assumed compliance state.
ESVPN-1920
In some rare cases during the upgrade of VPN client from previous version, user may experience temporary inability to connect to VPN site. Delay may be from seconds to several minutes. To address this issue user should perform reboot of operating system.
EPS-26022
Media Encryption blade: Media scan - not supported.
ESVPN-2215
A certificate for user authentication should be stored in the keychain when you use Secondary Connect.
Anti-Malware Blade Limitations
Issue ID
Description
EPS-26010
Enable Web protection - not supported (always off)
EPS-26011
Scan Mail messages - not supported (always off)
EPS-26012
Signature source settings - not supported (only External Check Point Signature server setting is supported)
EPS- 26014
Push operations:
Scan for malware - not supported
Update malware for signature database - not supported
Operations restore file from quarantine - not supported
EPS-26015
Scan targets settings:
Critical areas - not supported (always on)
Optical drives - not supported (always off)
Mail messages - not supported (always off)
Unrecognized devices - not supported (always off)
EPS-26016
Configure threat cloud knowledge sharing - not supported
EPS-26017
Process exclusion - MD5 not supported
EPS-26059
Anti-Malware detections integration with Forensics report - not supported.
Resolved a problem with local forensics database purge query that impacted some users causing performance degradation, and in some cases making the system unresponsive. Upgrading to new version ensures that the previous forensics db size is reduced, and the CPU utilization is reduced.
Documentation and Related SecureKnowledge Articles
Replaced downloads for E83.20 Check Point Endpoint Security Client for macOS and for E83.20 Check Point Endpoint Security Client for macOS (without Capsule Docs and SandBlast Agent). Improved handling for remote work, where AD connectivity is not possible.
12 Aug 2020
First release of this document.
Give us Feedback
Thanks for your feedback!
Are you sure you want to rate this stars?