Support Center > Search Results > SecureKnowledge Details
Enterprise Endpoint Security E83.20 macOS Clients Technical Level
Solution

Table of Contents:

  • What's New in E83.20 for macOS
  • Endpoint Security Clients Downloads
  • Standalone Clients Downloads
  • Utilities/Services Downloads
  • Native Encryption Management Hotfix Downloads
  • Management Console Downloads
  • Known Limitations
  • Resolved Issues
  • Documentation and Related SecureKnowledge Articles
  • Revision History

 Endpoint Security Homepage is now available.

Notes:

Click Here to Show the Entire Article

What's New in E83.20 for macOS

Show / Hide this section

New Features

  • Anti-Malware blade for macOS
  • Anti-Malware Contextual scan
  • Support for SandBlast Agent Chrome Browser Extension with URL Filtering capabilities.
    Note: The feature is available for SandBlast Agent Web Management users only, or via the new Web Management UI that is included in R81.
  • Support for additional VPN features:
    • Multiple Authentication Factors
    • Multiple Entry Point, Implicit mode
    • Secondary Connect

Enhancements

  • This release includes stability, quality and performance fixes.

Endpoint Security Clients Downloads

Show / Hide this section

Endpoint Security E83.20 Clients for macOS 


Platform Package Link
macOS E83.20 Check Point Endpoint Security Client for macOS  (ZIP)
macOS E83.20 Check Point Endpoint Security Client for macOS (without Capsule Docs and SandBlast Agent) (ZIP)

Standalone Clients Downloads

Show / Hide this section
Note: These Standalone clients do not require Endpoint Security Server installation as part of their deployment.

E83.20 Standalone Clients for macOS

Platform Package Link
macOS E83.20 Endpoint Security VPN for macOS - Disc Image (DMG) (DMG)
E83.20 Endpoint Security VPN for macOS - Automatic Upgrade package (PKG) (PKG)
E83.20 Endpoint Security VPN for macOS - Signature for automatic upgrade (signature)

Capsule Docs E83.20 Clients

Platform Package Link
macOS E83.20 Capsule Docs Mac Editor  

Utilities/Services Downloads

Show / Hide this section

Media Encryption Offline Access Tool E82.xx for macOS

Platform Package Link
macOS E82.xx Media Encryption Offline Access Tool

Native Encryption Management Hotfix Downloads

Show / Hide this section
If you want to use the new Native Encryption Management, download the relevant hotfix.

Note: In order to download some of the packages you will need to have a Software Subscription or Active Support plan.

The packages provided below are Legacy CLI packages (not CPUSE packages).
 

Endpoint Security Server Package Link
R77.30.03 R77.30.03 Server Hotfix for Native Encryption Management  (TGZ)
R77.20 EP6.2 R77.20 EP6.2 Server Hotfix for Native Encryption Management  (TGZ)
Important: The Native Encryption Management Hotfix is integrated into R80.20

Management Console Downloads

Show / Hide this section

Management Console for Endpoint Security Server

The SmartConsole for Endpoint Security Server allows the Administrator to connect to the Endpoint Security Server and to manage the new Endpoint Security Software Blades.

Endpoint Security Server Package Link
R77.30.03 SmartConsole for Endpoint Security Server R77.30.03 / E80.89 (EXE)
R77.20 EP6.2 SmartConsole for Endpoint Security Server R77.20 EP6.2 / E80.89 (EXE)
R80.20 SmartConsole for Endpoint Security Server R80.20 sk137593
R80.30 SmartConsole for Endpoint Security Server R80.30 sk153153
R80.40 SmartConsole for Endpoint Security Server R80.40 sk165473

Known Limitations

Show / Hide this section
Issue ID Description
EPS-23363 On macOS 10.15 Catalina, Full Disk Access has to be approved for several blades to work properly, including Media Encryption, VPN, Threat Emulation, Anti-Ransomware and Forensics. macOS does not provide any notifications about this automatically, so Endpoint Security presents a UserCheck message, as a guide for which application to grant FDA access, and a button to open the System Preferences.
AHTP-15580 Post-upgrade from the E80.89 release, there are no historic AR/TE events shown in the UI.
AHTP-15310 If nodeJS is installed on the Mac, build directories should be excluded in SBA policy (AR/EFR and TE) to improve performance.
EPS-23361

If the default name of the compliance rule for checking if assigned blades are running is changed, i.e. cloned or edited, this rule will not be applied to the macOS compliance blade. Then, on the server side there will be no compliance reporting (inform, warn, restrict). Client will also not go into the assumed compliance state.

ESVPN-1920 In some rare cases during the upgrade of VPN client from previous version, user may experience temporary inability to connect to VPN site. Delay may be from seconds to several minutes. To address this issue user should perform reboot of operating system.
EPS-26022 Media Encryption blade: Media scan - not supported.
ESVPN-2215 A certificate for user authentication should be stored in the keychain when you use Secondary Connect.

Anti-Malware Blade Limitations

Issue ID Description
EPS-26010 Enable Web protection - not supported  (always off)
EPS-26011 Scan Mail messages - not supported  (always off)
EPS-26012 Signature source settings - not supported (only External Check Point Signature server setting is supported)
EPS- 26014 Push operations: 
  • Scan for malware - not supported
  • Update malware for signature database - not supported
  • Operations restore file from quarantine - not supported
EPS-26015 Scan targets settings:
  • Critical areas - not supported (always on)
  • Optical drives  - not supported (always off)
  • Mail messages  - not supported (always off)
  • Unrecognized devices  - not supported (always off)
EPS-26016 Configure threat cloud knowledge sharing - not supported
EPS-26017 Process exclusion - MD5 not supported
EPS-26059 Anti-Malware detections integration with Forensics report - not supported.

Resolved Issues

Show / Hide this section
Issue ID Description
AHTP-19011 Resolved a problem with local forensics database purge query that impacted some users causing performance degradation, and in some cases making the system unresponsive. Upgrading to new version ensures that the previous forensics db size is reduced, and the CPU utilization is reduced.

Documentation and Related SecureKnowledge Articles

Show / Hide this section
Document
E83.20 Endpoint Security Client for Mac
E83.20 Endpoint Security Client for macOS Release Notes
Remote Access VPN Clients
E83.20 Endpoint Security VPN Clients for macOS Release Notes
E80.71 and higher Endpoint Security VPN for Mac Administration Guide

For more information on Check Point releases see: Maintrain Release map, Maintrain Upgrade map, Maintrain Backward Compatibility map, Maintrain Releases plan.

For more information on the Enterprise Endpoint Security E83.11 Client, see:

You can also visit our Endpoint forum, Remote Access forum, Capsule Docs forum, or any other CHECKMATES forum to ask questions and get answers from technical peers and Support experts.

Revision History

Show / Hide this section
Date Description
08 Sep 2020 Replaced downloads for E83.20 Check Point Endpoint Security Client for macOS and for E83.20 Check Point Endpoint Security Client for macOS (without Capsule Docs and SandBlast Agent). Improved handling for remote work, where AD connectivity is not possible. 
12 Aug 2020 First release of this document.

Give us Feedback
Please rate this document
[1=Worst,5=Best]
Comment