Support Center > Search Results > SecureKnowledge Details
Enterprise Endpoint Security E85.30 Windows Clients Technical Level
Solution
  • New Features
  • In a Nutshell
  • Resolved Issues and Enhancements
  • Endpoint Security Clients Downloads
  • Standalone Clients Downloads
  • Endpoint Security Server Downloads
  • Management Console Downloads
  • Utilities/Services Downloads
  • Known Limitations
  • Documentation and Related SecureKnowledge Articles
  • Revision History

  Endpoint Security Homepage is now available.

Notes:

Click Here to Show the Entire Article

List of New Features in E85.30

Show / Hide this section

ID Description
General
AHTP-21047 Harmony Endpoint Static Detection Engines have moved to monitor the access to the file, and not only the creation of the file. By that, Harmony Endpoint scans the file when any process attempts to open the file for any purpose.
Harmony Endpoint will block the file from being accessed before its inspection, assuring the endpoint is much more secured.
EPS-31756 Users can now execute PowerShell scripts on client computers using Push operations. Refer to sk173414.
Anti-Ransomware, Behavioral Guard and Forensics
AHTP-23199 Behavioral Guard has a new active behavioral security technology that attempts to find zero-day local privilege escalation (LPE) attempts. The primary focus of this technology is to identify kernel exploits utilized for LPE.
AHTP-23200 Media Encryption events (including a new device addition and copying a file from an external device) are now sent to Threat Hunting.


In a Nutshell

Item Description Download Link
Managed Client E85.30 Endpoint Security Clients for Windows OS (ZIP)
E85.30 Endpoint Security Clients for Windows OS - Dynamic package (EXE)
VPN Standalone Client E85.30 Remote Access Clients for Windows (MSI)
Capsule Docs E85.30 Capsule Docs Standalone Client (EXE)
Documentation E85.30 Endpoint Security Client for Windows Release Notes
sk164896 - Video: How to deploy and upgrade Endpoint Security Client?

List of Resolved Issues and Enhancements in E85.30

Show / Hide this section

Enter the string to filter the below table:

ID Description
Installation
EPS-33676 Enhancement: Allow uninstalling of Media Encryption blade during an upgrade.
EPS-33911 Enhancement: The installation of EPS.msi that is manually extracted from the dynamic package is now blocked.
EPS-33296 The Harmony Client may crash during the repair operation because of inconsistent redistributable libraries.
Anti-Ransomware, Behavioral Guard and Forensics
AHTP-23203 Enhancement: Improved the AMSI analysis performance. 
AHTP-23198 Enhancement: Improved Performance of Forensics by enhancing the dynamic exclusions.
AHTP-23158 Enhancement: Improved the performance and capabilities of the DLL hijacking detector in Behavioral Guard.
EPS-34276 Enhancement: Improved performance of Behavioral Guard scripts processing to make the same script not re-evaluated until a new version of signatures is available.
AHTP-23175 Enhancement: Removed Honey Pots that can be duplicated multiple times in a Terminal Server environment.
AHTP-23133 Disabled the Microsoft Outlook email sensor add-in for versions older than 2010. Previously the sensor was enabled but was not functioning.
EPS-33944 The dbgxshell process may hang due to a Forensic sensor.
Threat Emulation
AHTP-20982 Enhancement: Threat Emulation blade does not create copies of the inspected files while inspecting them. Instead, it uses the original file during the inspection process. This improves the Harmony Endpoint performance and the overall security of the endpoint.
AHTP-21868 Enhancement: Harmony Browse Static Analysis model updates will not require a service restart. Whenever there is a need to update a static-analysis mode, the service will continue running, keeping the endpoint secured during the entire update process.
Anti-Malware
EPS-33565 The Anti-Malware blade may attempt to update signatures while the signatures update process is already running.
EPS-33846 The initial signature update may not start after Clean install.
EPS-33781 The Anti-Malware engine may prevent malware, although operating in "Detect Mode".
Media Encryption
EPS-33884 Access to Business Data Tool (Offline Access Utility) fails when using the NTFS and exFAT filesystems for encrypted media.
UI
EPS-32076 The CCS policy state may show policy as disconnected although we only check for the connected policy.
Infrastructure
EPS-33678 Enhancement: Location Awareness can be used with inner sources that respond to HTTP and HTTPS.
EPS-33756 Push Operations may fail when a very large payload is used.

Endpoint Security Clients Downloads

Show / Hide this section
Important:
  • Starting from E80.85, Harmony Endpoint improves coverage of malicious threats by sending anonymized Incident related data to the Check Point Threat Cloud. This feature is turned on by default. For more information, including how to disable this feature, refer to sk129753.
  • To support SmartLog or SmartView Tracker reporting with Endpoint Security Clients for all supported servers (except R80.20), you must update the log schema. Follow instructions in sk106662.

Endpoint Security E85.30 Clients

Platform Package Description Links
Windows
Endpoint Security Clients for Windows OS - Dynamic package (Recommended, with R80.40 and higher):
Complete Endpoint Security Client for any CPU (32bit or 64bit). This is a self-extracting executable EXE file with all components (Blades) to be used as Dynamic package with R80.40 and higher.
(EXE)
Initial client:
Initial client is a very thin client without any blade used for software deployment purposes.
(ZIP)
Package Description 32bit 64bit
A package that includes Endpoint Complete package:
  • Desktop FW and Application Control
  • Anti-Malware
  • Forensics and Anti-Ransomware
  • URL Filtering
  • Anti-Bot
  • Threat Emulation
  • Media Encryption and Port Protection
  • Full Disk Encryption
  • Compliance
  • Remote Access VPN
  • Capsule Docs 
(ZIP)  (ZIP)
A package that includes Endpoint Complete package with the exception of Anti-Malware:
  • Desktop FW and Application Control
  • Forensics and Anti-Ransomware
  • URL Filtering
  • Anti-Bot
  • Threat Emulation
  • Media Encryption and Port Protection
  • Full Disk Encryption
  • Compliance
  • Remote Access VPN
  • Capsule Docs 
(ZIP)  (ZIP)
Harmony Endpoint package:
  • Forensics and Anti-Ransomware
  • Anti-Bot
  • Threat Emulation
(ZIP)  (ZIP)
Full Disk Encryption and Media Encryption and Port Protection package:
Full Disk Encryption and Media Encryption and Port Protection package.
 (ZIP)  (ZIP)
Threat Prevention package:
  • Desktop FW and Application Control
  • Anti-Malware
  • Forensics and Anti-Ransomware
  • Anti-Bot
  • Threat Emulation
  • Compliance
(ZIP) (ZIP)
Package Description Links
Endpoint Security Clients for Windows OS - Full:
A zip file that contains all package permutations listed above (excluding Dynamic package and Initial client)
(ZIP)

Standalone Clients Downloads

Show / Hide this section
Note: These Standalone clients do not require Endpoint Security Server installation as part of their deployment.

E85.30 Standalone Clients

Platform Package Description Link
Windows E85.30 Remote Access Clients for Windows Remote Access VPN Client for SmartDashboard-managed clients (MSI)
E85.30 Remote Access VPN Clients - Automatic Upgrade file Remote Access VPN Client for automatic upgrade through the gateway. For SmartDashboard-managed clients only. (CAB)
E85.30 Remote Access VPN Clients for ATM Unattended Remote Access VPN clients, managed with CLI and API and do not have a User interface. (MSI)
E85.30 Remote Access VPN Clients for ATM - Automatic Upgrade file Unattended Remote Access VPN clients, managed with CLI and API and do not have a User interface for automatic upgrade through the gateway. For SmartDashboard-managed clients only. (CAB)
E85.30 Capsule Docs Standalone Client Capsule Docs package for environments that are managed by Capsule Docs Cloud Service. (EXE)
Capsule Docs PC Viewer Check Point Capsule Docs Viewer is a stand-alone client that lets you view documents that were protected through Capsule Docs. Get from: Capsule Docs Portal

Endpoint Security Server Downloads 

Show / Hide this section
Endpoint Security Server Package Link
R81.10 Endpoint Security Server R81.10 sk170416
R81  Endpoint Security Server R81 sk166715
R80.40  Endpoint Security Server R80.40 sk160736
R80.30  Endpoint Security Server R80.30 sk144293

Management Console Downloads

Show / Hide this section

Management Console for Endpoint Security Server

The SmartConsole for Endpoint Security Server allows the Administrator to connect to the Endpoint Security Server and to manage the new Endpoint Security Software Blades.

Latest Versions

Endpoint Security Server Package Link
R81.10 SmartConsole for Endpoint Security Server R81.10  (EXE)
R81  SmartConsole for Endpoint Security Server R81  sk170116
R80.40  SmartConsole for Endpoint Security Server R80.40  sk165473

Previous Versions

Endpoint Security Server Package Link
R80.30  SmartConsole for Endpoint Security Server R80.30 sk153153
R80.20  SmartConsole for Endpoint Security Server R80.20 sk137593
R77.30.03  SmartConsole for Endpoint Security Server R77.30.03 / E85.20 and higher (EXE)
R77.30  SmartConsole for Endpoint Security Server R77.30 / E85.20 and higher (EXE)
R80.10  SmartConsole for Endpoint Security Server R80.10 sk119612
R77.30 EP6.5  SmartConsole for Endpoint Security Server R77.30 EP6.5 / E85.20 and higher  (EXE)
R77.20 EP6.2 SmartConsole for Endpoint Security Server R77.20 EP6.2 / E85.20 and higher (EXE)
Note: The above packages include the Recovery Image of version 86.5.20.5

Utilities/Services Downloads

Show / Hide this section
Utilities

Platform Package Description Link
Windows Harmony Endpoint Remediation Manager for Administrators

The administrator utility contains the capabilities of the end-user utility plus these additional features:

  • Quarantine - Send files to quarantine. 
  • Delete - Use the Harmony Endpoint remediation service to delete a file. 
  • Import - Import a quarantined file from a different computer or location. Get the administrator utility from the release homepage
(EXE)
Capsule Docs Bulk Protection Services for Windows-based Servers and Workstations Capsule Docs Bulk Protection lets you manage file protection settings based on file locations and properties.  (EXE)
R77.30 DLP Gateway HF for Content-aware Capsule Docs protection (Mail attachments / Network locations)   (TGZ)

For more information about Capsule Docs Bulk Protection, refer to Capsule Docs Bulk Protection Services Reference Guide.

Full Disk Encryption Offline Management Tool

Platform Package Description Link
Windows Full Disk Encryption Offline Management Tool The Endpoint Offline Management Tool lets administrators manage offline mode users and give them password recovery and disk recovery. (TGZ)
Windows Full Disk Encryption Offline Management Tool (Japanese) The Endpoint Offline Management Tool lets administrators manage offline mode users and give them password recovery and disk recovery. (TGZ)

Known Limitations

Show / Hide this section
Issue ID Description
ESVPN-3031,
ESVPN-3028
After upgrade from E85.00, connect to the site fails with the "Failed to load virtual network adapter" error message. Refer to sk175605.

Show / Hide this section      
Document
Endpoint Security Server
R81.10 Release Notes
Endpoint Security R81.10 Administration Guide
Endpoint Security Web Management R81.10 Administration Guide
R81 Release Notes
Endpoint Security R81 Administration Guide
Endpoint Security Web Management R81 Administration Guide
R80.40 Release Notes
Endpoint Security R80.40 Administration Guide
R80.30 Release Notes 
Endpoint Security R80.30 Administration Guide
Endpoint Security Clients
E80.85 and higher Endpoint Security Client for Windows User Guide
E85.30 Endpoint Security Client for Windows Release Notes
sk164896 - Video: How to deploy and upgrade Endpoint Security Client?
Remote Access VPN Clients
E85.10 Remote Access Clients for Windows Release Notes
E80.72 and higher Remote Access Clients for Windows Administration Guide
Capsule Docs Client
E80.72 and higher Capsule Docs Plugin User Guide
Check Point Capsule Docs Viewer User Guide: Get from: Capsule Docs Portal
Capsule Docs Bulk Protection Services
Capsule Docs Bulk Protection Guide

Revision History

Show / Hide this section
Date Description
13 Sep 2021 First release of this document.

Give us Feedback
Please rate this document
[1=Worst,5=Best]
Comment