To support SmartLog or SmartView Tracker reporting with Endpoint Security Clients for all supported servers (except R80.20 and higher), you must update the log schema. Follow instructions in sk106662.
Starting from E80.85, anonymized incident related data is sent to Check Point ThreatCloud, by default. See sk129753.
Enhancement: Accesses of Harmony Endpoint to the various reputation services are now cached. By that, the amount of access to the Check Point reputation services will be reduced, resulting in lower network bandwidth and a faster detection time.
Infrastructure
EPS-33382
Enhancement: Added the Repair option to the EPS.msi file created from the Exported Dynamic package.
EPS-34076
Super Node Server and Clients must use the same Anti-Malware version, in order to update signatures correctly. Currently, Super Node Server, may use same or newer Anti-Malware version.
EPS-34032
The schedule time of push operations is not converted to local time from UTC on the client. Instead, UTC time is set as local time without any necessary conversion.
EPS-29159
In rare scenarios, cpda.exe may unexpectedly exit.
Full Disk Encryption
EPS-34042
When using FDE pre-boot with a policy that enables TPM in Firmware Update Friendly mode, TPM integrity failure was incorrectly displayed in the FDE pre-boot when forcing reboots during the Windows boot process.
EPS-34832
In a rare scenario, after Bitlocker is deployed, the login into Windows may take longer than usual. This fix ensures the FDE credential provider is disabled before Bitlocker is turned on.
Anti-Bot and URL Filtering
AHTP-22808
Enhancement: Anti-Bot and URL Filtering logs now contain the exclusion instructions, which will assist the administrator in excluding the false-positive cases.
Anti-Malware
EPS-33443
In rare scenarios, Anti-Malware detection is handled correctly but not reported.
EPS-33920
The Anti-Malware Blade is not running after the clean install of Endpoint Security on Server 2008 R2.
Threat Prevention
AHTP-22872
Enhancement: Harmony Endpoint updater, which updates signatures and static analysis models, can now work with Super-nodes. If the user configures a Super-node, all downloads performed by the updater will be done through the Super-node.
AHTP-23262
Enhancement: Improved parsing of process signer information.
Network Protection
EPS-33679
In a rare scenario, a blue screen (BSOD) appears during the Endpoint Security Client upgrade process.
VPN
ESVPN-2885
Certificate check hardening: the Administrator can disable the "Trust and Continue" button in the certificate warning to prevent connection to non-manageable gateways. Refer to sk175243.
ESVPN-3031
After upgrade to E85.10 - E85.30, connect to the site fails with the "Failed to load virtual network adapter" error message. Refer to sk175605.
Starting from E80.85, Harmony Endpoint improves coverage of malicious threats by sending anonymized Incident related data to the Check Point Threat Cloud. This feature is turned on by default. For more information, including how to disable this feature, refer to sk129753.
To support SmartLog or SmartView Tracker reporting with Endpoint Security Clients for all supported servers (except R80.20), you must update the log schema. Follow instructions in sk106662.
Complete Endpoint Security Client for any CPU (32bit or 64bit). This is a self-extracting executable EXE file with all components (Blades) to be used as Dynamic package with R80.40 and higher.
Unattended Remote Access VPN clients, managed with CLI and API and do not have a User interface for automatic upgrade through the gateway. For SmartDashboard-managed clients only.
(CAB)
E85.40 Capsule Docs Standalone Client
Capsule Docs package for environments that are managed by Capsule Docs Cloud Service.
(EXE)
Capsule Docs PC Viewer
Check Point Capsule Docs Viewer is a stand-alone client that lets you view documents that were protected through Capsule Docs.
The SmartConsole for Endpoint Security Server allows the Administrator to connect to the Endpoint Security Server and to manage the new Endpoint Security Software Blades.
