Support Center > Search Results > SecureKnowledge Details
Enterprise Endpoint Security E86.20 macOS Clients Technical Level
Solution
  • New Features
  • Endpoint Security Clients Downloads
  • Standalone Clients Downloads
  • Utilities/Services Downloads
  • Native Encryption Management Hotfix Downloads
  • Management Console Downloads
  • Known Limitations
  • Documentation

Notes:


Click Here to Show the Entire Article

List of New Features in E86.20 for macOS 

Show / Hide this section

New Features

Description
Endpoint Security Clients support for macOS Monterey (12) is now in General  Availability status.
Software Deployment feature is now in General  Availability status. It supports Endpoint Security Clients version E84.70 or higher and Endpoint Security Management Server version R81.10 or higher.
Added Initial Client. This is a small size client (~20MB) which can be exported from the management server, allowing easier initial deployment of Endpoint Clients in the organization. After installing the initial client, the full client is downloaded & installed according to the deployment policy set in the management.
The Port Protection Early Availability feature is optimized, see sk176366 for more details.
The following new push operations are supported for Endpoint Client for macOS in this release:
  • Collect Logs - Upload file to Check Point FTP server
  • Kill process
  • Uninstall client
  • Reboot machine
  • Shutdown machine
  • Scan for malware (AM)
  • Update signatures (AM)
  • Restore quarantined files (AM)
  • Analyze by indicator (EFR)
  • File Remediation (EFR)
Added AM on access performance improvements.
Added macOS Endpoints support for Threat Hunting.  Users can now view Process, File and Network connect events from Mac clients in Check Point Infinity Portal.
Standalone VPN Client for macOS can now be installed without Firewall blade.
Added support for Location Aware Connectivity (Early Availability). Remote Access Clients can now intelligently detect whether or not they are inside the VPN domain (Enterprise LAN), and automatically connect or disconnect as required. When the client is detected within the internal network, the VPN connection is terminated. If the client is in Always-Connect mode, the VPN connection is established again when the client exits this mode.
Remote Access Clients for macOS can now use the following cypher suites from TLS1.2 while creating VPN site:
  1. TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
  2. TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
  3. TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
  4. TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256


Endpoint Security Clients Downloads

Show / Hide this section

Endpoint Security E86.20 Clients for macOS  

Platform Package Link
macOS Check Point Endpoint Security Client for macOS  (ZIP)
macOS Check Point Endpoint Security Client for macOS (without Capsule Docs and Advanced Threat Prevention blades) (ZIP)


Standalone Clients Downloads

Show / Hide this section
Note: These Standalone clients do not require Endpoint Security Server installation as part of their deployment.

E86.20  Standalone Clients for macOS

Platform Package Link
macOS Endpoint Security VPN Clients for macOS - Disc Image (DMG) (DMG)
Endpoint Security VPN Clients for macOS - Automatic Upgrade package (PKG) (PKG)
Endpoint Security VPN Clients for macOS - Signature for automatic upgrade (signature)

Capsule Docs E86.20  Clients

Platform Package Link
macOS Capsule Docs Mac Editor (PKG)


Utilities/Services Downloads

Show / Hide this section
Platform Package Link
macOS E86.20 Media Encryption Offline Access Tool (DMG)


Native Encryption Management Hotfix Downloads

Show / Hide this section
If you want to use the new Native Encryption Management, download the relevant hotfix.

Note: In order to download some of the packages you will need to have a Software Subscription or Active Support plan.

The packages provided below are Legacy CLI packages (not CPUSE packages).
 

Endpoint Security Server Package Link
R77.30.03 R77.30.03 Server Hotfix for Native Encryption Management  (TGZ)
R77.20 EP6.2 R77.20 EP6.2 Server Hotfix for Native Encryption Management  (TGZ)
Important: The Native Encryption Management Hotfix is integrated into R80.20


Management Console Downloads

Show / Hide this section

Management Console for Endpoint Security Server

The SmartConsole for Endpoint Security Server allows the Administrator to connect to the Endpoint Security Server and to manage the new Endpoint Security Software Blades.

Endpoint Security Server Package Link
R81.10 SmartConsole for Endpoint Security Server R81.10 sk175188
R81 SmartConsole for Endpoint Security Server R81 sk170116
R80.40 SmartConsole for Endpoint Security Server R80.40 sk165473
R80.30 SmartConsole for Endpoint Security Server R80.30 sk153153
R80.20 SmartConsole for Endpoint Security Server R80.20 sk137593
R77.30.03 SmartConsole for Endpoint Security Server R77.30.03 / E80.89 (EXE)
R77.20 EP6.2 SmartConsole for Endpoint Security Server R77.20 EP6.2 / E80.89 (EXE)


Known Limitations

Show / Hide this section
Issue ID Description
- When Endpoint Security Client is installed on a M1 Mac, an upgrade from macOS 11.2 (or earlier) to macOS 11.3 requires an additional reboot to start the Endpoint Security Client.
ESVPN-2727,
ESVPN-2699
Some DNS queries fail after waking up from sleep mode on macOS BigSur with Remote Access VPN clients. See sk176383.


Documentation

Give us Feedback
Please rate this document
[1=Worst,5=Best]
Comment