Endpoint | CheckMates

Sander Zumbrink in Endpoint1 week ago (Show more)

Join R80.10 FW mgmt and R77.30.03 Endpoint

Since the release of R80.20M1 it is possible to manage R80.10 firewalls and also Endpoint clients. I've been browsing through the release and installation notes, but I didn't find an answer for my question. We have a R80.10 single management environment for the gateways and a separate R77.30.03 enpoint security management server. The customer… (Show more)

4 repliesShow more activity

Dameon Welch Abernathy

(to Sander Zumbrink) 10 hours ago (Show more Show less)

At the moment, Migrating Endpoint into Network Management is a manual process that generally involves Professional Services. The complexity of the process depends on the blades in use, the policy, whether virtual groups are involved, etc., and requires testing in the lab. We plan to introduce a procedure that will be more automated in the…

Actions

Michel Leclerc in Endpoint1 month ago (Show more)

Windows Firewall Rules created by Endpoint Security

Hello, When Endpoint Security Client is installed two inbound rules are created in Windows Defender firewall with advanced security. These two rules are : - Check Point Endpoint Security VPN Service - Check Point Endpoint Security VPN GUI These rules allow any inboud traffic for TracSrvWrapper.exe and TrGUI.exe for all profiles (Domain,… (Show more)

3 repliesShow more activity

Günther W. Albrecht (to Michel Leclerc) 23 hours ago (Show more Show less)

sk102711: Tracsrvwrapper is one of the components of the Windows VPN client that is responsible for client side authentication and connection with VPN service. TrGUI is the Check Point Endpoint Security VPN GUI (see sk113492 and Task Manager). Uses for these rules that come to my mind would be EPS client updates (that could be enforced) and…

Actions

Jasper Oosterheert in Endpoint1 week ago (Show more)

Pull FDE information into SIEM

Hello Check Point community, I have a question regarding Endpoint security and FDE. We want to pull the following information from the endpoint management server (R77.30.03): Which machine has which authorized preboot users. We need to pull this information in a automated way and not use the SmartConsole GUI. I have searched the manuals… (Show more)

1 replyShow more activity

Dameon Welch Abernathy

(to Jasper Oosterheert) 4 days ago (Show more Show less)

As far as I know, Endpoint Management does not currently have CLI/API commands for querying most of the configuration. That said, assuming the information is logged, I assume as long as we export the relevant data, it would go to your SIEM. Can you describe a bit more about your environment and exactly what you're trying to accomplish?

Actions

Pedro De Padua in Endpoint7 days ago (Show more)

Endpoint R77.30

Hi, I have an Endpoint R77.30, but it doesn't start, after I put the credentials, they just charge to 100% and dissapear, justo doesn´t show nothing

1 replyShow more activity

Dameon Welch Abernathy

(to Pedro De Padua) 5 days ago (Show more Show less)

Are you starting about SmartEndpoint? You may want to get the TAC involved to properly troubleshoot this.

Actions

joe_h610eb437-3105-3469-bcbe-96fcfe8b05ec in Endpoint7 days ago (Show more)

End Point remediation scripts

Good day all. I wanted to reach out to see if anyone is aware of any community locations for sharing End Point Compliance Checks and Remediation scripts. Anyone know of any such sites? This would be helpful for users that would like to do things better. I will start by asking if anyone would know how best to use the End Point Push… (Show more)

1 replyShow more activity

Dameon Welch Abernathy

(to joe_h610eb437-3105-3469-bcbe-96fcfe8b05ec) 5 days ago (Show more Show less)

You're certainly welcome to share scripts here on CheckMates. So far I haven't seen anyone share these scripts here, though.

Actions

Pedro De Padua in Endpoint7 days ago (Show more)

VPN Site to site with certificate authentication.

Recently, in the Check Point MX Gaceta, a new video was uploaded about how to create a VPN Site to Site, with digital certificate authentication (Fast Track - VPN Site to Site con autenticación mediante Certificados Digitales - YouTube) and how a coincident, I was do it that scenario for a client a couple of days ago. For that reason I want to…

Enrique Alvarez Gil in Endpoint2 weeks ago (Show more)

webcheck

this blade is available on latest version of endpoint manager? how can i enable it over e80.85 cleints?

1 replyShow more activity

Dameon Welch Abernathy

(to Enrique Alvarez Gil) 1 week ago (Show more Show less)

Webcheck was deprecated a few years ago and is not available/supported on current versions.

Actions

Jasper Oosterheert mentioned Endpoint 1 week ago Show mention context

Pull FDE information into SIEM

Jasper Oosterheert mentioned Endpoint 1 week ago Show mention context

Pull FDE information into SIEM

Dan Roddy in Endpoint1 month ago (Show more)

Endpoint client policy updates

Greetings, We have 81 Windows 10 Surface Books all deployed with SandBlast Endpoint Agent. Many of these devices rarely are wired to the network. They connect and get all policy updates for every application we have deployed using Microsoft Direct Access with one exception: SandBlast Endpoint Agent. If the agent were to connect to the… (Show more)

6 repliesShow more activity

Marina Lachtarnik

(to Dan Roddy) 1 week ago (Show more Show less)

I will follow up.

Actions