cancel
Showing results for 
Search instead for 
Did you mean: 
Create a Post
Jeroen_Demets
Jeroen_Demets inside Endpoint Security Products 5 hours ago
views 954 6

Server OS support

Hi,I'm new to the EndPoint products and feel there is a strong focus on client OS's, but we also need support for server OS's.I don't find any sk listing which server OS's are supported and which blades are supported on them.Also there is the specific case of terminal servers (RDS or Citrix) where many users log on to one server. What is supported on those?Who can give more information about this?Thanks!Jeroen
Stuart_Green
Stuart_Green inside Endpoint Security Products yesterday
views 2065 5

Zero Phishing Exceptions

Hi,Is it possible to configure exceptions for Zero Phishing?This scenario exists where a customer doesn't want the Zero Phishing browser plugin to prompt for internal websites - i.e. ones behind their firewall on internal servers.Yes, I get that this introduces the scenario where they could be redirected to an external site masquerading as an internal site but asking the question anyway... TIA
Ozuser
Ozuser inside Endpoint Security Products yesterday
views 42 1

Checkpoint 81.10.7191 VPN client randomally pops up when laptop offline

We have recently deployed Win 10 1803 with Checkpoint 81.10.7191 VPN client on Domain connected laptops into our officeThe  VPN client has been packaged through SCCM.When the user is not on the network the Checkpoint VPN client will keep popping up with the screen as per attached screenshot.Is there a way to suppress this to only come up when actually trying to connect vi the VPN client on the end user machine? It becomes annoying when users are travelling and not in a WIFI or network environment.Have checked all the settings available via the GUI interface but there doesn't seem to be. Have also tried stopping the application from starting up on logon / reboot but it still will eventually startup on the machineIs there some sort of configurable file for the VPN client at all to suppress this?Thanks in advance for any help.. 
David_Ulloa
David_Ulloa inside Endpoint Security Products yesterday
views 248 2

ARM Processor Support

Dear Check Point R&D Group,Are there any plans to add Endpoint Security support on devices running ARM processors. A good example is the new Microsoft Surface PRO X which uses the Microsoft SQ1 processor and runs on Microsoft Windows 10.The device runs beautifully smooth and fast, I got all of the typical work software (MS Office, MS SQL Management Studio, etc.) Using the Check Point Capsule Connect to connect to the VPN.The device is a perfect desktop/laptop replacement for most users (Supervisor and above).Cheers.     

New mechanism for inspecting files

According to sk144293, one new feature brought by R80.30 is the following:"Endpoint and Network compatibility including a new mechanism that inspects files just once, either by the Security Gateway or by the Endpoint Client, eliminating redundancy."Could somebody please clarify for me what that mechanism is as I struggle to find it in the R80.30 admin guide.Many thanks.
DRC
DRC inside Endpoint Security Products Thursday
views 103 2

Error 0x5001604 (0) when write response in FDE, so no decrypt volume

Hello, I have my hard drive with Windows problems, so I am using the FDE booting thru USB, I have the challenge and response.When write the correct response and click OK button, an error appears and the drive is not decrypted. I tryed in different computers and is the same problem. Why happen this? what is the solution?Thank you for your help in advance
Hrvoje_Brlek
Hrvoje_Brlek inside Endpoint Security Products Wednesday
views 402 9

Enable any port on Register to Hotspot (SmartEndpoint or Global Properties)

Hi,We are using Endpoint Security clients from E80.87 to E82.10, on approximately 1000 users. Our firewall gateway is on version R80.30, and our Endpoint Security Management Server is also on R80.30 (with two external Endpoint Policy Servers). As we have a lot of roaming users we need the ability to use the Register to Hotspot functionality with all ports open during the registration.I followed the sk41586 and defined the any_port through GuiDBedit tool, and applied it on the Global Properties (see attachment below) on the firewall gateway. But, as we are using the SmartEndpoint console, there is also the ability to define the ports to be used for Hotspot registration (Policy -> Allow hotspot registration). How can I define the any_port through SmartEndpoint, what value do I have to use (see attachment below)? There is no description in the admin guide what to use for any port if you define it through SmartEndpoint. And the thing that confuses me the most. What configuration will be applied on the client side when connected to VPN, the one defined on the gateway in Global Properties or the one defined in the SmartEndpoint Policy? Below is the configuration I get in trac.config when I connect to the VPN:<PARAM fw_hotspot_ports="&lt;any_port>"></PARAM><PARAM fw_hotspot_ports="443"></PARAM><PARAM fw_hotspot_ports="80"></PARAM><PARAM fw_hotspot_ports="8080"></PARAM><PARAM fw_hotspot_ports="8080"></PARAM><PARAM fw_hotspot_ports="8444"></PARAM> Thanks,Hrvoje  
Employee+

Endpoint Security / SandBlast Agent Newsletter - Version – E82.00 for macOS GA

Hi all, We are happy to announce the release of Endpoint Security Client E82.00 for macOS to general availability. E82.00 introduce new functionalities and quality improvements. The complete list of improvements can be found in the version release’s Secure Knowledge sk158913   Support for macOS Catalina E82.00 support the macOS version 10.15 AKA Catalina   Forensic support SandBlast Agent Forensics enables automated data analysis for detailed insights into threats: Continuously collects run-time events and occurrences in the system for effective forensics analysis. Automatically builds actionable Forensics reports with important attack information. Generate the full attack flow and automated remediation. Ease the security analyst work with ability to fully understand the attack, its impact and remediation actions taken. Integrates monitoring and investigation of security events through SmartEvent and SmartLog   Additional enhancement: New user interface aligned with the look-and-feel of SandBlast Agent for Windows This release includes stability, quality and performance fixes   
ake_schmidi
ake_schmidi inside Endpoint Security Products Wednesday
views 3842 23

kernel panic macOS 10.15 Beta (19A526h) Catalina

Hello TogetherI have with the latest beta of macOS Catalina some kernel panics when macOS is starting up.Installed versions:Endpoint Security: E80.89macOS: 10.15 Beta (19A526h)Is there already a new version? Or does anyone have a workaround?

How URL filtering and Application control work in Checkpoint Firewall

Hello Everyone, I want to know about "how URL filtering and Application Control work in checkpoint Firewall:.  Thanks in advance!!!

Endpoint E80.89 on MacOS 10.15.2 - No Endpoint icon on top menu

We had a Mac returned to us running 10.12.6 and E80.64.  We decrypted and uninstalled Endpoint, upgraded MacOS to 10.15.2, then installed E80.89.Everything seems to be working except the padlock icon is not appearing in the top menu.  I can search for "Endpoint Security" and manually run it, then it does appear, but after a reboot it doesn't automatically load.I've built a few machines with both this version of Endpoint and OS before and not seen this, although I think this might be the first which had a previous version before.Perhaps something got left behind of the old version?  What would be the simplest way to ensure the icon gets loaded corretly for all users, without having to add the application as a startup item for each and every user, which would be tedious.The other thing I just noticed is that on a Mac that shipped with 10.15.1 installed, the icon does load and its menu has a "Connect" option.On the upgraded Mac, I can run Endpoint, with no "Connect" option, and cannot configure VPN from within the client either, but I can also manually run "Endpoint Security VPN", which then gives me two icons on the top menu!Howard

Blacklist

Is there a way to blacklist applications by filehashes? If so how do I do it. Thanks!
PBOON
PBOON inside Endpoint Security Products a week ago
views 261 3

Enforce Policy Firewall fail on MAC 10.15.2

I got the error message Enforce Policy Firewall fail while connecting to VPN on MAC 10.15.2 on Check Point Security Endpoint E82.00. Anyone face the same issue and how to solve this?
Sucream
Sucream inside Endpoint Security Products a week ago
views 127 1

Client information is missing in SmartEndpoint

Hello,We have problem with displaying EPS Client status in SmartEndpoint console.After upgrade Smart Endpoint Management (method:CPUSE) from R80.20 to R80.30 Endpoint Client status is missing in SmartEndpoint. We have problem with all clients.On the user host - EPS client status is compliant and all blades have been installed correctly. Tested with SmartConsole:R80_30_jumbo_HF_B36R80_30_jumbo_HF_B42 EPS client:-versions:   E81.10, E81.30, E82.00, E82.10, E82.20-blades: Anti-Malware, Compliance, Firewall, App Control Any ideas? Best,  
Sergo89
Sergo89 inside Endpoint Security Products 2 weeks ago
views 285 4

Endpoint Security VPN, remotely create site

Hello,do we have any way how to push a new VPN Site address to Endpoint Security clients (create it)? i know we can play with MSI file and trac.defaults, but endpoint client deployed on 500 computers already (we began from Endpoint and gateway should be next step).Advanced Package settings in SmartEndpoint looks like change MSI file also.And do we have any feature in SmartEndpoint for VPNs, because its part of client....please advise.thanks