- Products
- Learn
- Local User Groups
- Partners
-
More
This website uses cookies. By clicking OK, you consent to the use of cookies. Click Here to learn more about how we use cookies.
- Products
- Learn
- Local User Groups
- Upcoming Events
- Americas
- EMEA
- Czech Republic and Slovakia
- Denmark
- Netherlands
- Germany
- Sweden
- United Kingdom and Ireland
- France
- Spain
- Norway
- Ukraine
- Baltics and Finland
- Greece
- Portugal
- Austria
- Kazakhstan and CIS
- Switzerland
- Romania
- Turkey
- Belarus
- Belgium & Luxembourg
- Russia
- Poland
- Georgia
- DACH - Germany, Austria and Switzerland
- Iberia
- Africa
- Adriatics Region
- Cloud Mates
- Eastern Africa
- Israel
- APAC
- Partners
- More
- ABOUT CHECKMATES & FAQ
- Sign In
- Leaderboard
- Events
Join Us for CPX 360
23-24 February 2021
Important certificate update to CloudGuard Controller, CME,
and Azure HA Security Gateways
How to Remediate Endpoint & VPN
Issues (in versions E81.10 or earlier)
IDC Spotlight -
Uplevel The SOC
Important! R80 and R80.10
End Of Support around the corner (May 2021)
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- CheckMates
- :
- Products
- :
- Mobile & Endpoint
- :
- Endpoint and SandBlast Agent
- :
- Endpoint on domain servers
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Joe_Matthews
Explorer
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
2018-03-19
05:52 AM
Endpoint on domain servers
anyone have experience running anti-malware, anti-bot, forensics and anti-ransomware and Threat emulation on domain servers like Active Directory, SQL server, terminal server, and file shares? I am thinking file shares and terminal server might be fine. Looking for any documentation or any feed back from anyone that has done this. Any folders to exclude (other than what Microsoft recommends for SQL).
- Tags:
- active directory
- sql
Reply
2 Replies
Kim_Moberg
Advisor
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
2018-03-19
11:37 PM
Joe,
I have only been using Microsoft recommendation when I should exclude files from being touched by the Endpoint Software.
Though I have had problems with how to exclude directories or files. Check Point did an upgrade of their documentation.. in their sk122706.
This guide will help you to exclude folder and and sub-folders and files
Will check which blades we use and get back to you.
Thanks
Kim
Best Regards
Kim
Kim
Reply
Kim_Moberg
Advisor
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
2018-03-20
12:20 AM
Joe,
With Endpoint on servers, with the version E80.71.0232, we run the following blades.
Anti-Malware
Sandblast Forensics, Remidiation and Anti-Ransomware
Sandblast Agent Anti-bot
Sandblast Agent Treat Extraction and Emulation
We have in the first place disabled the firewall, because we not able to control the firewall rules like in the secure gateway. We had create one policy with all the needed open ports or create one policy per server.
It is something we will dig into in the near future if time allow us to do so 🙂
Thanks
Kim
Best Regards
Kim
Kim
Reply
About CheckMates
Learn Check Point
Advanced Learning
WELCOME TO THE FUTURE OF CYBER SECURITY
©1994-2020 Check Point Software Technologies Ltd. All rights reserved.
Copyright
Privacy Policy
Facts at a Glance
User Center