This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Dan_Roddy
Collaborator
‎2018-07-09 09:58 AM
Jump to solution

Endpoint client policy updates

Greetings,

We have 81 Windows 10 Surface Books all deployed with SandBlast Endpoint Agent.  Many of these devices rarely are wired to the network.  They connect and get all policy updates for every application we have deployed using Microsoft Direct Access with one exception: SandBlast Endpoint Agent.

If the agent were to connect to the Endpoint Management Server by domain name, policy updates would just work.  Now for my question:  How can I make the E80.82 client connect to management using its internal DNS name?

I have asked TAC but not getting any traction, they don't know what Direct Access is.

Best regads & thank you in advance,

Dan Roddy

1 Solution

Accepted Solutions
Marina_Lachtarn
Employee Alumnus
Employee Alumnus
‎2018-08-08 08:47 AM
Jump to solution

Hi Dan,

In one of upcoming releases of Endpoint Management and Endpoint Client we are planning to provide this ability built in the product.

Meanwhile for having workaround please open a Support ticket and ask to get a workaround from R&D to connect with FQDN. The configuration is not very convenient yet but you will be able to test it as a workaround in your environment before we release it officially with convenient configuration. 

View solution in original post

7 Replies
PhoneBoy
Admin
Admin
‎2018-07-13 03:43 AM
Jump to solution

Why not by internal IP address?

0 Kudos
Dan_Roddy
Collaborator
‎2018-07-17 12:16 PM
In response to PhoneBoy
Jump to solution

Microsoft Direct Access uses the Name Resolution Policy Table (NRPT) to address resources inside the domain, therefore the dns name must be used by the client.

Dan_Roddy
Collaborator
‎2018-08-08 07:52 AM
In response to PhoneBoy
Jump to solution

OK, can I edit the IP and replace it with dns name?

0 Kudos
Marina_Lachtarn
Employee Alumnus
Employee Alumnus
‎2018-08-08 08:47 AM
Jump to solution

Hi Dan,

In one of upcoming releases of Endpoint Management and Endpoint Client we are planning to provide this ability built in the product.

Meanwhile for having workaround please open a Support ticket and ask to get a workaround from R&D to connect with FQDN. The configuration is not very convenient yet but you will be able to test it as a workaround in your environment before we release it officially with convenient configuration. 

Dan_Roddy
Collaborator
‎2018-08-09 03:34 PM
In response to Marina_Lachtarn
Jump to solution

Thank you Marina, I opened a case: SR # 3-0511850271 but I don't think it was sent to R&D, how can I tell?

0 Kudos
Marina_Lachtarn
Employee Alumnus
Employee Alumnus
‎2018-08-12 01:06 AM
In response to Dan_Roddy
Jump to solution

I will follow up.

0 Kudos
Dan_Roddy
Collaborator
‎2019-01-17 11:32 AM
In response to Marina_Lachtarn
Jump to solution

Hi Marina,  I am checking back with you to see if support for IPv6 has been built in to EP clients to get policy updates through Microsoft Direct Access.  EP is the only security client in our environment that is not currently working in this regard.

Thank you,

Dan Roddy

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events