Q&A below the video, slides are attached below the Q&A.
Are there plans to integrate an option that would allow users themselves to say disable specific blade temporarily for troubleshooting purposes, rather than admin having to do it from the portal?
From a security perspective, this is not a good idea. Yet, if you have a compelling use case for this feature, feel free to open an RFE. We do offer the ability for the admin to disable blades on a specific workstation for troubleshooting purposes.
Are there plans on the roadmap to add ChromeOS as a supported/protected endpoint OS?
While the full Endpoint suite is not deployable on ChromeOS, Harmony Browse is.
Is this available for Harmony Endpoint on-prem as well or only for the cloud offering?
Cloud based capabilities are subsequently made available on premise where we have periodic releases as Jumbo Hot Fixes or new main train version.
Will the information used to create these dashboards be documented so it is easier to identify the relevant fields when creating comparable dashboards in a 3rd party SIEM?
Yes, we will add it to the admin guide.
I only need to protect a few laptops, say for my family. Can I still use Harmony Endpoint?
For personal or small business use, we offer similar functionality in our ZoneAlarm products.
Can I do vulnerability scanning on user-installed software?
At this time, we only support specific applications listed here: https://support.checkpoint.com/results/sk/sk181034
If you need support for other applications, please approach your local Check Point office with your requirements.
Safe to say that patch management/posture management will require a separate license?
Yes. Separate add-on license that can added / installed on an existing deployment with no additional software required
For patching, do we just load the patch/update of the intended application into endpoint and do a push operation?
This functionality is a collaborative capability with Ivanti and we leverage the Ivanti capabilities for patch / update of applications.
Can we use different vulnerability assessment, e.g. Qualys, or is this included in Harmony Endpoint? If yes, as of which version?
Not at this time. If you have a specific requirement for this, please approach your local Check Point office.
Are virtual patching capabilities planned?
Currently not, but we are considering it as part of the roadmap.
Is Posture Management available for on-prem Endpoint Management or only cloud?
Cloud Only for now, On-Prem will be added until the end of the year
Can we control the firewall on Linux machines (e.g. iptables)?
We are adding Firewall capabilities to Harmony Endpoint on Linux in a future release.
Will DLP be based on Capsule Docs?
Capsule Docs is End of Sale. We do plan to provide in 2024 some alternate file encryption capabilities as part of DLP functional scope to prevent data exfiltration.
Is there any plan to improve resources usage?
We are making ongoing improvements in this area.
What it interactive remote shell ?
Opening a secured, audited remote shell to a specific endpoint client.
Will be blades on E2 as in E1 agents able will be separated?
Yes. This is plan for work already in Q4 to allow individual selection of all capabilities currently in the TE blade.
For Server Security, will it be a new binary ? will the blade concept still be present?
The blades option will still be available. But we will add more security capabilities that are server specific.
Any plans to introduce inheritance in policies/rules?
Yes, this is in the roadmap.
Is there an ETA for SmartExclusions GA?
Expected by end of year.