This section shows the requirements for Endpoint Security clients, including supported operating systems and hardware requirements.
Microsoft Windows
Version |
Editions |
Arch. |
SPs or Updates |
Supported Features |
---|---|---|---|---|
10 (version 1803) 10 (version 1709) 10 (version 1703) 10 LTSB (version 1607) |
Enterprise |
32/64-bit |
|
All |
8.1 |
Enterprise |
32/64-bit |
Update 1 |
All |
7 |
Enterprise |
32/64-bit |
SP1 |
All |
Microsoft Windows Server
Version |
Editions |
Arch. |
SPs or Updates |
Supported Features |
---|---|---|---|---|
2016 (*) |
All |
64-bit |
|
Compliance, Anti-Malware, Firewall, SandBlast Agent features, Capsule Docs (Standalone Client) |
2012 |
All |
64-bit |
|
Compliance, Anti-Malware, Firewall, SandBlast Agent features, Capsule Docs (Standalone Client) |
2012 R2 |
All |
64-bit |
|
Compliance, Anti-Malware, Firewall, SandBlast Agent features, Capsule Docs (Standalone Client) |
2008 R2 |
All |
32/64-bit |
Microsoft update KB3033929 |
Compliance, Anti-Malware, Firewall, SandBlast Agent features, Capsule Docs (Standalone Client) |
(*) To support Endpoint Compliance rules you must install a server Hotfix. See sk122136.
VMware ESXi
Version |
Supported Features |
||
---|---|---|---|
5.1, 5.5, 6.0 |
All except: Full Disk Encryption and Media Encryption & Port Protection |
||
Note - If you install a client package with features that are not supported on the server, the installation succeeds but only the supported features are installed. |
The Endpoint Security client is available in these languages:
|
|
|
|
|
|
|
|
|
The minimum hardware requirements for client computers to run the Total Endpoint Security Package are:
Full Disk Encryption clients must have:
Note - During deployment of Full Disk Encryption on the client, the Full Disk Encryption service automatically defragments the volume to create the 32MB of continuous free space, and suspends the Windows hibernation feature while the disk is being encrypted. |
Clients must NOT have:
UEFI Requirements
The new UEFI firmware that replaces BIOS on some computers contains new functionality that is used by Full Disk Encryption. Full Disk Encryption in UEFI mode requirements are:
Unlock on LAN Requirements
To troubleshoot UEFI network connectivity, see sk93709.
UEFI "Absolute Pointer" Keyboard-less Tablet Touch Requirements
Support for Pre-boot touch input on tablets (64-bit) requires:
You can use sk93032 to test your device for touch support.
Self-Encrypting Drives (SED)
You can use Self-Encrypting Drives with Full Disk Encryption. The requirements are:
See sk108092 for a list of drives explicitly tested by Check Point.
See sk93345, to test a UEFI computer for compatibility with SED Opal encryption for Check Point Full Disk Encryption.
Support for TPM
The TPM is used to enhance security by measuring integrity of Pre-boot components. To use TPM, you must enable it in the Full Disk Encryption policy. This system requirement applies:
Storage Devices:
After Capsule Docs clients are installed, they work in all supported applications. The supported applications are: