Notes on Installation

If you have included the Remote Access VPN feature in the deployment package, make sure you meet the requirements below.

Network Requirements

• You have VPN Gateways that support Remote Access VPN and, if necessary, with the required Hotfix installed on them.

• If you configured tje Visitor mode to work on the TCP port 443 of a VPN Gateway, you must configure a different port for the Security Gateway's WebUI (by default, it works on the TCP port 443). Otherwise, the client cannot connect.

Keychain Requirements

• Only certificates issued by a public CA can be stored in the keychain password management system (double-click the PKCS#12 fil)e.

• For users to enter a certificate issued by the ICA into the keychain, they must complete the enrollment process. During enrollment, the client automatically enters the certificate into the keychain.

Important - You cannot enable the Media Encryption feature if the the Office Access Utility for Mac is installed

Uninstalling the Client on Mac

To uninstall the Endpoint Security client on Mac computers:

1. Open a Terminal window.

2. Run:

   sudo "/Library/Application Support/Checkpoint/Endpoint Security/uninstall.sh"

   • If the Endpoint Security Client was encrypted, the uninstall script first prompts for a login and a logout to disable FileVault. After decryption, the script continues to uninstall the client.

   • After you uninstall the Endpoint Security Client, you must reset the computer through SmartEndpoint on the Endpoint Security Management Server.

     See the Endpoint Security Server Administration Guide for your server version.