Optimizing the Harmony Endpoint Security Client for Servers and Profiles

Servers such as exchange servers, database servers, domain controllers, and additional profiles like Exclude ConnectWise and Not a Virus need specific settings in the Harmony Endpoint Security client for proper data security and processing (allowing and blocking).

To automatically apply these specific optimization settings to the Harmony Endpoint Security client when installed on a server, follow these steps:

Select the "EndPoint for Server Optimization" option for the policy rule Set of traffic parameters and other conditions in a Rule Base (Security Policy) that cause specified actions to be taken for a communication session..
Specify the servers for which you want to select this option.

This action assigns the Windows server roles to the server and profile roles to the additional profiles, containing pre-defined exclusions (based on Microsoft and Check Point's recommendations) and server-specific processes applied by the policy.

Supported servers:

Domain Controller
Exchange Server
SharePoint 2007
SharePoint 2010
SharePoint 2013
SharePoint 2016
SQL Server
Terminal Server
DHCP Server
DNS Server
File Server
Hyper-V
Web Server (IIS)
Print Server

Additional Profiles:

Exclude ConnectWise
Not a Virus
Not a Virus TE
Not a Virus AM

Notes :

This is supported only with Harmony Endpoint Security Client Application installed on end-user computers to monitor security status and enforce security policies. version E86.60 and higher.
Oracle servers are not supported.

To automatically optimize the Harmony Endpoint Security client for a server:

Go to Policy > Threat Prevention > Policy Capabilities.
Select a policy rule.
In the Capabilities & Exclusions pane > EndPoint for Server Optimization, select On.
Click Choose the relevant roles to optimize the EndPoint for your servers, and select the servers.
Click OK.
Click Save.
Click Install Policy.