Installing Endpoint Security

The Network Security Management Server can also be an Endpoint Security Management Server.

Installing Endpoint Security Servers:

Use the installation instructions in this guide to install Security Management Servers. You can enable the Endpoint Security Management Server after the Security Management Server installation is completed.

To enable an Endpoint Security Management Server:

1. In SmartConsole, open the Security Management Server object.
2. Enable the Endpoint Policy Management blade.
3. In SmartConsole, install policy.

Check Point Cloud Services for Endpoint:

After the Endpoint Security Management Server is enabled on the Security Management Server, these components communicate with the Check Point cloud services:

• Endpoint Anti-Malware Software Blade – Downloads updates from the Check Point Malware Update Server. These updates are mandatory for the correct functioning of the Anti-Malware Software Blade. Preventing these updates causes severe security issues, because the blade does not operate with the latest malware information database.
• Endpoint Anti-Malware Software Blade – Sends suspected malware to the Check Point ThreatCloud Server. These updates increase the accuracy of malware detection by Check Point Endpoint Security clients and Check Point Security Appliances. To turn them off, modify the Anti-Malware rule in the Organizational Security Policy in SmartEndpoint.
• Endpoint Application Control Software Blade – Downloads information about classified known applications from the Check Point ThreatCloud Server and sends unknown applications for analysis. These updates are mandatory for the correct functioning of the Endpoint Application Control Software Blade. Without these updates, the blade is unable to classify malicious applications and automatically distinguish between them and non-malicious ones.

To enable an Endpoint Policy Server:

1. Use the instructions in this guide to install a Log Server.
2. Connect from SmartConsole to the Endpoint Security Management Server.
3. Create a new Log Server object.
4. Enable the Endpoint Policy Management and Logging & Status management Software Blades.
5. Install policy

Services Connection Port on an Endpoint Security Management Server:

When you enable the Endpoint Policy Management blade on a Security Management Server, the connection to these services automatically changes from the default port 443 to port 4434:

Service	URL
Gaia Portal	Default	https://<Gaia IP Address>
	New	https://<Gaia IP Address>:4434
SmartView Web Application	Default	https://<Management Server IP Address>/smartview/
	New	https://<Management Server IP Address>:4434/smartview/
Management API Web Services	Default	https://<Management Server IP Address>/web_api/<command>
	New	https://<Management Server IP Address>:4434/web_api/<command>

If you disable the Endpoint Policy Management blade, the services connection port automatically changes back to the default 443.

Disk Space for Endpoint Security:

We recommend that you have at least 10 GB available for Endpoint Security in the Root disk partition. Client packages and release files are stored under the Root partition.

The files include:

• 4 GB - Security Management Server installation files.
• 2 GB or more - Client files (each additional version of client packages requires 1GB of disk space).
• 1 GB - Logs.
• 1 GB - High Availability support (more can be required in large environments).

Note - To make future upgrades easier, we recommend that you use a larger disk size than necessary in this deployment.