Deploying the Harmony Endpoint Client on a Terminal Server / Remote Desktop Service

Prerequisites

• Disable Windows Defender manually on the Terminal Server. For more information, see sk159373.

• Make sure you have the uninstall password for the Endpoint Security client. For more information, see .

Procedure

1. Install the Endpoint Security client package version E86.20 or higher to the Terminal Server. For more information, see .

2. Enable the Terminal Server mode on the Endpoint Security client through one of these methods:

   • Use the export package or Tiny Agent/ Initial Client:

     1. Open the Command Prompt window in Administrator mode and run:

        msiexec /i eps.msi TS=1 OR EndpointSetup.exe TS=1.

     2. Once Client is installed, open the Registry Editor and navigate to

        [HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\CheckPoint\Endpoint Security] and make sure that the value of the TSM key is dword:00000001.

   • Manually change the registry:

     1. Navigate to C:\Windows\Temp\<GUID> and run passdialog.exe file.

     2. When prompted, enter the uninstall password.

     3. Open Registry Editor and navigate to

        [HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\CheckPoint\Endpoint Security. Add a new TSM key with the value dword:00000001.

     4. Reboot the server.

3. Optional - By default, the Endpoint Security client is turned off in the notification area (system tray) for all the users logged on to the server. This is to prevent sending notifications for a specific user action. To turn on the Endpoint Security client icon in the notification area for a specific user:

   1. Remove Self-Protection: Run the passdialog.exe file.

   2. When prompted, enter the uninstall password.

   3. Navigate to C:\Program Files (x86)\CheckPoint\Endpoint Security\UIFramework\Bin\WUI and run the cptrayUI.exe file.