Deploying the Endpoint Security Client on a Terminal Server / Remote Desktop Service

Prerequisites

  • Disable Windows Defender manually on the Terminal Server. For more information, see sk159373.

  • Make sure you have the uninstall password for the Endpoint Security client.

Procedure
  1. Install the Endpoint Security client package version E86.20 or higher to the Terminal Server.
  2. Enable the Terminal Server mode on the Endpoint Security client through one of these methods.
    • Use the export package or Tiny Agent / Initial Client:

      1. Open the Command Prompt window in Administrator mode and run:
      2. msiexec /i eps.msi TS=1 OR EndpointSetup.exe TS=1
      3. Once the client is installed, open the Registry Editor and navigate to: [HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\CheckPoint\Endpoint Security]. Make sure the value of the TSM key is dword:00000001.
    • Manually change the registry:

      1. Navigate to C:\Windows\Temp\<GUID> and run passdialog.exe.
      2. When prompted, enter the uninstall password.
      3. Open Registry Editor and navigate to: [HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\CheckPoint\Endpoint Security]. Add a new TSM key with value dword:00000001.
      4. Reboot the server.
  3. Optional – Turn on the Endpoint Security client icon in the notification area for a specific user.
    1. Run passdialog.exe.
    2. Enter the uninstall password.
    3. Run cptrayUI.exe from C:\Program Files (x86)\CheckPoint\Endpoint Security\UIFramework\Bin\WUI.