forcepoint endpoint solutions upgrade guide€¦ · guidelines for creating an anti-tampering...

v8.5.x

Upgrade GuideForcepoint™ Endpoint Solut ions

©2018 Forcepoint All rights reserved.10900-A Stonelake Blvd, Quarry Oaks 1, Suite 350, Austin, TX 78759, USAPublished 2018Updated October 31, 2018

Forcepoint and the FORCEPOINT logo are trademarks of Forcepoint. Raytheon is a registered trademark of Raytheon Company. All other trademarks used in this document are the property of their respective owners.This document may not, in whole or in part, be copied, photocopied, reproduced, translated, or reduced to any electronic medium or machine-readable form without prior consent in writing from Forcepoint. Every effort has been made to ensure the accuracy of this manual. However, Forcepoint makes no warranties with respect to this documentation and disclaims any implied warranties of merchantability and fitness for a particular purpose. Forcepoint shall not be liable for any error or for incidental or consequential damages in connection with the furnishing, performance, or use of this manual or the examples herein. The information in this documentation is subject to change without notice.

Contents

Chapter 1 Upgrading Forcepoint Endpoint Solutions . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1

Guidelines for creating an anti-tampering password . . . . . . . . . . . . . . . . . . . . . . . 2

Chapter 2 Upgrading Forcepoint Web Security Endpoint . . . . . . . . . . . . . . . . . . . . . . . . . 4

For hybrid web deployments . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5

Upgrade steps for Windows . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5Upgrade steps for Mac . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7

For cloud web deployments . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8

Upgrade steps for Windows . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8Upgrade steps for Mac . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9

For remote filtering deployments . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11

Upgrade steps for Windows . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11

Chapter 3 Upgrading Forcepoint DLP Endpoint . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12

Post endpoint upgrade . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13

Chapter 4 Upgrading Forcepoint Web Security Endpoint and Forcepoint DLP Endpoint Combined14

For hybrid Forcepoint Web Security Endpoint and Forcepoint DLP Endpoint deployments . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 14

Upgrade steps for Windows . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 14Upgrade steps for Mac . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16

For remote filtering and DLP deployments . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17

Upgrade steps for Windows . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17

Forcepoint Endpoint Solutions Forcepoint Endpoint Upgrade Guide i

Contents

Forcepoint Endpoint Solutions Forcepoint Endpoint Upgrade Guide ii

1

Upgrading Forcepoint Endpoint Solutions

Upgrade Guide | Forcepoint Endpoint | v8.5.x

Forcepoint endpoint solutions provide complete real-time protection against advanced threats and data theft for both network and roaming users. Forcepoint advanced technologies help you discover and protect sensitive data stored on endpoint machines and provide actionable forensic insight into potential attacks.

● Forcepoint offers three Forcepoint Web Security Endpoint options to protect users from web threats:

■ Forcepoint Web Security Direct Connect Endpoint: Requires a Forcepoint Web Security on-premises solution with the Web Hybrid module (Windows only) or Forcepoint Web Security with the Web Cloud module (Windows only).

■ Forcepoint Web Security Proxy Connect Endpoint: Requires a Forcepoint Web Security on-premises solution with the Web Hybrid module or Forcepoint Web Security with the Web Cloud module.

■ Remote Filtering Client: Requires Forcepoint URL Filtering with the Remote Filter module.

● Forcepoint DLP Endpoint protects organizations from data loss and data theft. It also identifies and helps secure sensitive data stored on corporate computers, including laptops. Requires Forcepoint DLP Network or Forcepoint Data Discovery.

This guide covers the following:

● Upgrading Forcepoint Web Security Endpoint, page 4

● Upgrading Forcepoint DLP Endpoint, page 12

● Upgrading Forcepoint Web Security Endpoint and Forcepoint DLP Endpoint Combined, page 14

For information on how to upgrade Remote Filtering Client, see Deploying the Remote Filtering Module.

ImportantAs a best practice, upgrade a handful of endpoint machines and ensure that they are working before upgrading all of the endpoint machines in your deployment.

Forcepoint Endpoint Solutions Upgrade Guide 1

http://www.websense.com/content/support/library/web/v85/remote_filtering/first.aspx

http://www.websense.com/content/support/library/web/v85/remote_filtering/first.aspx


Guidelines for creating an anti-tampering password

For security purposes, anyone who tries to modify or uninstall Forcepoint Endpoint software is prompted for an anti-tampering password. Anti-tampering passwords must follow the following guidelines:

● Contain at least one number (0-9)

● Contain at least one letter (a-z or A-Z)

● Be no more than 65 characters (Mac operating systems)

● Be no more than 259 characters (Windows operating systems)

Using special characters (Mac operating systems)

On Mac endpoint machines, you can use the following special characters within your password:

> < * ? ! [ ] ~ ` ' " | ; ( ) & # \ $

If you include special characters in your password, you must enclose the password in single quotation marks when you type the password into the command line prompt. Otherwise, the operating system will interpret the special character as a command and the password will not work.

● Correct: 'MyPa$$word1!'

■ Password contains special characters and is properly quoted.

● Incorrect: MyPa$$word1!

■ Password contains special characters and is not properly quoted.

When you type the password into a field on a screen (like the Package Builder) or web page (like the Forcepoint Security Portal), you should not enclose the password in single quotation marks.

Using special characters (Windows operating systems)

On Windows endpoint machines, you can use the following special characters within your password:

^ & < > |

If you use special characters within your password, you must include the ^ character before the special character when you type the password into the command line prompt. Otherwise, the operating system will interpret the special character as a command and password will not work.

● Correct: MyP^>ssword1^&

■ Special characters are prefixed by a ^ character.

● Incorrect: MyP>assword1&

■ Special characters are not prefixed by a ^ character.



When you type the password into a field on a screen (like the Package Builder) or web page (like the Forcepoint Security Portal), you should not include the ^ character before the special character.


2

Upgrading Forcepoint Web Security Endpoint


The following applies to Forcepoint Web Security Endpoint. If you are upgrading both Forcepoint Web Security Endpoint and Forcepoint DLP Endpoint, see Upgrading Forcepoint Web Security Endpoint and Forcepoint DLP Endpoint Combined, page 14.

Although this Endpoint software build is v8.5.0, it can be used in conjunction with Forcepoint products that are v7.8.4 and higher. You do not need to uninstall lower Endpoint versions before installing v8.5.0 if you are upgrading a Proxy Connect Endpoint to the new Forcepoint Web Security Proxy Connect Endpoint. However, if you are upgrading a Proxy Connect Endpoint to the new Forcepoint Web Security Direct Connect Endpoint, you must uninstall the Proxy Connect Endpoint before installing the Direct Connect Endpoint.

This section looks at the steps for upgrading Forcepoint Web Security Endpoint if you are using Forcepoint Web Security with the Web Hybrid module or Forcepoint Web Security with the Web Cloud module on a Windows or Mac operating system.

ImportantIf you upgrade endpoint machines to Windows 10 from any of the following operating systems after you upgrade the Forcepoint Web Security Endpoint, you must re-install the Forcepoint Web Security Endpoint software.

● Windows Vista

● Windows 7

● Windows Server 2012

● Windows Server 2016

ImportantEndpoint machines with TRITON AP-ENDPOINT Web v8.0.x may not upgrade directly to Forcepoint Web Security Endpoint v8.5.x. Upgrade v8.0.x endpoint machines to TRITON AP-ENDPOINT Web v8.3.x before upgrading to Forcepoint Web Security Endpoint v8.5.x.



● For hybrid web deployments, page 5

● For cloud web deployments, page 8

For hybrid web deployments

The following are upgrade steps for the Windows and Mac operating systems:

Upgrade steps for Windows

Option 1: Auto-upgrade

1. Log on to the Web module of the Forcepoint Security Manager.

2. Navigate to Settings > Hybrid Configuration > Hybrid User Identification.

3. Select Automatically update endpoint installations when a new version is released if you want to ensure that your endpoint machines have the latest version when it is available from the hybrid service.

4. Click OK to cache your changes. Changes are not implemented until you click Save and Deploy.

The setting is disabled by default, as most organizations like to control the software on the desktop themselves and test newer versions before deploying them. You may want to enable the option once you have tested the new Endpoint software so all users (including roaming users) get the latest software installed. Once they have all updated the Endpoint software, you can then disable updates again.

Note that while an Endpoint software update is taking place (which can take several minutes), end users will be unable to browse, but will be shown a web page stating that the Endpoint software is updating. This page will continue to retry the requested web page every 10 seconds until the Endpoint software has finished updating, and will then display the requested page correctly if the user is allowed to access this URL, or alternatively will display a block page.

Option 2: Download the new endpoint installation package from the Forcepoint Security Manager


Note

● The wepsvc service must be running on the endpoint machine for auto-update to run properly.

● You cannot use the auto-update feature in the Web module of the Forcepoint Security Manager to automate updates for combined Forcepoint Web Security Endpoint and Forcepoint DLP Endpoint deployments.




3. You must set an anti-tampering password to enable the package download links. For more information about creating an anti-tamper password, see Guidelines for creating an anti-tampering password, page 2.

4. Different Forcepoint Endpoint packages are available for 32-bit and 64-bit clients; select the appropriate package (or combination of packages) from the list provided.

5. Use the GPO command that is provided if you intend to deploy the Forcepoint Endpoint MSI package to client machines via GPO.

6. Restart the endpoint machine after installation is complete.

Option 3: Create a new endpoint installation package using the Forcepoint Endpoint Package Builder

1. On the management server, go to C:\Program Files (x86)\Websense\Web Security\DTFAgent\RemoteFilteringAgentPack, and launch the Endpoint Package Builder.

On Windows Server 2012, browse to the Start page and select the Endpoint Package Builder.

Or, download the latest Package Builder from the Forcepoint Support site:

a. Log on to My Account and select DOWNLOADS from the top menu.

b. Navigate to Forcepoint Web Security Endpoint, select a version, and then download and launch the Package Builder.

2. On the Select Endpoint Components screen, select Forcepoint Web Security Endpoint.

3. Under Forcepoint Web Security Endpoint, select Direct Connect Endpoint or Proxy Connect Endpoint.

4. Choose Windows 32-bit or Windows 64-bit when prompted.

5. Deploy the v8.5.x package to each endpoint machine using GPO, SMS, or a similar deployment method. You can install the v8.5.x Forcepoint Web Security Proxy Connect Endpoint on top of lower versions of the Proxy Connect Endpoint without uninstalling the lower versions. You must uninstall the lower version of the Proxy Connect Endpoint if you are upgrading to Forcepoint Web Security Direct Connect Endpoint.



https://support.forcepoint.com/MyAccount


Upgrade steps for Mac




3. Select Automatically update endpoint installations when a new version is released if you want to ensure that your endpoint machines have the latest version when it is available from the hybrid service.

4. Click OK to cache your changes. Changes are not implemented until you click Save and Deploy.

Option 2: Manual upgrade

1. On the management server, go to C:\Program Files (x86)\Websense\Web Security\DTFAgent\RemoteFilteringAgentPack and launch the Endpoint Package Builder.





NoteWindows Direct Connect Endpoint version numbers (8.5.3xxx) are different from the Proxy Connect Endpoint/DLP Endpoint version numbers (8.5.2xxx). All installation packages created through the Package Builder have a 8.5.2xxx version number, even if the package contains a Direct Connect Endpoint.

To verify that your Direct Connect Endpoint version number is correct, match the last three digits in the installation package to the version number listed in the Release Notes. For example, versions 8.5.3622 and 8.5.2622 are the same version (3622 is the stand-alone Direct Connect Endpoint and 2622 is the Direct Connect Endpoint installed from the Package Builder).

NoteThe wepsvc service must be running on the endpoint machine for auto-update to run properly.




3. Under Forcepoint Web Security Endpoint, select Proxy Connect Endpoint. The Direct Connect Endpoint option is not available for Mac endpoint machines.

4. Choose Mac when prompted.

5. When the wizard completes, unzip the TRITONAP-ENDPOINT-Mac.zip package onto your Mac systems.

6. Run the WebsenseEndpoint.pkg from the unzipped folder EndpointInstaller.

7. Follow the steps in the installation wizard.

8. End users may be prompted to log out and re-log on to their desktops.

For cloud web deployments

The following are upgrade steps for the Windows and Mac operating systems:



1. In the Forcepoint Security Portal, go to Web > Policy Management > Policies. Under the policy you wish to view, open the Endpoint tab.

2. Under Endpoint Installation and Enable automatic updates for these endpoint clients, select the Windows check box for either Proxy Connect or Direct Connect.

3. Click Submit.


1. Log on to My Account and select DOWNLOADS from the top menu.

2. Navigate to Forcepoint Web Security Endpoint, select a version, and then download the Package Builder.

3. The Forcepoint Endpoint Package Builder utility extracts required files and launches.










Option 3: Download a new endpoint installation package from the Forcepoint Security Portal

1. Customers with a full-cloud deployment (Forcepoint Web Security with the Web Cloud module) can log on to the Forcepoint Security Portal, and then navigate to Web > Endpoint > General to obtain the Forcepoint Endpoint installation package.

2. On that page, you have two types of Endpoint clients to choose from: Direct Connect and Proxy Connect. You can deploy a combination of Direct Connect and Proxy Connect Endpoint clients in your organization if desired; however, only one type can be installed on an individual endpoint machine.





For Mac operating system users, Forcepoint Endpoint can automatically deploy newer versions to browsers without involvement from desktop administrators.

1. In the Forcepoint Security Portal, go to the Endpoint tab in the Web policies section.

2. Under Endpoint Installation and Apply automatic updates for these operating systems, select the Mac check box.

3. In the Forcepoint Security Portal, go to Web > Policy Management > Policies. Under the policy you wish to view, open the Endpoint tab.

4. Under Endpoint Installation and Enable automatic updates for these endpoint clients, select the Mac check box for Proxy Connect. The Direct Connect Endpoint option does not support Mac endpoint machines.



5. Click Submit.

Option 2: Download the new endpoint installation package from the Forcepoint Security Portal

To upgrade Forcepoint Web Security Endpoint manually on a single machine, follow these steps for installing the latest version of Forcepoint Endpoint:

1. Go to Web > Settings > Endpoint.

2. Click Set Anti-Tampering Password to set the anti-tampering password if you have not already done so. For more information about creating an anti-tamper password, see Guidelines for creating an anti-tampering password, page 2.

3. Enter and confirm your anti-tampering password, then click Submit.

4. Under Endpoint Client Download, select the Proxy Connect Endpoint type, and then select Mac from the Platform drop-down menu.

5. Click on the version number to download the Forcepoint Endpoint zip file.

6. When you download Forcepoint Endpoint, it should include the WebsenseEndpoint.pkg file along with a file called HWSConfig.xml, which is specific to your account. This file needs to be in the same directory as the .pkg file for the Endpoint software to successfully install.

Note that if you wish to use Forcepoint Endpoint over port 80 for proxying and PAC file retrieval, you need to do the following before installing the Endpoint software:

■ Ask your Forcepoint Endpoint support representative to add the “Send HWS endpoint to port 80” template to your account. You can add this template to specific policies or globally.

■ Change the HWSConfig line from the following:

<PACFile URL=“http://webdefence.global.blackspider.com:8082/proxy.pac” />

to this:

<PACFile URL=“http://pac.webdefence.global.blackspider.com/proxy.pac” />

By applying this template, you will also move to port 80 any endpoint machines that are already installed.

7. Double-click the Forcepoint Endpoint package to open an introductory screen for the installer. Click Continue for step-by-step instructions on the installation process.

8. When you reach the “Standard install on Macintosh HD” screen, click Install to begin the installation process.

You must install Forcepoint Endpoint on the local hard disk. You can change the installation location on this screen by clicking Change Install Location ...




9. Enter a user name and password for a user with administrator rights to install the software.

If the installation process fails, check that the HWSConfig.xml file is present and is in the correct format if you have edited it.

10. A confirmation screen informs you if the installation is successful. Click Close.

For remote filtering deployments

If you are using Remote Filtering Client, use the following upgrade steps:


1. On the management server, go to C:\Program Files (x86)\Websense\Web Security\DTFAgent\RemoteFilteringAgentPack then launch the Endpoint Package Builder.

On Windows Server 2012, browse to the Start page and select the Endpoint Package Builder.





3. Under Forcepoint Web Security Endpoint, select Remote Filtering Client.


5. Deploy the v8.5.x package to each endpoint machine using GPO, SMS, or a similar deployment method. You can install v8.5.x on top of lower versions without uninstalling the lower versions.


For more information about using the Endpoint Package Builder and installing and deploying Forcepoint endpoint solutions, see Installing and Deploying Forcepoint Endpoint Solutions.



http://www.websense.com/content/support/library/endpoint/v85/installation.pdf


3

Upgrading Forcepoint DLP Endpoint


The following upgrade steps apply to Forcepoint DLP Endpoint. If you are upgrading a mixed deployment consisting of Forcepoint DLP Endpoint and Forcepoint Web Security Endpoint, see Upgrading Forcepoint Web Security Endpoint and Forcepoint DLP Endpoint Combined, page 14.

Although this Forcepoint Endpoint build is v8.5.0, it can be used in conjunction with Forcepoint products that are v7.8.4 and higher. You do not need to uninstall lower Endpoint versions before installing v8.5.0.

To upgrade your existing version of Forcepoint Endpoint:

1. Make sure you have a v7.8.4 or higher management server installed and functioning.

2. Make a backup copy of the Endpoint Package Builder executable file, WebsenseEndpointPackageBuilder.exe. This file is found at C:\Program Files (x86)\Websense\Data Security\client.

3. Download EndpointPackage84.zip, from My Account and unzip it into the same folder. Four files are placed in the directory: WebsenseEndpointPackageBuilder.exe, WebsenseEPClassifier.pkg.zip, EPA.msi, and EPA64.msi.

The exe file is for building the Forcepoint DLP Endpoint software package to install on your endpoint machines.

The zip file is a DLP endpoint classifier exclusively for Mac endpoints running Forcepoint DLP Endpoint.

Sites that are not running Forcepoint DLP Endpoint on Mac can ignore the WebsenseEPClassifier.pkg.zip.file.

The EPA.msi file is the endpoint classifier for Win32 endpoints.

ImportantEndpoint machines with TRITON AP-ENDPOINT DLP v8.0.x may not upgrade directly to v8.5.x. Upgrade v8.0.x endpoint machines to TRITON AP-ENDPOINT DLP v8.3.x before upgrading to Forcepoint DLP Endpoint v8.5.x.



Upgrading Forcepoint DLP Endpoint

Sites that are not running Forcepoint DLP Endpoint on Win32 machines can ignore the EPA.msi file.

The EPA64.msi file is the endpoint classifier for Win64 endpoint machines.

Sites that are not running Forcepoint DLP Endpoint on Win 64 machines can ignore the EPA64.msi file.

4. If you have Mac endpoint machines running Forcepoint DLP Endpoint:

a. Back up the file WebsenseEPClassifier.pkg.zip in the following folder: C:\Program Files (x86)\Websense\Data Security\client\OS X.

b. Copy the new WebsenseEPClassifier.pkg.zip from the folder in step 3 and place it into the \OS X folder.

You do not need to unzip this file.

5. If you have Win32 endpoint machines running Forcepoint DLP Endpoint:

a. Back up the file EPA.msi in the following folder:

C:\Program Files (x86)\Websense\Data Security\client.

b. Copy the new EPA.msi from the folder in step 2 and place it into


6. If you have Win64 endpoint machines running Forcepoint DLP Endpoint:

a. Back up the file EPA64.msi in the following folder:


b. Copy the new EPA64.msi from the folder in step 2 and place it into


7. Run WebsenseEndpointPackageBuilder.exe to generate a new Forcepoint DLP Endpoint installation package.

8. Deploy the v8.5.x installation package to each endpoint machine using one of the methods described in the Installation and Deployment Guide for Forcepoint Endpoint Solutions.


Post endpoint upgrade

The system provides both name and serial number for each endpoint device, as in "SanDisk Cruzer Blade; 4C530103131102119495".

An easy way to maintain compatibility with previous releases is to add an asterisk (*) to the end of each device name that you have listed in the Forcepoint Security Manager. For example, change "SanDisk Cruzer Blade" to "SanDisk Cruzer Blade*".

If you do not, rules related to the existing endpoint machines may not monitor or enforce the removable media channel as expected. Only exact matches generate an incident.




4

Upgrading Forcepoint Web Security Endpoint and Forcepoint DLP Endpoint Combined

grade Guide | Forcepoint Endpoint | v8.5.x
Up
The following instructions apply for mixed deployments involving upgrading both Forcepoint Web Security Endpoint and Forcepoint DLP Endpoint.

● For hybrid Forcepoint Web Security Endpoint and Forcepoint DLP Endpoint deployments, page 14

● For remote filtering and DLP deployments, page 17

For hybrid Forcepoint Web Security Endpoint and Forcepoint DLP Endpoint deployments

The following are the upgrade steps for the Windows and Mac operating systems:



To automate software updates for combined web and DLP endpoints:

1. Prepare a server with the latest updates on it (see “Configuring the auto-update server” for details).

2. Select Receive automatic software updates.

3. Specify the URL of the server you created. It cannot be secure HTTP (HTTPS).

ImportantEndpoint machines with TRITON AP-ENDPOINT DLP or Web v8.0.x may not upgrade directly to v8.5.x. Upgrade v8.0.x endpoint machines to TRITON AP-ENDPOINT DLP or Web v8.3.x before upgrading to v8.5.x.


http://www.websense.com/content/support/library/endpoint/v85/auto_update/first.aspx

http://www.websense.com/content/support/library/endpoint/v85/auto_update/first.aspx


4. Indicate how often you want endpoint machines to check for updates.


1. Launch the Endpoint Package Builder by doing one of the following:

■ On the management server, go to C:\Program Files (x86)\Websense\Web Security\DTFAgent\RemoteFilteringAgentPack and launch the Endpoint Package Builder.

■ On the Forcepoint DLP server, select the Endpoint Package Builder file from the Forcepoint folder in the Windows Start menu (Start > All Programs > Forcepoint).

■ Download the latest Package Builder from the Forcepoint Support site:



2. On the Select Endpoint Components screen, select both of the following:

■ Forcepoint Web Security Endpoint provides web security to your endpoint machines.

■ Forcepoint DLP Endpoint for data loss protection.















■ Forcepoint Web Security Endpoint provides web security to your endpoint machines.

■ Forcepoint DLP Endpoint for data loss protection.

3. Under Forcepoint Web Security Endpoint, select Proxy Connect Endpoint. The Direct Connect Endpoint option does not support Mac endpoint machines.

4. Choose Mac when prompted.

5. When the wizard completes, unzip the TRITONAP-ENDPOINT-Mac.zip package onto your Mac machines.

6. Run the WebsenseEndpoint.pkg from the unzipped folder EndpointInstaller.

7. Follow the steps in the installation wizard.

8. End users may be prompted to log out and re-log on to their desktops.

NoteWindows Direct Connect Endpoint version numbers (8.5.3xxx) are different from the Proxy Connect Endpoint/DLP Endpoint version numbers (8.5.2xxx). All installation packages created through the Package Builder have a 8.5.2xxx version number, even if the package contains a Direct Connect Endpoint.

To verify that your Direct Connect Endpoint version number is correct, match the last three digits in the installation package to the version number listed in the Release Notes. For example, versions 8.5.3622 and 8.5.2622 are the same version (3622 is the stand-alone Direct Connect Endpoint and 2622 is the Direct Connect Endpoint installed from the Package Builder).




For remote filtering and DLP deployments

The following are upgrade steps if you are using Remote Filtering Client and Forcepoint DLP Endpoint:







■ Forcepoint Web Security Endpoint

■ Forcepoint DLP Endpoint

3. Under Forcepoint Web Security Endpoint, select Remote Filtering Client.


5. Deploy the v8.5.x package to each endpoint machine using GPO, SMS, or a similar deployment method. You can install v8.5.x on top of lower versions without uninstalling the lower versions.

For more information about using the Package Builder and installing and deploying Forcepoint endpoint solutions, see Installing and Deploying Forcepoint Endpoint Solutions.

© 2018 Forcepoint





forcepoint endpoint solutions upgrade guide€¦ · guidelines for creating an anti-tampering...

Documents