14-December-2015

Endpoint Protector 4 – Product Update

(Version 4.4.0.9)

Server Version: 4.4.0.9

Improvements:

• SFTP Server has been added to the list of supported external storage locations for Logs, File Shadows and System Backups
• For a better user experience, several UI improvements have been made, including the ones below:
  • A faster way of deleting the Groups, Computers and/or Users’ dependencies has been added
  • The option to search for Applications in the Content Aware Protection policy builder has been added
  • The way in which CAP Policies are enforced on desired entities has been improved, allowing the admin to do this when the Policies are created
• The Offline Temporary Password section has been moved within the Endpoint Management section
• New Event Types have been added, including Policies Received and Uninstall Attempt
• Updated EasyLock 2 TD 1 version (has EPP site license fix for El Capitan)

Device Control

• A new right was added to allow access for TD Level 3 and set read only access to all other USB devices
• A new right for USB Modems has been added, allowing the option to block USB Modem if wired network connection is present

Content Aware Protection

• On Macs, files can now also be blocked (not just reported) for Controlled Transfers to Storage Devices
• The File Size Threshold has been added, providing the automatic block or report of all file transfers that exceed the specific size (in MB)
• Network Share Whitelists have been added, providing the option to create lists of network share addresses where the access or copy of confidential information will be allowed
• Custom Content Filename Blacklists have been added, allowing list of filenames (including extensions) to be automatically blocked
• New Controlled File Types have been added, including .PSD and .SID
• Added Poland and South Africa PIIs (Poland: SSN, ID and Tax ID, for South Africa: ID)

Bug fixes:

• Latest iCloud Drive version did not work on Windows. Fixed.
• Turning off local EPP logging and enabling logging into SIEM will cause, in some occasions, that newly added devices not being validated in the server. Fixed.

Mobile Device Management

• Enterprise Organization Information has been added, providing additional information for enrolled Android devices (Job Title, Office Name, Department, Team/Group, Ownership, etc.)
• Added an Employee ID field on the server credentials page, which will be sent to the server along with the server ID and the OTC.
• New Android application – version 1.2.1.1
• Manage WiFi and Hotspot settings for Android

Bug fixes:

• Asian specific characters are now properly displayed on the server

Windows Client Version: 4.4.9.6

Improvements:

• By default, until the first client-server communication, all access rights are set to allow
• New access right added – Allow Access if TD Level 3, otherwise Read Only
• New access right added – Block USB Modem if wired network connection is present (applies for USB Modem)
• Revised notifications’ translations for several languages

Bug fixes:

• Fix for the case sensitive dictionary matching option in CAP module
• Extraction of the text from PDF files failed sometimes when multiple ideographic characters were encountered. Fixed.
• PDF network share files were not scanned properly by the EPP client. Fixed.
• CAP File Whitelist for Outlook attachments was not working properly, fixed.
• "Exclude Extensions from Shadowing" was not working properly all the time, fixed.
• In some cases the Outlook attachments were not shadowed, fixed.
• Fix for the PDF files from ZIP archives that were not correctly blocked by the EPP client.
• In some situations the ignored mime types and file extensions were actually reported or blocked by the EPP client, fixed.
• When file tracing was enabled an error occurred when trying to save Microsoft Office documents on network locations with certain versions of Microsoft Office. Fixed.
• On rare occasions, some device control functionalities were disabled when the EPP client was trying to validate that a device is a keyboard. Fixed.
• Fix CAP monitoring and file tracing for card reader devices connected to a SD (Secure Digital) bus.

Mac Client Version: 1.4.7.4 (for MAC OS X: 10.6+)

Improvements:

• By default, until the first client-server communication, all access rights are set to allow
• New access right added – Allow Access if TD Level 3, otherwise Read Only
• Integrity checks are performed
• Revised notifications’ translations for several languages

Bug fixes:

• Fix for the case sensitive dictionary matching option in CAP module
• El Capitan USB device identification was not working properly in some situations (wrong vendor, vendor ID, product ID, serial number, etc). Fixed.
• In some cases, not all the partitions of the controlled devices were monitored for CAP content. Fixed.
• When an OTP for CAP was used successfully, it was possible that some files were still blocked by CAP (if those files were blocked also previously, before the password was used). Fixed.
• On rare occasions, devices that were disconnected were still displayed as connected in the EPP Notifier, until the system was rebooted. Fixed.

Android Application Version: 1.2.1.1

Improvements:

• Added an Employee ID field on the server credentials page, which will be sent to the server along with the server ID and the OTC.
• The report location screen now has 2 checkboxes. The user can choose to send the location only by GPS or by Network
• The location of the user is automatically sent to the server every 30 minutes

Bug fixes:

• Fixed calendar commands bugs
• Fixed Add WiFi command
• The location of the user is automatically sent to the server every 30 minutes
• Samsung devices no longer vibrate when the phone screen is unlocked
• Setting an empty password for a phone now clears the previously existing password and security policy