We changed our name from IT Central Station: Here's why
2019-02-19T08:38:00Z

What needs improvement with Check Point Harmony Endpoint?


Please share with the community what you think needs improvement with Check Point Harmony Endpoint.

What are its weaknesses? What would you like to see changed in a future version?

ITCS user
Guest
3030 Answers

author avatar
Top 5LeaderboardMSP

We'd like it if the solution continued to add new features. For example, what would be specifically useful to us is a feature that allows threat hunting. They may be already working on that or have something available, however, we need something robust and effective. I'm not sure if they need to improve anything right now. They are already developing new aspects that are quite innovative. The only thing that our customers want, is lower prices.

2021-11-18T10:13:44Z
author avatar
Top 10Real User

The solution is mostly very good. The reason why I'm trying to compare it with FireEye is due to the fact that it's supposed to be a mandate by the State. We are trying to justify the fact that we don't need to change our environment. For example, if the only thing that they want is to provide reports for the State, then that's a different story. We can customize the reports based on what they're asking for. We don't need to change or want to, however, the State may require us to. Technical support can be a bit slow at times.

2021-10-20T00:52:14Z
author avatar
User

There needs to be compatibility with the most recent versions of the various operating systems. They need to be up-to-date with the signatures of new viruses and the latest ramsonware. With the encompassing of all its solutions in one platform, there should be artificial intelligence for specific analysis to thus be able to anticipate and detect unique risks to the organization. To be able to count on the administration console on any device and online cloud would be ideal. We would like there to be no need to install clients as executables.

2021-09-07T23:57:00Z
author avatar
Reseller

An additional feature I would like to see involves the VPN.

2021-07-28T07:30:45Z
author avatar
User

Tech Support must be better. Whenever we log a case for any issue it takes too much time to get it sorted. There should be escalation by default. If the case is not being sorted quickly, it must get internally escalated to the team who are experts and they should be empowered to jump in to get the issue fixed. Many times, we have to be on it for weeks to come to a proper resolution. Website blocking and endpoint levels are still a challenge and there needs to be a more sophisticated solution. We are looking forward to having this product work more efficiently.

2021-07-14T08:31:00Z
author avatar
Top 5LeaderboardReal User

Endpoint vulnerability management is one of the modules I believe is missing and it is something that is required. I recommend adding this feature in an upcoming release as it will provide complete visibility of endpoint vulnerabilities. Endpoint Patching is another good feature that could be added and is required to mitigate vulnerabilities. Currently, the DLP Module is not available and it is one of the requirements from an endpoint perspective. It would be good to add in an upcoming release. There needs to be improved integration with the on-premises/Azure AD. Software deployment needs to be added.

2021-07-13T21:22:00Z
author avatar
Top 20Real User

Technical support needs to be improved, along with the response time. The technical team or any product team should liaise with us and help to deploy the solution to the first few customers so that we can roll out to the rest of the customers. They need to improve the licensing process as well so that it is easier for the end user. At present, we have to wait one to two weeks to get a license, which is not productive. The process is not very smooth or convenient for the end user because Check Point Harmony Endpoint provides two login portals. One is for licensing, and the other is for management. In the future, I would like to the management portal and the licensing portal be integrated or changed to a single sign-on because that will be good for both the panel and the user. If they can make it very convenient for deployment and monitoring, it would be good. If we could get technical support in Singapore, then it will be helpful for our customers.

2021-06-11T14:03:38Z
author avatar
Top 5LeaderboardReal User

The Threat Hunting module is not available for on-premises deployment. The user has to connect using the VPN to take Policy Server updates when the solution is hosted on-premises. This adds overhead, as the user has to connect to the corporate network to get the policy. In the case of a hybrid setup where the Policy and Management Server is on the cloud, the Sandbox appliance has to be on-premises. Policy configuration and deployment are complex. The application control and URL filtering features are not very strong. Application Control databases are generated locally and it does not provide any visibility to the admin on which applications are installed on the endpoint. The solution is supported only on Windows and MAC and not any other platform.

2021-05-14T13:24:00Z
author avatar
Real User

The solutions agent could have better performance, it is a little slow sometimes.

2021-04-03T15:37:30Z
author avatar
Top 20Real User

The only two bug bearers of Check Point SandBlast that I have come across are as follows: Sometimes, the Cloud Management Portal can become unresponsive or take a long time to process a query. This in turn will cause the browser to freeze, which will require closing and reopening of your browser. The second is that getting useful "administrator" information requires digging into the policy rules via a second management agent installed on your computer. However, once installed, it is easy to navigate and use so is more of a slight inconvenience than a major issue.

2021-03-01T14:08:00Z
author avatar
Real User

We cannot integrate this product with other solutions, which is something that should be improved. I believe that it is in the roadmap. Other vendors have some non-security-related features in their endpoint protection solutions that should be implemented in this one.

2021-02-24T06:26:50Z
author avatar
Top 5Real User

I think some work needs to be done to improve the integration with other third-party products, namely SIEM solutions. We found it quite challenging. We found out the hard way that the configuration was lost when we version upgraded the management console.

2021-01-20T11:07:00Z
author avatar
Top 5LeaderboardReal User

As of now, product-wise, we haven't found any major concern that needs to improve, although it does not support full MDM and this is something that should be there.

2021-01-13T08:50:00Z
author avatar
Top 20Real User

We do like the product, although there are quite a few things that we're asking our Check Point account team to enhance, where we think we probably could get more features from it. We use a couple of Check Point products, like SmartEvent, and SandBlast Agent is not really integrated into that. We haven't gotten the reports working yet. We are working with the account team and trying. As I said, it's still relatively new in terms of what we're trying to achieve. We probably should have had more Professional Services come and help us. But, from our company's point of view, especially at this time in the market, the finances are just not there. But from what I've seen so far, I don't think there's enough integration into SmartEvent. That's something that I've asked our account team to try to focus on in the next versions or as an enhancement request. Integration and deployment are probably the weakest points, and maybe service as well, although they are still at the high end. Would we go out to market and buy this on its own? Probably not, is the honest answer. But because it is a Check Point product and the licensing comes as part of it, it gives us this time to go and prove that, when it's together with all the other products that we have from Check Point, it certainly integrates very well. Would I go and buy this just as a standalone service if we didn't have Check Point firewalls? Probably not.

2020-10-29T10:12:00Z
author avatar
Top 20Consultant

It needs more documentation and better ease of deployment. For documentation, it needs more information about integrating the endpoints on SandBlast Agent mobile as well as on desktop platforms.

2020-09-09T06:29:00Z
author avatar
Top 5Real User

Some of the less tech-savvy users sometimes find it difficult in adjusting and learning how to use the platform. In some areas, the user-communities that ought to help are not readily available. Perhaps in the future, the vendor ought to send a sales representative or a knowledgeable person to each buyer to assess how they are using the platform. In case of any challenges, they should help them in using the platform efficiently.

2020-09-03T12:00:00Z
author avatar
Top 5LeaderboardReal User

It is a very complete product but you have to know how to parameterize it well to avoid high CPU consumption. SandBlast Agent had moments in which it had a high load, we escalated it to the CheckPoint support that helped us to stabilize it. We had a problem with the parameterization of the solution. Once corrected by following the CheckPoint instructions, everything worked normally again. It is also missed that it does not have a Linux client since some administrators use this type of operating system.

2020-08-10T12:51:00Z
author avatar
Top 20Real User

There should be some way of managing this solution outside the organization's network, possibly with some type of remote access. For example, if I'm the admin of Check Point who manages the entire network, I would like to have access on my home device or maybe a mobile app to get reports, etc.

2020-08-04T07:26:00Z
author avatar
Real User

The solution could be improved in the future with a way to provide online training to customers for free, as other providers do. Ideally, it would be not only for this solution but for all of their systems. I found that there is no Check Point online training center and I think that is something vital for most of us as customers.

2020-08-03T15:33:00Z
author avatar
Top 5LeaderboardReal User

Stability. We know that Check Point has a very good database about threats even Check Point tries to make this EDR stable still there are some issues we were facing after upgrading or taking TAC to help its got resolved but Check Point really needs to work on metadata. Check Point agent to Server communication many times got interrupted or cloud-managed infinity portal dashboard gives many issues while creating policy or installing uninstalling agent or packages. Heavy load on the system gives issue which can be in a different manner.

2020-08-02T18:15:00Z
author avatar
Top 20Real User

As I understand there will be a URL filtering feature included with the browser agent in the future. This will allow URL filtering without the need for a Gateway Device. This is something I am looking forward to and would be a great addition to a list of features. The best improvement to the product that can be made is to make it less resource-intensive so it may work effortlessly on slower systems. The ability to push the Endpoint Client over the network without the use of 3rd party solutions would be an asset.

2020-07-27T16:52:00Z
author avatar
Real User

I would like to see simple sandboxing for malware analysis. But, they are not the leaders in this market. I would like to see virtual tasking as a feature.

2020-06-30T08:17:00Z
author avatar
Top 10Real User

The antivirus is not as friendly as other solutions and can be improved. We would like to have the ability to stop and restart the service remotely, which is something that we can do easily with Symantec but have a hard time with when using Check Point.

2019-12-23T07:05:00Z
author avatar
Real User

It isn't exactly the cheapest, but then it's Check Point. The price could be improved. I'd also love to see them add full MDM support, but I appreciate that that's not the product market. If it did come in, I'd be more than happy to look at additional modules. It was probably one of the easiest products I've ever had to deploy it, but if it's not capable of doing MD, then that's going to impact its usefulness to us.

2019-10-28T06:33:00Z
author avatar
Top 5Real User

I would like to see support for a policy in the appliance that will refuse to create a connection if it does not detect an active virus scanner. Two-factor authentication is missing from this solution.

2019-10-03T07:51:00Z
author avatar
Real User

The solution could improve VPN functionality and the VPN user-interface.

2019-09-05T05:37:00Z
author avatar
Consultant

One area of this product that has room for improvement is the disc encryption. I'd like to see a patch management solution like Kaspersky has. That's the only feature that's missing.

2019-05-29T10:40:00Z
author avatar
Top 5Real User

They should provide bandwidth regulation so we can monitor and regulate bandwidth.

2019-05-22T07:18:00Z
author avatar
Real User

The entire industry may move to the cloud, where we don't have to worry.

2019-03-31T09:41:00Z
author avatar
Top 10Real User

The remote deployment with Check Point Endpoint Security requires improvement. We have to depend on some of their deployment tools. I would like a dependable system endpoint protection management tool or remote deployment tool. The deployment on the remote client needs some type of tool to implement it.

2019-02-19T08:38:00Z
Learn what your peers think about Check Point Harmony Endpoint. Get advice and tips from experienced pros sharing their opinions. Updated: January 2022.
564,643 professionals have used our research since 2012.