Install the Policy Server from the Check Point NG AI CD-ROM or from a package off of the Check Point Web site.
Enable the Policy Server as an installed product in your firewall object.
Set the user group to use with the Policy Server in the Authentication tab of your firewall object.
Set up your desktop security rulebase and configure the global policy properties for desktop security.
If desired, configure desktop configuration verification to specify what should happen if the security policy is broken.
Add a client encrypt rule to the standard rulebase and edit the client encryption action properties.
Remote users can install SecuRemote/SecureClient directly from their Check Point NG AI CD-ROM.
The latest version of SecuRemote/SecureClient software can be obtained from Check Point at www.checkpoint.com/techsupport/downloads_sr.html.
You can use the SecureClient packaging tool to preconfigure SecureClient, and bundle it into a package that remote users can easily install.
When a remote user loads SecureClient, it automatically logs into the policy server and receives the most recent security policy.
SecureClient periodically logs into the policy server (approximately every 30 minutes) to check for any security policy updates, and send logs back to the policy server.
Users can also explicitly log in to the policy server through SecureClient.