WatchGuard Endpoint Security

Solutions for Business

ENDPOINT SECURITY AND MANAGEMENT WatchGuard EPDR WatchGuard EDR WatchGuard EPP

Protection
Protection against known and zero day malware   
Protection against known and zero day ransomware   
Protection against known and zero day exploits   
Anti-phishing protection  
Protection for multiple attack vectors (web, email, network, devices)   
Traditional protection with generic and optimized signatures   
Protection against advanced persistent threats (APTs)  
Zero-Trust Application Service  
Threat Hunting Service (indicators of attack)  
Queries to WatchGuard’s Cloud-based collective intelligence   
Behavioral blocking and IoA detection   
Personal and managed firewall  
IDS / HIDS  
Authorized software by hash or program properties  
Device control  
URL filtering by category (web browsing monitoring)  
Monitoring
Advanced endpoint security  
Cloud-based continuous monitoring of all process activity  
Data retention for one year for retrospective attack investigation  
Detection
Detection of compromised trusted applications  
Zero-Trust Application Service  
Fully configurable and instant security risk alerts   
Containment
Real-time computer isolation from the Cloud console  
Response and remediation
Ability to roll back and remediate the actions taken by attackers   
Centralized quarantine   
Automatic analysis and disinfection   
Shadow copies   
Ability to block unknown and unwanted applications  
U.S. SALES 1.800.734.9905 INTERNATIONAL SALES +1.206.613.0895 WEB www.watchguard.com WatchGuard Technologies, Inc. | 1
 ENDPOINT SECURITY AND MANAGEMENT WatchGuard EPDR WatchGuard EDR WatchGuard EPP

Investigation
Threat Hunting Service (indicators of attack)  
Incident graphs and lifecycle information available from the web console  
Ability to export lifecycle information for local analysis  
Advanced Visualization Tool (add-on)  
Discovery and monitoring of unstructured personal data across endpoints (add-on)  
Advanced attack investigation (Jupyter Notebooks)  
Attack surface reduction
Lock mode in the Advanced Protection  
Anti-exploit technology  
Block programs by hash or name (pe.: PowerShell)  
Device Control  
Web protection  
Automatic updates   
Automatic discovery of unprotected endpoints   
Patch Management for OS and third-party applications   
Security for VPN connections (requires Firebox)   
Endpoint security management
Centralized Cloud-based console   
Settings inheritance between groups and endpoints   
Ability to configure and apply settings on a group basis   
Ability to configure and apply settings on a per-endpoint basis   
Real-time deployment of settings from the console to endpoints   
Security management based on endpoint views and dynamic filters   
Ability to schedule and perform tasks on endpoint views   
Ability to assign preconfigured roles to console users   
Ability to assign custom permissions to console users   
Ability to customize local alerts   
User activity auditing   
Installation via MSI packages, download URLs, and emails sent to end users   
On-demand and scheduled reports at different levels and with multiple granularity
options   
Security KPIs and management dashboards   
API availability   
U.S. SALES 1.800.734.9905 INTERNATIONAL SALES +1.206.613.0895 WEB www.watchguard.com WatchGuard Technologies, Inc. | 2
 ENDPOINT SECURITY AND MANAGEMENT WatchGuard EPDR WatchGuard EDR WatchGuard EPP

Endpoint system management

System status reports at different levels and with multiple granularity options   
Modules
WatchGuard Data Control*  
WatchGuard Advanced Reporting Tool  
WatchGuard Patch Management   
WatchGuard Full Encryption   
WatchGuard SIEMFeeder  
High availability service   
Host platform certifications ISO27001, SAS 70 ISO27001, SAS 70

Supported operating systems

Supports Windows Intel   
Support for Windows ARM   
Support for macOS ARM   
Supports macOS   
Supports Linux   
Supports Android  
Supports iOS  
Support for virtual environments - persistent and non-persistent (VDI)**   
 Basic functionality only * WatchGuard Data Control is supported in the following countries only: Spain, Germany, UK, Sweden, France, Italy,
Portugal, Holland, Finland, Denmark, Switzerland, Norway, Austria, Belgium, Hungary, and Ireland.
 Full functionality
** Compatible systems with the following types of virtual machines: VMWare Desktop, VMware Server, VMware ESX,
VMware ESXi, Citrix XenDesktop, XenApp, XenServer, MS Virtual Desktop and MS Virtual Servers. WatchGuard EPDR
solution is compatible with Citrix Virtual Apps, Citrix Desktops 1906 & Citrix Workspace App for Windows.

Supported platforms and systems requirements of Watchguard EPDR

Supported operating systems: Windows (Intel & ARM), macOS (Intel & ARM), Linux, EDR capabilities are available on Windows, macOS, and Linux, with Windows being
iOS and Android. the platform that provides all the capabilities in their entirety.

Support to legacy systems starting in Windows XP SP3 and Server 2003. List of compatible browsers: Google Chrome, Mozilla Firefox, Internet Explorer,
Microsoft Edge and Opera.

U.S. SALES 1.800.734.9905 INTERNATIONAL SALES +1.206.613.0895 WEB www.watchguard.com WatchGuard Technologies, Inc. | 3
ADDITIONAL WATCHGUARD ENDPOINT SECURITY MODULES AND PRODUCTS

DNSWatchGO

DNSWatchGO is a Cloud-based service that provides domain-level

protection, content filtering, and integrated security awareness
WatchGuard
training to keep your users safe when they travel outside of Security Experts

your secure network perimeter. When critical alerts are seen,

WatchGuard’s team of security experts performs a tailored analysis Centralized
of the potential threat, following up with an easy-to-understand Policy
Simply point
accounting that includes detailed insights about the potential Firebox at
DNSWatch

infection. When a user clicks a malicious link, DNSWatchGO

4 3 2 1 0

automatically redirects them to a safe page and offers resources

that reinforce security education. All Devices
DNS Client

Client redirects DNS, adds company and group information

More information
DNSWatch behind Firebox DNSWatchGO Off-Premises

Advanced Reporting Tool

The Advanced Reporting Tool stores and correlates the information

Security
Application Data Access
related to process execution and its context extracted by Incidents
Control Control
Analysis
WatchGuard EPDR from endpoints. Automatically generates Advanced
security intelligence and provides tools that allow organizations to Real-Time Contextual Data Reporting
Dashboards
Alerts Analysis Tool
pinpoint attacks and unusual behaviors, detecting internal misuse
Enriched
of the corporate systems and network to go deeper in a security Events Advanced Reporting Platform

investigation.
WatchGuard EDR WatchGuard EPDR

More information

Data Control
Distribution of type of operation in Pll files
Data Control is an unstructured data security module, designed to
assist organizations in complying with data protection regulations,
Open 38,76
as well as discovering and protecting personal and sensitive data
Delete 10,02
both in real time and throughout its lifecycle on endpoints and Create 15,26
servers. Data Control discovers, audits and monitors unstructured Modify 38,60
personal data on endpoints: from data at rest to data in use and
data in motion.

More information *Data Control is available in the following countries: Spain, Germany, UK,
Sweden, France, Italy, Portugal, Holland, Finland, Denmark, Switzerland,
Norway, Austria, Belgium, Hungary and Ireland.

U.S. SALES 1.800.734.9905 INTERNATIONAL SALES +1.206.613.0895 WEB www.watchguard.com WatchGuard Technologies, Inc. | 4
Full Encryption
Encryption Status Computers Supporting Encryption
Full Encryption is an additional module for WatchGuard’s endpoint
protection and advanced adaptive security solutions, designed to
centrally manage full disk encryption and provide the following

63
Encrypted Computers
features: Full drive encryption and decryption, centralized
management and recovery of encryption keys, lists and reports and Disks By the User

centralized policy application. Computer

Unencrypted Partially

supporting encryption Authentication Method Applied

More information Enables No License Error Sec Processor Password

Installing
Error Disable SP+PW

SIEMFeeder

WatchGuard EDR and WatchGuard EPDR seamlessly integrate WatchGuard EPDR

events gathered from protected endpoints with existing corporate

SIEM solutions without additional deployments on user devices. SIEM
Monitored events are sent securely using the LEEF/CEF formats
Security Unknown Access to
compatible with most SIEM systems on the market either directly or

Panel SIEM
Incidents Processes Office Files Computers
with Operating
indirectly via plugins. System
Bandwidth Vulnerable Data Modifications
Usage Software Leakage

More information
Panel SIEM

WatchGuard distribution. Purchase and set up requires assistance from WatchGuard staff.

Patch Management

Patch Management is a module for managing vulnerabilities of ATTACK PROTECTION

the operating systems and third-party applications on Windows ADAPTIVE SECURITY ARCHITECTURE
workstations and servers.
PREDICT/ANTICIPATE PREVENT
It does not require the deployment of any new endpoint agents or
Discover vulnerabilites, Automate scheduled
management console as it is fully integrated in all of WatchGuard's pending patches and patching, replacement
updates. EoL applications of EoL applications
endpoint solutions. Plus, it provides centralized, real-time visibility CONTINUOUS
into the security status of software vulnerabilities, missing patches, VISIBILITY AND
ASSESSMENT
updates and unsupported end of life (EOL) software, and is easy to
install and monitor updates in real time. Patch all Contain attacks by
vulnerable endpoints patching in real time

RESPOND DETECT & CONTAIN

More information

U.S. SALES 1.800.734.9905 INTERNATIONAL SALES +1.206.613.0895 WEB www.watchguard.com WatchGuard Technologies, Inc. | 5
No express or implied warranties are provided for herein. All specifications are subject to change and any expected future products, features, or functionality will be provided on an/if and when available basis. ©2022
WatchGuard Technologies, Inc. All rights reserved. WatchGuard and the WatchGuard logo are registered trademarks of WatchGuard Technologies, Inc. in the United States and/or other countries. All other tradenames
are the property of their respective owners. Part No. WGCE67378_032222