Launching soon: The world's first vendor agnostic bug scrubLearn more & join waitlist
OPERATIONAL DEFECT DATABASE
...
...
This article covers the system requirements for installing the VMware Carbon Black Cloud Endpoint sensor. Affected Products: VMware Carbon Black Cloud Endpoint Affected Operating Systems: WindowsMacLinux
Not applicable.
The VMware Carbon Black Cloud Endpoint sensor has specific Software, Hardware, Network, and Anti-virus requirements. Click the appropriate tab for more information. Software Hardware Network Anti-virus Click the appropriate operating system tab for specific platform software requirements. Windows General Requirements: Local Administration rights for installation Internet Browser: Mozilla Firefox, Google Chrome, and Microsoft Edge Click the appropriate VMware Carbon Black Cloud Endpoint version for additional software requirements. For more information, reference How to Identify the VMware Carbon Black Cloud Endpoint Sensor Version. v3.7 and Later Operating Systems (64 and 32 bit): Desktop: Windows 111Windows 101 v21H2 (November 2021 Update)v21H1 (May 2021 Update)v20H2 (October 2020 Update)v2004 (May 2020 Update / 20H1)v1909 (November 2019 Update / 19H2)v1903 (May 2019 Update / 19H1)v1809 (October 2018 Update / Redstone 5)v1803 (Spring Creators Update / Redstone 4)v1709 (Fall Creators Update / Redstone 3)v1703 (Creators Update / Redstone 2)v1607 (Anniversary Update / Redstone)v1511 (November Update / Threshold 2) Windows 10 Long-Term Servicing Channel Windows 10 Enterprise LTSC 2019Windows 10 Enterprise LTSC 2016Windows 10 Enterprise LTSC 2015 Windows 8.1 SP1Update 2Update 1 Windows 8 SP0 Windows 72 SP1SP0 Server: Windows Server 20193Windows Server 20163 SP0 Windows Server 2012 R23 SP0 Windows Server 20123 SP1SP0 Windows Server 2008 R223 SP1SP0 1Unlisted Windows feature updates are not supported. For a status on all feature updates, reference Dell Data Security / Dell Data Protection Windows Version Compatibility.2Requires Microsoft KB Update 4474419 (https://support.microsoft.com/help/4474419 ) and 4490628 (https://support.microsoft.com/help/4490628 ). For more information about this requirement, reference SHA-1 Signing Certificate Expiration and Deprecation on Dell Data Security / Dell Data Protection Products.3Server Core (2008/2012/2016/2019) editions are not supported. v3.6 Operating Systems (64 and 32 bit): Desktop: Windows 101 v21H1 (May 2021 Update)v20H2 (October 2020 Update)v2004 (May 2020 Update / 20H1)v1909 (November 2019 Update / 19H2)v1903 (May 2019 Update / 19H1)v1809 (October 2018 Update / Redstone 5)v1803 (Spring Creators Update / Redstone 4)v1709 (Fall Creators Update / Redstone 3)v1703 (Creators Update / Redstone 2)v1607 (Anniversary Update / Redstone)v1511 (November Update / Threshold 2) Windows 10 Long-Term Servicing Channel Windows 10 Enterprise LTSC 2019Windows 10 Enterprise LTSC 2016Windows 10 Enterprise LTSC 2015 Windows 8.1 SP1Update 2Update 1 Windows 8 SP0 Windows 72 SP1SP0 Server: Windows Server 20193Windows Server 20163 SP0 Windows Server 2012 R23 SP0 Windows Server 20123 SP1SP0 Windows Server 2008 R223 SP1SP0 1Unlisted Windows 10 feature updates are not supported. For a status on all feature updates, reference Dell Data Security / Dell Data Protection Windows Version Compatibility.2Requires Microsoft KB Update 4474419 (https://support.microsoft.com/help/4474419 ) and 4490628 (https://support.microsoft.com/help/4490628 ). For more information about this requirement, reference SHA-1 Signing Certificate Expiration and Deprecation on Dell Data Security / Dell Data Protection Products.3Server Core (2008/2012/2016/2019) editions are not supported. v3.5 Operating Systems (64 and 32 bit): Desktop: Windows 101 v20H2 (October 2020 Update)v2004 (May 2020 Update / 20H1)v1909 (November 2019 Update / 19H2)v1903 (May 2019 Update / 19H1)v1809 (October 2018 Update / Redstone 5)v1803 (Spring Creators Update / Redstone 4)v1709 (Fall Creators Update / Redstone 3)v1703 (Creators Update / Redstone 2)v1607 (Anniversary Update / Redstone)v1511 (November Update / Threshold 2) Windows 10 Long-Term Servicing Channel Windows 10 Enterprise LTSC 2019Windows 10 Enterprise LTSC 2016Windows 10 Enterprise LTSC 2015 Windows 8.1 SP1Update 2Update 1 Windows 8 SP0 Windows 72 SP1SP0 Server: Windows Server 20193Windows Server 20163 SP0 Windows Server 2012 R23 SP0 Windows Server 20123 SP1SP0 Windows Server 2008 R223 SP1SP0 1Unlisted Windows 10 feature updates are not supported. For a status on all feature updates, reference Dell Data Security / Dell Data Protection Windows Version Compatibility.2Requires Microsoft KB Update 4474419 (https://support.microsoft.com/help/4474419 ) and 4490628 (https://support.microsoft.com/help/4490628 ). For more information about this requirement, reference SHA-1 Signing Certificate Expiration and Deprecation on Dell Data Security / Dell Data Protection Products.3Server Core (2008/2012/2016/2019) editions are not supported. Note: To determine Windows 10 feature update versions, reference Which Version of Windows Operating System am I Running? v3.4 Operating Systems (64 and 32 bit): Desktop: Windows 101 v1909 (November 2019 Update / 19H2)v1903 (May 2019 Update / 19H1)v1809 (October 2018 Update / Redstone 5)v1803 (Spring Creators Update / Redstone 4)v1709 (Fall Creators Update / Redstone 3)v1703 (Creators Update / Redstone 2)v1607 (Anniversary Update / Redstone)v1511 (November Update / Threshold 2) Windows 10 Long-Term Servicing Channel Windows 10 Enterprise LTSC 2019Windows 10 Enterprise LTSC 2016Windows 10 Enterprise LTSC 2015 Windows 8.1 SP1Update 2Update 1 Windows 8 SP0 Windows 72 SP1SP0 Server: Windows Server 20193Windows Server 20163 SP0 Windows Server 2012 R23 SP0 Windows Server 20123 SP1SP0 Windows Server 2008 R223 SP1SP0 1Unlisted Windows 10 feature updates are not supported. For a status on all feature updates, reference Dell Data Security / Dell Data Protection Windows Version Compatibility.2Requires Microsoft KB Update 4474419 (https://support.microsoft.com/help/4474419 ) and 4490628 (https://support.microsoft.com/help/4490628 ). For more information about this requirement, reference SHA-1 Signing Certificate Expiration and Deprecation on Dell Data Security / Dell Data Protection Products.3Server Core (2008/2012/2016/2019) editions are not supported. Note: To determine Windows 10 feature update versions, reference Which Version of Windows Operating System am I Running? Mac Note: Local Scanning functionality is not available for Carbon Black Cloud Endpoint sensors running on macOS. General Requirements: Local Administration rights for installation Internet Browser: Mozilla Firefox, Google Chrome, and Microsoft Edge Click the appropriate VMware Carbon Black Cloud Endpoint version for additional software requirements. For more information, reference How to Identify the VMware Carbon Black Cloud Endpoint Sensor Version. v3.6.1.10 Warning: For computers running macOS Mojave (10.15.0) or later, Full Disk Access is required. For more information, reference How to Grant Full Disk Access for VMware Carbon Black Cloud Endpoint. macOS Monterey 12.0.0 and latermacOS Big Sur 11.0.1 and latermacOS Catalina 10.15.0 to 10.15.7 Note: VMware Carbon Black 3.6.1 and later offers native support for Apple M1-based processors. LiveOps (OSQuery) continues to leverage Rosetta. v3.5.3.82 Warning: For computers running macOS Mojave (10.14.5) or later, Full Disk Access is required. For more information, reference How to Grant Full Disk Access for VMware Carbon Black Cloud Endpoint. macOS Big Sur 11.0.1 and latermacOS Catalina 10.15.0 to 10.15.7macOS Mojave 10.14.6 v3.5.1.23 to 3.5.2.78 Warning: For computers running macOS Mojave (10.14.5) or later, Full Disk Access is required. For more information, reference How to Grant Full Disk Access for VMware Carbon Black Cloud Endpoint. For computers running macOS High Sierra (10.13) or later, Kernel Extensions must be approved for product functionality. For more information, reference How to Allow Dell Data Security Kernel Extensions on macOS. macOS Big Sur 11.0.1 and latermacOS Catalina 10.15.0 to 10.15.7macOS Mojave 10.14.6macOS High Sierra 10.13.6macOS Sierra 10.12.6 v3.3.4 to 3.4.4.51 Warning: For computers running macOS Mojave (10.14.5) or later, Full Disk Access is required. For more information, reference How to Grant Full Disk Access for VMware Carbon Black Cloud Endpoint. For computers running macOS High Sierra (10.13) or later, Kernel Extensions must be approved for product functionality. For more information, reference How to Allow Dell Data Security Kernel Extensions on macOS. macOS Catalina 10.15.0 to 10.15.7macOS Mojave 10.14.6macOS High Sierra 10.13.6macOS Sierra 10.12.6Mac OS X El Capitan 10.11.6Mac OS X Yosemite 10.10.5 v3.3.3 Warning: For computers running macOS Mojave (10.14.5) or later, Full Disk Access is required. For more information, reference How to Grant Full Disk Access for VMware Carbon Black Cloud Endpoint. For computers running macOS High Sierra (10.13) or later, Kernel Extensions must be approved for product functionality. For more information, reference How to Allow Dell Data Security Kernel Extensions on macOS. macOS Catalina 10.15.0macOS Mojave 10.14.6macOS High Sierra 10.13.6macOS Sierra 10.12.6Mac OS X El Capitan 10.11.6Mac OS X Yosemite 10.10.5 v3.3.1 and Earlier Warning: For computers running macOS Mojave (10.14.5) or later, Full Disk Access is required. For more information, reference How to Grant Full Disk Access for VMware Carbon Black Cloud Endpoint. For computers running macOS High Sierra (10.13) or later, Kernel Extensions must be approved for product functionality. For more information, reference How to Allow Dell Data Security Kernel Extensions on macOS. macOS Mojave 10.14.6macOS High Sierra 10.13.6macOS Sierra 10.12.6Mac OS X El Capitan 10.11.6Mac OS X Yosemite 10.10.5 Linux General Requirements: Sudo rights for installation Click the appropriate Linux distribution below for additional software requirements. For more information, reference How to Identify the VMware Carbon Black Cloud Endpoint Sensor Version. Note: VMware Carbon Black Cloud v2.12 introduces Background Scan to supported Linux operating systems. Amazon Linux 2 DistributionDistribution VersionVMware Carbon Black Cloud Audit and RemediationVMware Carbon Black Cloud Endpoint StandardVMware Carbon Black Cloud Enterprise EDRAmazon Linux 2 2.4.0 and later2.11.0 and later2.10.1 and later CentOS DistributionDistribution VersionVMware Carbon Black Cloud Audit and RemediationVMware Carbon Black Cloud Endpoint StandardVMware Carbon Black Cloud Enterprise EDRCentOS 88.0 and later2.4.0 and later2.11.0 and later2.10.1 and laterCentOS 77.92.4.0 and later2.9.1 and later2.9.1 and laterCentOS 77.82.4.0 and later2.7.1 and later2.7.1 and laterCentOS 77.0 to 7.72.4.0 and later2.7.0 and later2.7.0 and laterCentOS 66.6 to 6.102.4.0 and later2.7.0 and later2.7.0 and laterCentOS 66.0 to 6.52.4.0 to 2.9.1N/AN/A Red Hat Enterprise Linux DistributionDistribution VersionVMware Carbon Black Cloud Audit and RemediationVMware Carbon Black Cloud Endpoint StandardVMware Carbon Black Cloud Enterprise EDRRed Hat Enterprise Linux 88.0 and later2.4.0 and later2.11.0 and later2.10.1 and laterRed Hat Enterprise Linux 77.92.4.0 and later2.9.1 and later2.9.1 and laterRed Hat Enterprise Linux 77.82.4.0 and later2.7.1 and later2.7.1 and laterRed Hat Enterprise Linux 77.0 to 7.72.4.0 and later2.7.0 and later2.7.0 and laterRed Hat Enterprise Linux 66.6 to 6.102.4.0 and later2.7.0 and later2.7.0 and laterRed Hat Enterprise Linux 66.0 to 6.52.4.0 to 2.9.1N/AN/A Oracle UEK Kernel DistributionDistribution VersionVMware Carbon Black Cloud Audit and RemediationVMware Carbon Black Cloud Endpoint StandardVMware Carbon Black Cloud Enterprise EDROracle 88.0 and later2.8.1 and later2.11.0 and later2.10.1 and laterOracle 77.92.8.1 and later2.9.1 and later2.9.1 and laterOracle 77.6 to 7.82.8.1 and later2.8.0 and later2.8.0 and laterOracle 77.0 to 7.52.8.1 and laterN/A2.8.0 and laterOracle 66.6 to 6.102.4.0 and laterN/A2.8.0 and laterOracle 66.0 to 6.52.8.1 to 2.9.1N/AN/A Oracle RHCK Kernel DistributionDistribution VersionVMware Carbon Black Cloud Audit and RemediationVMware Carbon Black Cloud Endpoint StandardVMware Carbon Black Cloud Enterprise EDROracle 88.0 and later2.8.12.11.0 and later2.10.1 and laterOracle 77.92.8.1 and later2.9.1 and later2.9.1 and laterOracle 77.0 to 7.82.8.1 and later2.8.0 and later2.8.0 and laterOracle 66.6 to 6.102.4.0 and later2.8.0 and later2.8.0 and laterOracle 66.0 to 6.52.4.0 to 2.9.12.8.0 and laterN/A OpenSUSE DistributionDistribution VersionVMware Carbon Black Cloud Audit and RemediationVMware Carbon Black Cloud Endpoint StandardVMware Carbon Black Cloud Enterprise EDROpenSUSE 4242.2 to 42.32.4.0 and later2.11.0 and later2.10.1 and laterOpenSUSE 1515.0 to 15.12.4.0 and later2.11.0 and later2.10.1 and later SUSE DistributionDistribution VersionVMware Carbon Black Cloud Audit and RemediationVMware Carbon Black Cloud Endpoint StandardVMware Carbon Black Cloud Enterprise EDRSUSE 1515.0 to 15.22.4.0 and later2.11.0 and later2.10.1 and laterSUSE 1212.2 to 12.52.4.0 and later2.11.0 and later2.10.1 and later Ubuntu DistributionDistribution VersionVMware Carbon Black Cloud Audit and RemediationVMware Carbon Black Cloud Endpoint StandardVMware Carbon Black Cloud Enterprise EDRUbuntu 2121.042.11.3 and later2.11.0 and later2.10.1 and laterUbuntu 2020.04 LTS2.4.0 and later2.11.0 and later2.10.1 and laterUbuntu 1919.04 LTS, 19.102.4.0 and later2.11.0 and later2.10.1 and laterUbuntu 1818.04 LTS, 18.102.4.0 and later2.11.0 and later2.10.1 and laterUbuntu 1616.04 LTS2.4.0 to 2.11.32.11.0 to 2.11.32.10.1 to 2.11.3 Note: For more information about the Carbon Black products listed in this section, reference What is VMware Carbon Black Cloud? Minimum Hardware Requirements: CPU: 2 GHz multi-coreRAM: 2 GBDisk Space: 500 MB +600 MB if local scanning is enabled or using ThreatHunter. Network Card: 100/1000 mbps Protocols: TLS: 1.2 or later External Destinations vary based on geographic zone of purchase. Click the appropriate region for more information. Americas Configure firewalls or proxies to allow outgoing and incoming connection to the following Destinations without packet inspection. FunctionPrimary PortBackup PortDestinationIP AddressNotesAdministration44354443defense-prod05.conferdeploy.net/Dynamic Client44354443dev-prod05.conferdeploy.net/Dynamic Integration Services (API)44354443defense-prod05.conferdeploy.net/Dynamic Signature Updates804431updates2.cdc.carbonblack.ioDynamic Content Management System44354443Content.carbonblack.ioDynamicRequired for 3.6 and newer agentsOnline Certificate Status Protocol80N/Aocsp.godaddy.comDynamic Online Certificate Status Protocol443N/Ad.symcb.comDynamicRequired for 3.7.0.1503 and later installersCertificate Revocation List80N/Acrl.godaddy.comDynamic Certificate Revocation List80N/Asv.symcb.comDynamicRequired for 3.7.0.1503 and later installersCertificate Revocation List80N/As1.symcb.comDynamicRequired for 3.7.0.1503 and later installersCertificate Revocation List80N/As2.symcb.comDynamicRequired for 3.7.0.1503 and later installers 1To leverage 443, or SSL/TLS connections for Signature Updates, the assigned policy group must have https://updates2.cdc.carbonblack.io defined within the Update Servers For Onsite Devices, and/or Update Servers for Offsite Devices. Note: Signature Updates are only required on Windows Carbon Black Cloud Endpoint sensors if using Local Scanning functionality and "Allow Signature Updates" is enabled in the VMware Carbon Black Cloud. Europe Configure firewalls or proxies to allow outgoing and incoming connection to the following Destinations without packet inspection. FunctionPrimary PortBackup PortDestinationIP AddressNotesAdministration44354443defense-eu.conferdeploy.net/Dynamic Client44354443dev-prod06.conferdeploy.net/Dynamic Integration Services (API)44354443defense-eu.conferdeploy.net/Dynamic Signature Updates804431updates2.cdc.carbonblack.ioDynamic Content Management System44354443Content.carbonblack.ioDynamicRequired for 3.6 and newer agentsOnline Certificate Status Protocol80N/Aocsp.godaddy.comDynamic Online Certificate Status Protocol443N/Ad.symcb.comDynamicRequired for 3.7.0.1503 and later installersCertificate Revocation List80N/Acrl.godaddy.comDynamic Certificate Revocation List80N/Asv.symcb.comDynamicRequired for 3.7.0.1503 and later installersCertificate Revocation List80N/As1.symcb.comDynamicRequired for 3.7.0.1503 and later installersCertificate Revocation List80N/As2.symcb.comDynamicRequired for 3.7.0.1503 and later installers 1To leverage 443, or SSL/TLS connections for Signature Updates, the assigned policy group must have https://updates2.cdc.carbonblack.io defined within the Update Servers For Onsite Devices, and/or Update Servers for Offsite Devices. Note: Signature Updates are only required on Windows Carbon Black Cloud Endpoint sensors if using Local Scanning functionality and "Allow Signature Updates" is enabled in the VMware Carbon Black Cloud. Asia-Pacific Configure firewalls or proxies to allow outgoing and incoming connection to the following Destinations without packet inspection. FunctionPrimary PortBackup PortDestinationIP AddressNotesAdministration44354443defense-prodnrt.conferdeploy.net/Dynamic Client44354443dev-prodnrt.conferdeploy.net/Dynamic Integration Services (API)44354443defense-prodnrt.conferdeploy.net/Dynamic Signature Updates804431updates2.cdc.carbonblack.ioDynamic Content Management System44354443Content.carbonblack.ioDynamicRequired for 3.6 and newer agentsOnline Certificate Status Protocol80N/Aocsp.godaddy.comDynamic Online Certificate Status Protocol443N/Ad.symcb.comDynamicRequired for 3.7.0.1503 and later installersCertificate Revocation List80N/Acrl.godaddy.comDynamic Certificate Revocation List80N/Asv.symcb.comDynamicRequired for 3.7.0.1503 and later installersCertificate Revocation List80N/As1.symcb.comDynamicRequired for 3.7.0.1503 and later installersCertificate Revocation List80N/As2.symcb.comDynamicRequired for 3.7.0.1503 and later installers 1To leverage 443, or SSL/TLS connections for Signature Updates, the assigned policy group must have https://updates2.cdc.carbonblack.io defined within the Update Servers For Onsite Devices, and/or Update Servers for Offsite Devices. Note: Signature Updates are only required on Windows Carbon Black Cloud Endpoint sensors if using Local Scanning functionality and "Allow Signature Updates" is enabled in the VMware Carbon Black Cloud. Dell and VMware recommend the following exclusions if you are planning to run VMware Carbon Black Cloud alongside an existing anti-virus. Windows Directories: C:\Program Files\Confer\ C:\Programdata\CarbonBlack\ Files: C:\Windows\System32\drivers\ctifile.sys C:\Windows\System32\drivers\ctinet.sys C:\Windows\System32\drivers\cbelam.sys C:\Windows\system32\drivers\cbdisk.sys C:\Windows\Syswow64\ctintev.dll C:\Program Files\confer\Blades\LiveQuery\osqueryi.exe C:\Program Files\confer\repmgr.exe C:\Program Files\confer\scanner\upd.exe Mac Click the appropriate VMware Carbon Black Cloud Endpoint version for additional software requirements. For more information, reference, reference How to Identify the VMware Carbon Black Cloud Endpoint Sensor Version. v3.5 and Later Directories: /Applications/VMware Carbon Black Cloud /Library/Application Support/com.vmware.carbonblack.cloud/ /Library/Extensions/CbDefenseSensor.kext v3.4 and Earlier Directories: /Applications/Confer.app/ Linux Directories: /Applications/Confer.app/ To contact support, reference Dell Data Security International Support Phone Numbers.Go to TechDirect to generate a technical support request online.For additional insights and resources, join the Dell Security Community Forum.