There is a possibility of unexpected failures occurring during the installation or upgrading of Endpoint Clients depending on how the environment is configured. Some of the more common causes on Windows machines are due to Data Execution Prevention (DEP), User Account Control (UAC), antivirus or other third-party monitoring applications, and Windows Firewall.

Listed below are the recommended environmental configurations to be made prior to installing the Forcepoint Endpoint on machines.

User Access Control (UAC):

1. Open Control Panel 
2. Search for UAC (Normally under Action Center > Change User Account Control Settings in Windows 7 or under User Accounts in Windows 10))
3. Set to Never Notify

Data Execution Prevention (DEP):

1. Open the Control Panel
2. Click System
3. Navigate to Advanced System Settings > Settings (Performance) > Data Execution Prevention
4. Ensure DEP is only set to for essential Windows components/services only

Windows Firewall:

1. Open the Control Panel
2. Click Windows Firewall settings
3. Ensure that Windows Firewall is turned off

Anti-Virus Exclusions:

Antivirus scanning (Windows Defender in particular) can degrade the performance of Forcepoint security components if the proper exclusions are not set prior to installation. See Excluding Forcepoint Endpoint from Antivirus Scanning for more information.

For general best practices when using the DLP Endpoint on user environments, see the following article:
General Endpoint Client Best Practices


Keywords: Prerequisite for Endpoint installation; Recommended environmental configurations; Forcepoint DLP Endpoint; Antivirus Exclusion; Data Execution Prevention (DEP); User Access Control (UAC); Forcepoint DLP Endpoint;