Installation requirements
Make sure the computer you want to install the security software on meets these system and network requirements.
After 30 June 2026, the product license will be automatically removed from all computers that run these OS versions: Windows XP, Windows Vista, Windows Server 2003, and Windows Server 2008 (Windows Server 2008 R2 will continue to be supported). You will not be able to allocate licenses to affected computers. Computers without a license will have all protections disabled, lose access to Collective Intelligence, stop receiving signature file updates, and cease to run assigned tasks. For more information about our End-of-Life policies, go to https://www.watchguard.com/wgrd-trust-center/end-of-life-policy.
Supported operating systems
Advanced EDR is compatible with 32- and 64-bit x86 microprocessors, as well as ARM microprocessors. For a complete list, see Supported operating systems.
Advanced EDR is compatible with Windows XP Embedded and higher. Embedded systems allow custom installations that could impact the way the security software and its modules work.
Hardware requirements
Root certificates
It is necessary to keep the root certificates of workstations and servers up to date to use the Advanced EDR Cytomic Patch module and to establish real-time communications with the management console. See Root certificates.
Support for SHA-256 driver signing
Workstations or servers must support SHA-256 driver signing. For more information about affected operating systems and how to update them, see Support for SHA-256 driver signing . To find computers that do not support SHA-256 driver signing, see Filter computers not compatible with SHA-256 signed drivers.
Support for TLS 1.2 communications
For the Advanced EDR agent to communicate with the Cytomic servers through the TLS 1.2 protocol, see Communication with the Advanced EDR server through TLS 1.2.
Network requirements
Advanced EDR requires access to multiple Internet-hosted resources. It requires access to ports 80 and 443.
The Advanced EDR agent requires TCP port 33000 for communication between protected computers (see Endpoint Access Enforcement settings) and with the Firebox or access point (see Network Access Enforcement
For a complete list of the URLs that Advanced EDR requires access to, see Local ports and URL access.
Time synchronization of computers (NTP)
Although not an essential requirement, we recommend that the clocks on computers protected by Advanced EDR be synchronized. This synchronization is normally achieved using an NTP server. See Time synchronization of computers (NTP).
Internet Explorer 7
For advanced protection to operate correctly on a Windows XP or Windows 2003 computer, Internet Explorer 7 or higher must be previously installed on the computer.
You cannot install or upgrade the security software directly on Windows XP computers. You must use a computer with the cache role. For more information, see Configuring downloads from cache computers
You can install or upgrade the security software on Windows 2003 computers only when the operating system is fully updated and all required patches are installed. Otherwise, you must use a computer with the cache role. For more information, see Cytomic Patch (Updating vulnerable programs).
.NET Framework v4.0
For the local console to open, the .NET Framework v4.0 or higher must be installed on the user computer. If the correct version of the .NET Framework is not installed, the agent tries to download and install it automatically.
If an error occurs during the installation process, the security software activates correctly, but the user cannot open the local console.