Installation requirements
Make sure the computer you want to install the security software on meets these system and network requirements.
From 30 September 2024, you will not be able to add devices to the management console or install the protection software on new computers that run these operating system versions: Windows XP, Windows Vista, Windows Server 2003, and Windows Server 2008 (Windows 2008 R2 will continue to be supported). Existing computers in the management console will continue to be protected. See https://www.watchguard.com/wgrd-trust-center/end-of-life-policy.
Supported operating systems
Advanced EDR is compatible with 32- and 64-bit x86 microprocessors, as well as ARM microprocessors. For a complete list, see Supported operating systems.
Advanced EDR is compatible with Windows XP Embedded and higher. Embedded systems allow custom installations that could impact the way the security software and its modules work.
Hardware requirements
Root certificates
It is necessary to keep the root certificates of workstations and servers up to date to use the Advanced EDR Cytomic Patch module and to establish real-time communications with the management console. See Root certificates.
SHA-256 compatibility
Workstations or servers must support SHA-256 signed drivers. For more information about affected operating systems and how to update them, see Support for SHA-256 driver signing . To find computers that do not support SHA-256 driver signing, see Filter computers not compatible with SHA-256 signed drivers.
Network requirements
Advanced EDR requires access to multiple Internet-hosted resources. It requires access to ports 80 and 443.
The Advanced EDR agent requires access to port 33000 for protected computers on the network to communicate with each other (see Endpoint Access Enforcement settings) and with the Firebox or Access Point device (see Network Access Enforcement
For a complete list of the URLs that Advanced EDR requires access to, see Local ports and URL access.
Time synchronization of computers (NTP)
Although not an essential requirement, we recommend that the clocks on computers protected by Advanced EDR be synchronized. This synchronization is normally achieved using an NTP server. See Time synchronization of computers (NTP).
Internet Explorer 7
For advanced protection to operate correctly on a Windows XP or Windows 2003 computer, Internet Explorer 7 or higher must be previously installed on the computer.
You cannot install or upgrade the security software directly on Windows XP computers. You must use a computer with the cache role. For more information, see Configuring downloads from cache computers
You can install or upgrade the security software on Windows 2003 computers only when the operating system is fully updated and all required patches are installed. Otherwise, you must use a computer with the cache role. For more information, see Cytomic Patch (Updating vulnerable programs).