Kaspersky Security Center simplifies the management of security and IT systems. The flexible, scalable console, also available as a web version, meets the security needs of growing businesses as they change with them. It provides comprehensive management of IT systems and security controls and facilitates the distribution of responsibilities among administrators.
Kaspersky Security Center offers the following benefits:
- Powerful management console with an additional flexible web interface, accessible anywhere from any desktop or mobile device
- The ability to view security settings and manage protection across your entire enterprise environment, including cloud, physical and virtual machines, and mobile devices
- Easily deploy and manage security with ready-to-use, unified policies
It doesn’t matter how many workstations you have (fifty or fifty thousand) and what kind of infrastructure (centralized, distributed or mixed) - Kaspersky Security Center allows you to install, configure and administer comprehensive protection tools without any extra effort. Make it easy to scale and leverage new tools and capabilities to meet your unique business needs.
FEATURES AND BENEFITS
Complete overview of your protection status
The growing diversity of platforms, devices and software makes life difficult for information security managers. Complexity has a negative impact on safety. The more resources you control, the more difficult it is to track and protect them.
Collection of information about software and hardware and timely installation of vulnerability patches take a lot of time and effort. Kaspersky Security Center simplifies these tasks. Physical, virtual and cloud desktops, mobile devices and embedded systems are managed from a single console, increasing efficiency and reducing total cost of ownership.
Control resources and reduce costs
Kaspersky Security Center provides a detailed view of the hardware and software on your network. You can save on licensing costs with centralized monitoring and usage rights. Automatic device and hardware discovery and software summary reports help optimize resource utilization. Kaspersky Security Center makes it easy to track and control software licensing and your existing hardware.
Finding and eliminating vulnerabilities
Kaspersky Security Center's vulnerability scanning and patch management technology identifies vulnerabilities in applications and operating systems that cybercriminals can use to penetrate your corporate network. Prompt patching helps eliminate these vulnerabilities before malware has a chance to harm you.
Automatic vulnerability scanning uses the most up-to-date information about exploit activity coming from the cloud in real time. This allows you to quickly install new critical security patches without slowing down your systems and users. With support for more than 150 applications, Kaspersky Security Center provides effective vulnerability monitoring for a wide range of programs commonly used in business. Detected vulnerabilities are prioritized, and the most critical ones are eliminated first.
Automatic risk minimization
Security patches are automatically downloaded, distributed, and installed on physical, virtual, and cloud-hosted machines. Optimization of installation algorithms Microsoft updates allows you to reduce the amount of network traffic and disk space used. You can track the status of patching with detailed reports on closure of vulnerabilities in third-party applications.
Optimize daily tasks
Kaspersky Security Center offers extensive IT systems administration capabilities that optimize routine tasks in heterogeneous networks.
The console's extensible architecture includes plugins to manage security products for a variety of platforms. When a new product is released or an existing one is updated, the required extension can be installed in Kaspersky Security Center without using patches or reinstalling the console. Client-side management tools make it easy to distribute and deploy programs to desktops. Centralized administration is complemented by role-based access and built-in dashboards so that administrators can access only the resources that are relevant to their job responsibilities.
Easy scaling
To scale your console, you don't need to change the original settings. One server instance of Kaspersky Security Center allows you to administer up to 100,000 physical, virtual and cloud workstations. One distribution point can serve up to 10,000 hosts. For several servers, a hierarchy is maintained in which all slave servers inherit the roles and rights of the main server, and the main server has complete information about each host under the control of each slave server.
Data Loss Protection
Centrally managed encryption further protects data in the event of an attack or device loss. Kaspersky Security Center allows administrators to centrally enable or disable FileVault 2.0 on macOS, mobile device encryption, Kaspersky Lab encryption technology, and Microsoft BitLocker on Microsoft Windows. The console also monitors the status of encrypted devices, reports when access to encrypted files is blocked, and locally stores backups encryption keys to recover forgotten credentials.
Optimizing Remote Support
Reduce response times and increase efficiency by optimizing remote support and troubleshooting capabilities. In Kaspersky Security Center, connections to client/remote computers are made via RDP, which allows for quick diagnosis and troubleshooting of any software.
Easy deployment in remote offices
Kaspersky Security Center supports remote and automatic setup new workstations in the company's branches. You can also deploy new applications and schedule them automatic installation after hours. This allows for centralized creation, storage and deployment of system images, which greatly facilitates migration, for example, to Microsoft Windows 10.
Mobile device management across platforms
Kaspersky Security Center allows you to manage both corporate and personal mobile devices equally effectively. Even when working outside the office, employees don't have to worry about the security of their mobile devices.
Mobile Device Security
Manage mobile device protection from using Kaspersky Security Center and gain a detailed understanding of their security with protection level indicators. Keep corporate and personal data separate on user and guest devices, and implement passwords and encryption for corporate data to prevent leakage if the device is stolen or lost.
Support for employees to work on personal devices
In many organizations, employees use their own devices to carry out work tasks (BYOD). The convenient system of assistants in Kaspersky Security Center allows you to deploy protection for such devices using Over the Air (OTA) technology, as well as third-party consoles (Samsung KNOX).
SaaS console for security management
Manage your protection remotely using our cloud-based Kaspersky Security Center console. This is a management server in the Azure cloud. There is no need to waste time and resources on its deployment and support - Kaspersky Lab will take care of them. If you are using Kaspersky Endpoint Business Security Standard, you can now manage the security of Windows, Mac, and Linux workstations directly from the cloud console.
Main features:- Centralized desktop discovery and deployment
- Distribution point support
- Possibility of migration within the server hierarchy - for example, moving the main server to the cloud while maintaining the slave server in the local infrastructure
- Migration Wizard
- Supports up to 10,000 nodes - the console is suitable for companies of all sizes, including corporations
At the same time, you can continue to use the existing management tools (MMC console and web console).
Advanced web console for local management
You can now administer advanced features such as vulnerability and patch management, encryption, and remote desktop management using the web console in Kaspersky Enterprise Security for Windows, Kaspersky Enterprise Security for Mac, and Kaspersky Security for Windows Server.
The console also supports new solutions - Kaspersky Sandbox and Kaspersky Endpoint Detection and Response Optimum, as well as the latest Kaspersky version Embedded Systems Security.
System integrity support
Kaspersky Security Center allows you to monitor any changes in critical infrastructure components, such as web servers and ATMs, and promptly respond to security breaches. Receive event data from the System Integrity Monitor component. This way you can keep track of not only file system devices (using file integrity monitoring), but also registry hives, the status of the firewall and connected equipment.
Easily manage security across all devices
Deploy, configure, and enforce security policies for all devices on all platforms from a single console, providing added visibility, complete control, and efficient management.
Protection against attacks on public networks
Using untrusted public Wi-Fi networks makes devices and corporate networks vulnerable. By creating a list of trusted networks for mobile workers, you can deny them access to all others without compromising their work experience or productivity.
Easy firewall management
Configuring and managing a firewall for Linux and Windows OS. Kaspersky Security Center allows you to apply network policy to all end devices from a single console.
Minimizing risks and increasing employee productivity
You can control which devices and applications can access your network and how they can operate on it, and you have full control over employee access to devices, applications, and websites. This allows us to ensure reliable protection from malware and other threats.
Instantly connect security for cloud environments
Tight integration between the management console and the Amazon Web Services cloud platform provides complete transparency and control of all instances of Kaspersky Security for Linux and Kaspersky Security for Windows Server deployed in the cloud.
Install Kaspersky Security Center on the Amazon EC2 cloud to manage the security of your environment, or subscribe to one of the AMIs available on the AWS Marketplace to get an image with Kaspersky Security Center already installed and ready to go. Other public cloud services can be used as usual.
Optimizing updates and saving traffic
The new signature update mechanism can reduce the amount of traffic between the Kaspersky Security Center server and agents by 20 times.
Further optimization is possible by using a remote workplace as a distribution point. Each distribution point can now also act as a Kaspersky Security Network proxy in remote environments.
Reducing the load on communication channels increases them throughput and availability for other tasks.
Extensive audit capabilities
Improved endpoint application auditing capabilities allow administrators to track changes and rollback to previous policies. An administrator can compare two policies for the same application and get a report on how their settings match and differ. This is especially useful if different administrators have created multiple policies for the same application, or if one policy top level was inherited by everyone local offices, and then adapted for each of them.
BUY
Kaspersky Security Center is included in:
Hardware requirements
- RAM: 4 GB
- Free disk space: 10 GB. When using Vulnerability and Patch Management, you must have at least 100 GB of free disk space.
Software Requirements
- Microsoft Windows 7/8/8.1/10
- Microsoft Windows Server 2008/2008 R2/2012/2016/
- Microsoft Windows Storage Server 2008 R2/2012/2012 R2/2016
Database server (can be installed on a different device):
- Microsoft SQL Server 2008 Express 32-bit.
- Microsoft SQL Server 2008 R2 Express 64-bit.
- Microsoft SQL Server 2012 Express 64-bit.
- Microsoft SQL Server 2014 Express 64-bit.
- Microsoft SQL Server 2016 Express 64-bit.
- Microsoft SQL Server 2017 Express 64-bit.
- Microsoft SQL Server 2008 (all editions) 32-bit / 64-bit.
- Microsoft SQL Server 2008 R2 (all editions) 64-bit.
- Microsoft SQL Server 2008 R2 Service Pack 2 (all editions) 64-bit.
- Microsoft SQL Server 2012 (all editions) 64-bit.
- Microsoft SQL Server 2014 (all editions) 64-bit.
- Microsoft SQL Server 2016 (all editions) 64-bit.
- Microsoft SQL Server 2017 on Windows 64-bit.
- Microsoft SQL Server 2017 on Linux 64-bit.
- MySQL Standard Edition 5.6 32-bit / 64-bit.
- MySQL Enterprise Edition 5.6 32-bit / 64-bit.
- MySQL Standard Edition 5.7 32-bit / 64-bit.
- MySQL Enterprise Edition 5.7 32-bit / 64-bit.
- All supported Microsoft SQL Server versions on Amazon Relational Database Service (RDS) and Microsoft Azure.
Hardware requirements
- CPU: CPU: 4 cores, 2.5 GHz
- RAM size: 8 GB
- Hard disk: 40 GB
Software Requirements
Database server:
- Microsoft SQL Express 2008, 2008 R2, 2012, 2014
- Microsoft SQL Server 2008, 2008 R2, 2012, 2014, 2016
-
- Microsoft Windows x64: 7 SP1, 8, 8.1, and 10
- Microsoft Windows Server x64: 2008, 2008 R2, 2012, 2012 R2, and 2016
Software and hardware requirements
Using the Kaspersky Security Center web console on client side Requires only a web browser ( Google Chrome 60 or higher). Hardware and software requirements identical for web browser requirements.
Hardware requirements
- CPU with an operating frequency of 1 GHz or higher. For 64-bit operating systems, the minimum CPU operating frequency is 1.4 GHz.
- RAM: 512 MB.
- Free disk space: 1 GB.
Device with installed Agent administration, which will additionally perform the role of Update Agent, must meet the following requirements:
- Processor: 3.6 or higher.
- RAM: 8 GB.
- Amount of free disk space: from 120 GB.
Supported Operating Systems
- Microsoft Windows Embedded POSReady 2009/POSReady 7/Standard 7/8/8.1
- Microsoft Windows XP SP3/7/8/8.1/10
- Windows Essential Business Server 2008
- Windows Small Business Server 2008/2011
- Microsoft Windows Home Server 2011, 64-bit version
- Microsoft Windows MultiPoint Server 2011
- Microsoft Windows Server 2008/2008 R2/2012/2012 R2/2016/2019
- Microsoft Windows Storage Server 2008 R2/2012/2012 R2
- Debian GNU / Linux 7.x/8.x/9.x
- Ubuntu Server/Desktop 14.04/16.04/18.04
- CentOS 6.x/7.0 64-bit
- Red Hat Enterprise Linux Server 6.x/7.x
- SUSE Linux Enterprise Server/Desktop 12
- OS X 10.10–10.14
Supported virtualization platforms
Full system requirements can be found in . Note: Below are the minimum requirements for random access memory and processor for the Administration Server, Administration Console and Network Agent. Please review the included user documentation for complete system requirements before deploying each product.
Administration Server
Kaspersky Security Center 11 Web Console Server
Kaspersky Security Center Web Console client
Network Agent
Minimum requirements for computers on which Network Agent is installed:
The application is available as part of the Kaspersky solution Endpoint Security for business and can be used on a subscription basis with flexible monthly licensing. Check with your local partner for system requirements. You can view the subscription options available in your country.
- Go to node Administration Server.
- Select from menu View → Interface setup.
- Configure the display of interface elements using the following checkboxes:
Display System Administration. If the checkbox is checked, in the folder Remote installation Deploying device images, and in the folder Storage subfolder is displayed Equipment. By default, the checkbox is cleared.
Display encryption and data protection. If the checkbox is selected, you can manage data encryption on devices connected to the network. After restarting the program, a folder will appear in the console tree Encryption and data protection
Display workplace control parameters. If the checkbox is selected, in the section Security control The Kaspersky Endpoint Security for Windows policy properties window displays the following subsections: Program control, Vulnerability monitoring, Device Control, Web Control. By default, the checkbox is cleared.
Display Mobile Device Management. If the checkbox is checked, the function is available Mobile device management. After restarting the program, a folder will appear in the console tree Mobile devices. By default, the checkbox is cleared.
Display slave Administration Servers. If the checkbox is selected, the console tree displays nodes of slave and virtual Administration Servers as part of administration groups. By default, the checkbox is selected.
Display sections with security settings. If the checkbox is selected, the section will be displayed in the properties windows of the Administration Server, administration groups and other objects Safety. By default, the checkbox is selected.
- Click OK.
To apply some changes, you must close and reopen the Administration Console.
The larger the network, the more System Administrator(or IT department) is trying to automate management software products. Antivirus software is no exception in this regard.
Many antivirus manufacturers have in their arsenal tools remote administration, today we will talk about a similar solution from Kaspersky Lab.
In general, Kaspersky Security Center is a rather serious application, which definitely cannot be described in one article. Therefore, in this article we will analyze only its deployment.
You can download Kaspersky Security Center. The product itself consists of a server that will need to be deployed, an administration console that can be installed on another computer for remote administration of the server, a web console as an alternative to the usual one, and an administration agent that is installed on client computers and is responsible for communicating anti-virus software with the server.
The server itself must be deployed only on Windows operating systems. Moreover, the presence of a server edition is not necessary. Systems from XP and higher are supported, but only in the Professional/Enterprise/Ultimate editions. WITH full list Supported systems can be found on the website.
In addition, the server requires MS SQL or MySQL (remote is possible) to operate. If ready server There are no databases at hand, the Kaspersky Security Center installer will install MS SQL Express itself, which is quite enough for most organizations.
So, to deploy the server, download and run installation file(I recommend downloading the full distribution). As test bench we have selected a computer with an operating system Windows system Server 2012 R2.
You will see a convenient menu in which we are now interested in the “Install Kaspersky Security Center 10” item.
After the installation starts, you will be prompted to accept license agreement, and also select the installation type. For better control Above the installation process we will mark a custom installation.
If you have mobile devices on your network, you can install a separate component to manage their security.
Enter the size of your network. This point, however, does not carry any important determining force.
Next, the installation program will ask under which user to run the administration server service. You can specify an existing user with admin rights or allow the installer to create a new one.
The next step is to select a database server. As already mentioned, there are two options here - MS SQL or MySQL. If you do not have a ready-made server, Kaspersky Security Center will carefully deploy MS SQL Express.
At this step in the installation process, you may be in for a small surprise if it is not installed on your system. NET Framework 3.5SP 1.
Windows Server .NET Framework 3.5 SP 1 is built in as a feature and only needs to be enabled. If you do not have a server room operating system, then you need to go to the Microsoft website and download the installer.
Let's consider the option of enabling the component in Windows Server. To do this, open Server Manager and select “Add roles and features.”
A wizard will launch in which we need to indicate that we are going to install roles or components.
Windows Server Add Roles and Features Wizard We select our server and skip the selection of roles. In the list of components, find .NET Framework 3.5 Functions and check them.
Adding a Feature to Windows Server After this, we will return to installing Kaspersky Security Center itself.
We need to select the SQL authentication mode. This could be separate Account, and the current one.
The Kaspersky Security Center server requires a shared folder, which client computers could access to receive updates and installation packages. You can create new folder or specify an existing one.
We indicate the ports through which we will connect to the administration server.
Specify the server address on the network. If the server has and will have a static IP address, you can limit yourself to it. But it’s still more convenient to identify the server by name.
The last step before installation is to select the necessary plugins. Plugins allow you to manage various Kaspersky Lab antivirus products. This is useful if you have a whole “zoo” of versions. Plugins can also be installed later.
Now all that remains is to watch the installation process. Sometimes plugins require you to accept a separate license agreement.
The installation of Kaspersky Security Center is complete.
Now let's go over the initial server setup. The administration console installed with the server looks like this:
Administration console of Kaspersky Security Center The console can also be installed separately. And it’s even necessary so as not to log into the server every time for routine actions.
The left column lists the servers. For now there is only our newly created server. If you administer several servers, then simply click Add Administration Server.
So, click on the newly created server and the Initial Setup Wizard will launch. You will be asked to activate the program using a code or key. However, this can be done later.
In addition, the wizard will ask for your consent to participate in the Kaspersky Security Network program. Essentially, this is another spy on your computers that sends Kaspersky Lab data about what resources you access and where you pick up the infection. This is motivated by the creation of a certain knowledge base. In my opinion, for the end user the point of participating in such a program is questionable.
You will also be asked to indicate mailboxes for notifications from the Kaspersky Security Center server. You can skip this step.
After all these steps the server will start loading latest versions updates from the network. In the future, you can configure not the Kaspersky Lab server on the Internet as an update source, but an upstream server, if there are several of them on your network.
After downloading updates and polling the network, the wizard will display a successful completion message and offer to run the Deploy Protection on Workstations Wizard.
We will talk about deploying protection on workstations in.
The article examines the Kaspersky Lab product Kaspersky Endpoint Security and its use in a corporate environment, using the example of our clientsGood day, dear visitor. From the title of the article you already understand that today we will talk about protection. In one of the previous articles, I reviewed a product related to this area of IT, which showed itself well. Today I will tell you about an equally interesting product from Kaspersky Lab, of which we are partners, Kaspersky Endpoint Security. It will be reviewed in the Hyper-V virtual environment, on second-generation machines. Server part will be implemented on the Windows Server 2012 R2 OS domain controller, Windows Server 2012 R2 AD mode, and the client mode on Windows 8.1.
It is worth noting that we constantly use this product in our practice. IT outsourcing.
What is Kaspersky Endpoint Security?
Kaspersky Endpoint Security for Windows offers world-class technology to protect against malware combined with Application Control, Web Control and Device Control, as well as data encryption - all within one application. All functionality is managed from a single console, which simplifies the deployment and administration of a wide range of Kaspersky Lab solutions.
Possibilities:
- Single application
- Single console
- Unified policies
Kaspersky Endpoint Security for Windows is a single application that includes a wide range of critical security technologies, such as:
- Protection against malware (including firewall and intrusion prevention system)
- Workplace control
- Program control
- Web Control
- Device Control
- Data encryption
Kaspersky Endpoint Security differs in the set of included modules, containing a different number of modules depending on the edition:
- STARTING,
- STANDARD
- ADVANCED
- Kaspersky Total Security for business
In our case we will use ADVANCED.
The following features are available as part of the Kaspersky Endpoint Security for Business START solution:
The following features are available as part of the Kaspersky Endpoint Security for Business STANDARD solution:
- Anti-malware, firewall and intrusion prevention system
- Workplace control
- Program control
- Web Control
- Device Control
...as well as other Kaspersky Lab technologies to ensure IT security
The following features are available as part of the Kaspersky Endpoint Security for Business ADVANCED and Kaspersky Total Security for Business solutions:
- Anti-malware, firewall and intrusion prevention system
- Workplace control
- Program control
- Web Control
- Device Control
- Encryption
...as well as other Kaspersky Lab technologies to ensure IT security.
Architecture
Server part:
- Kaspersky Security Center Administration Server
- Administration console of Kaspersky Security Center
- Kaspersky Security Center Network Agent
Client part:
- Kaspersky Endpoint Security
So let's get started
Installing the administration server
In our case, the administration server will be installed on the AD controller in Windows mode Server 2012 R2. Let's start the installation:
.jpg)
I forgot to clarify, we will use Kaspersky Security Center 10. Let's install full distribution , downloaded from the Kaspersky Lab website, which includes the installation package of Kaspersky Endpoint Security 10, respectively, and Network Agent 10
In the next wizard window, select the path to unpack the distribution and click “Install”.
.jpg)
After unpacking the distribution, we are greeted by the Kaspersky Security Center installation wizard; after clicking the “Next” button, the wizard asks “Network size”, because We will have only two clients, one x86 and the other x64, then we indicate “Less than 100 computers on the network.”
.jpg)
We specify the account under which the “Administration Server” will start. In our case, the domain administrator account.
.jpg)
Kaspersky Security Center stores all its data in a DBMS. During installation, the wizard prompts you to install Microsoft SQL Server 2008 R2 Express, or, if you have an already installed DBMS, you can select the name of the SQL server and the name of the database.
.jpg)
At the “Administration server address” stage, the wizard asks you to specify the server address, because Since we have AD installed and DNS integrated, it would be wiser to specify the server name.
.jpg)
After selecting the plugins for management, the installation of Kaspersky Security Center will begin.
.jpg)
After successful installation and the first launch of Kaspersky Security Center, we are greeted by the initial setup wizard, in which we can specify a key, accept the agreement for KSN participation, and specify an email address for notifications.
.jpg)
.jpg)
The update parameters are also specified and a policy with tasks is created.
.jpg)
After installation, the following will be installed on our server:
- Administration Server
- Administration Console
- Administration Agent
But Kaspersky Endpoint Security will not be installed. We will perform a remote installation, because... the administration agent is already installed, then we can deploy Kaspersky Endpoint Security to the server. If there is no administration agent and all incoming connections are blocked in the Firewall Windows remote installation will not work. Expand the “Remote Installation” node and select “Run Remote Installation Wizard”. Select the installation package and click the “Next” button
.jpg)
In the “Select computers for installation” window, select the installation option for computers located in administration groups. Then select the server and click the “Next” button.
.jpg)
A system reboot will be required after updating important modules of Kaspersky Endpoint Security, because... The package is new enough that a reboot is not needed. When selecting credentials, let's leave everything as default, i.e. empty. After clicking the “Next” button, we will see the installation progress of Kaspersky Endpoint Security.
.jpg)
.jpg)
Creating groups
Because Since the policies and tasks intended for servers differ from the policies and tasks of workstations, we will create groups corresponding to the type of administration for different machines. Expand the “Managed computers” node and select “Groups”, click “Create a subgroup”. Let's create two subgroups, “Workstations” and “Servers”. From the “Managed computers – Computers” menu, using “drag and drop” or “cut & copy”, move “DC” to the “Servers” group and create a policy and tasks for this group different from the tasks and policies in the “Managed computers” node "
Installing Kaspersky Endpoint Security
To install Kaspersky Endpoint Security remotely, you need to disable UAC during installation. The requirement is "inconvenient", so we will create a policy in the GPO for Windows Firewall in which we will allow incoming connection according to the following predefined rule " General access to files and printers."
After setup and distribution group policy, let's go to the administration console. Expand the “Administration Server” node and select “Install Kaspersky Anti-Virus”, click “Run Remote Installation Wizard”. In the installation package selection wizard window, select the required package and click “Next”. Select clients in the “Unassigned computers” group and click “Next”.
.jpg)
In the next window, leave everything as default and click “Next”. After the window with choosing a key, the wizard prompts you to ask the user to reboot the system after installation of Kaspersky Endpoint Security is completed, leave it as default and click “Next”. At the “Remove incompatible programs” step, you can make adjustments, of course, if they are necessary. Next, the wizard suggests moving client computers to one of the groups; in our case, moving them to the “Workstations” group.
.jpg)
.jpg)
.jpg)
As we can see, the console “speaks” about the successful installation of Kaspersky Endpoint Security on client stations.
.jpg)
As we can see, after installation, the administration server transferred client machines according to the conditions in the remote installation task.
.jpg)
Kaspersky Endpoint Security on the client machine.
.jpg)
Let's create a policy for client stations in which we will enable “Password protection”; this is necessary, for example, if the user wants to turn off the antivirus.
.jpg)
Let's try to disable protection on the client machine.
.jpg)
Rules for moving computers
On the administration server, you can set movement rules for client computers. For example, let's create a situation in which Kaspersky Endpoint Security will be installed on a newly discovered PC. This is useful in a scenario where an organization has installed a new PC.
For automation Kaspersky deployments Endpoint Security will set the movement rules for computers. To do this, select the “Unassigned computers” node and select the “Configure rules for moving computers to administration groups” item and create a new rule.
.jpg)
.jpg)
In the created rule, the newly detected PC will be added to the “Workstations” group from the specified range of IP addresses.
Next, let's create an automatic deployment task antivirus protection for machines that do not have it installed. To do this, select the “Workstations” group and go to the “Tasks” tab. Let’s create a task to install anti-virus protection with the “Immediate” schedule.
So, we see that the client computer has been added to the “Workstations” group.
.jpg)
Let's go to the "Tasks" tab and see that the installation task has started.
.jpg)
Let me remind you that the situation was reproduced on a machine without anti-virus protection (although before that I demonstrated a remote installation on one of them, after that the anti-virus was removed to demonstrate this scenario) and, as you can see, the installation takes place on a machine without anti-virus protection, a machine with anti-virus protection was not touched by the defense. After installing anti-virus protection, the KES policy will be applied to this client computer.
Reports
Reports in Kaspersky Endpoint Security are more than informative. For example, let's look at the report “About versions of Kaspersky Lab programs”.
.jpg)
The report, in some detail, displays information about installed programs Kaspersky Lab. You can see how many agents, client solutions and servers are installed. Reports can be deleted and added. You can also view the status of anti-virus protection using the “Selection of computers”, which helps you conveniently sort computers with infected objects or with critical events.
In conclusion, I would like to say that only a small part of the Kaspersky Lab anti-virus complex was reviewed. The controls are indeed convenient and intuitive. But it is worth noting the enormous workload of client systems during the search for viruses and potential threats; this workload is caused mainly by heuristic analysis, which requires quite a lot of resources. The product is very easy to administer and is suitable for both AD and workgroup environments. This product is installed on many our clients and shows himself only from the good side.
That's it, people, peace to you!
Loading...
