Kaspersky security center installation of programs. Installing Kaspersky Security Center. Optimize daily tasks

Kaspersky Security Center simplifies the management of security and IT systems. The flexible, scalable console, also available as a web version, meets the security needs of growing businesses as they change with them. It provides comprehensive management of IT systems and security controls and facilitates the distribution of responsibilities among administrators.

Kaspersky Security Center offers the following benefits:

• Powerful management console with an additional flexible web interface, accessible anywhere from any desktop or mobile device
• Ability to view security settings and manage protection across your entire enterprise environment, including cloud, physical, virtual, and mobile devices
• Easily deploy and manage security with ready-to-use, unified policies

It doesn’t matter how many workstations you have (fifty or fifty thousand) and what kind of infrastructure (centralized, distributed or mixed) - Kaspersky Security Center allows you to install, configure and administer comprehensive protection tools without any extra effort. Make it easy to scale and leverage new tools and capabilities to meet your unique business needs.

FEATURES AND BENEFITS

• Complete overview of your protection status

  Growing variety of platforms, devices and software makes life difficult for heads of information security departments. Complexity has a negative impact on safety. The more resources you control, the more difficult it is to track and protect them.

  Collection of information about software and hardware and timely installation of vulnerability patches take a lot of time and effort. Kaspersky Security Center simplifies these tasks. Physical, virtual and cloud desktops, mobile devices and embedded systems are managed from a single console, increasing efficiency and reducing total cost of ownership.

  • Control resources and reduce costs

    Kaspersky Security Center provides a detailed view of the hardware and software on your network. You can save on licensing costs with centralized monitoring and usage rights. Automatic device and hardware discovery and software summary reports help optimize resource utilization. Kaspersky Security Center makes it easy to track and control software licensing and your existing hardware.

  • Finding and eliminating vulnerabilities

    Kaspersky Security Center's vulnerability scanning and patch management technology identifies vulnerabilities in applications and operating systems that cybercriminals can use to penetrate your corporate network. Prompt patching helps eliminate these vulnerabilities before malware has a chance to harm you.

    Automatic vulnerability scanning uses the most up-to-date information about exploit activity coming from the cloud in real time. This allows you to quickly install new critical security patches without slowing down your systems and users. With support for more than 150 applications, Kaspersky Security Center provides effective vulnerability monitoring for a wide range of programs commonly used in business. Detected vulnerabilities are prioritized, and the most critical ones are eliminated first.

  • Automatic risk minimization

    Security patches are automatically downloaded, distributed, and installed on physical, virtual, and cloud-hosted machines. Optimizing Microsoft update installation algorithms can reduce the amount of network traffic and disk space used. You can track the status of patching with detailed reports on closure of vulnerabilities in third-party applications.

  Optimize daily tasks

  Kaspersky Security Center offers extensive IT systems administration capabilities that optimize routine tasks in heterogeneous networks.

  The console's extensible architecture includes plugins to manage security products for a variety of platforms. When a new product is released or an existing one is updated, the required extension can be installed in Kaspersky Security Center without using patches or reinstalling the console. Client-side management tools make it easy to distribute and deploy programs to desktops. Centralized administration is complemented by role-based access and built-in dashboards so that administrators can access only the resources that are relevant to their job responsibilities.

  • Easy scaling

    To scale your console, you don't need to change the original settings. One server instance of Kaspersky Security Center allows you to administer up to 100,000 physical, virtual and cloud workstations. One distribution point can serve up to 10,000 hosts. For several servers, a hierarchy is maintained in which all slave servers inherit the roles and rights of the main server, and the main server has complete information about each host under the control of each slave server.

  • Data Loss Prevention

    Centrally managed encryption further protects data in the event of an attack or device loss. Kaspersky Security Center allows administrators to centrally enable or disable FileVault 2.0 on macOS, mobile device encryption, Kaspersky Lab encryption technology, and Microsoft BitLocker on Microsoft Windows. The console also monitors the status of encrypted devices, reports when access to encrypted files is blocked, and locally stores backups encryption keys to recover forgotten credentials.

  • Optimizing Remote Support

    Reduce response times and increase efficiency by optimizing remote support and troubleshooting capabilities. In Kaspersky Security Center, connections to client/remote computers are made via RDP, which allows for quick diagnosis and troubleshooting of any software.

  • Easy deployment in remote offices

    Kaspersky Security Center supports remote and automatic setup new workstations in the company's branches. You can also deploy new applications and schedule them automatic installation after hours. This allows for centralized creation, storage and deployment of system images, which greatly facilitates migration, for example, to Microsoft Windows 10.

  • Mobile device management across platforms

    Kaspersky Security Center allows you to manage both corporate and personal mobile devices equally effectively. Even when working outside the office, employees don't have to worry about the security of their mobile devices.

  • Mobile Device Security

    Manage the protection of your mobile devices using Kaspersky Security Center and gain a detailed understanding of their security thanks to indicators of protection levels. Keep corporate and personal data separate on user and guest devices, and implement passwords and encryption for corporate data to prevent leakage if the device is stolen or lost.

  • Support for employees to work on personal devices

    In many organizations, employees use their own devices to carry out work tasks (BYOD). The convenient system of assistants in Kaspersky Security Center allows you to deploy protection for such devices using Over the Air (OTA) technology, as well as third-party consoles (Samsung KNOX).

  • SaaS console for security management

    Manage your protection remotely using our cloud-based Kaspersky Security Center console. This is a management server in the Azure cloud. There is no need to waste time and resources on its deployment and support - Kaspersky Lab will take care of them. If you are using Kaspersky Endpoint Business Security Standard, you can now manage the security of Windows, Mac, and Linux workstations directly from the cloud console.
    Main features:

    • Centralized desktop discovery and deployment
    • Distribution point support
    • Possibility of migration within the server hierarchy - for example, moving the main server to the cloud while maintaining the slave server in the local infrastructure
    • Migration Wizard
    • Supports up to 10,000 nodes - the console is suitable for companies of all sizes, including corporations

    At the same time, you can continue to use the existing management tools (MMC console and web console).

    • Advanced web console for local management

      You can now administer advanced features such as vulnerability and patch management, encryption, and remote desktop management using the web console in Kaspersky Enterprise Security for Windows, Kaspersky Enterprise Security for Mac, and Kaspersky Security for Windows Server.

      The console also supports new solutions - Kaspersky Sandbox and Kaspersky Endpoint Detection and Response Optimum, as well as the latest version of Kaspersky Embedded Systems Security.

    • System integrity support

      Kaspersky Security Center allows you to monitor any changes in critical infrastructure components, such as web servers and ATMs, and promptly respond to security breaches. Receive event data from the System Integrity Monitor component. This way you can monitor not only the device’s file system (using file integrity monitoring), but also the registry hives, the status of the firewall and connected equipment.

    • Easily manage security across all devices

      Deploy, configure, and enforce security policies for all devices on all platforms from a single console, providing added visibility, complete control, and efficient management.

    • Protection against attacks on public networks

      Using untrusted public Wi-Fi networks makes devices and corporate networks vulnerable. By creating a list of trusted networks for mobile workers, you can deny them access to all others without compromising their work experience or productivity.

    • Easy firewall management

      Configuring and managing a firewall for Linux and Windows OS. Kaspersky Security Center allows you to apply network policy to all end devices from a single console.

    • Minimizing risks and increasing employee productivity

      You can control which devices and applications can access your network and how they can operate on it, and you have full control over employee access to devices, applications, and websites. This allows us to ensure reliable protection from malware and other threats.

    • Instantly connect security for cloud environments

      Tight integration between the management console and the Amazon Web Services cloud platform provides complete transparency and control of all instances of Kaspersky Security for Linux and Kaspersky Security for Windows Server deployed in the cloud.

      Install Kaspersky Security Center on the Amazon EC2 cloud to manage the security of your environment, or subscribe to one of the AMIs available on the AWS Marketplace to get an image with Kaspersky Security Center already installed and ready to go. Other public cloud services can be used as usual.

    • Optimizing updates and saving traffic

      The new signature update mechanism can reduce the amount of traffic between the Kaspersky Security Center server and agents by 20 times.

      Further optimization is possible by using a remote workplace as a distribution point. Each distribution point can now also act as a Kaspersky Security Network proxy in remote environments.

      Reducing the load on communication channels increases them throughput and availability for other tasks.

    • Extensive audit capabilities

      Improved endpoint application auditing capabilities allow administrators to track changes and rollback to previous policies. An administrator can compare two policies for the same application and get a report on how their settings match and differ. This is especially useful if different administrators have created multiple policies for the same application, or if one policy top level was inherited by all local offices and then adapted for each of them.

    BUY

    Kaspersky Security Center is included in:

Full system requirements can be found in . Note: Below are the minimum requirements for random access memory and processor for the Administration Server, Administration Console and Network Agent. Please review the included user documentation for complete system requirements before deploying each product.

Administration Server

• Hardware requirements

  • RAM: 4 GB
  • Free disk space: 10 GB. When using Vulnerability and Patch Management, you must have at least 100 GB of free disk space.

• Software Requirements

  • Microsoft Windows 7/8/8.1/10
  • Microsoft Windows Server 2008/2008 R2/2012/2016/
  • Microsoft Windows Storage Server 2008 R2/2012/2012 R2/2016

• Database server (can be installed on a different device):

  • Microsoft SQL Server 2008 Express 32-bit.
  • Microsoft SQL Server 2008 R2 Express 64-bit.
  • Microsoft SQL Server 2012 Express 64-bit.
  • Microsoft SQL Server 2014 Express 64-bit.
  • Microsoft SQL Server 2016 Express 64-bit.
  • Microsoft SQL Server 2017 Express 64-bit.
  • Microsoft SQL Server 2008 (all editions) 32-bit / 64-bit.
  • Microsoft SQL Server 2008 R2 (all editions) 64-bit.
  • Microsoft SQL Server 2008 R2 Service Pack 2 (all editions) 64-bit.
  • Microsoft SQL Server 2012 (all editions) 64-bit.
  • Microsoft SQL Server 2014 (all editions) 64-bit.
  • Microsoft SQL Server 2016 (all editions) 64-bit.
  • Microsoft SQL Server 2017 on Windows 64-bit.
  • Microsoft SQL Server 2017 on Linux 64-bit.
  • MySQL Standard Edition 5.6 32-bit / 64-bit.
  • MySQL Enterprise Edition 5.6 32-bit / 64-bit.
  • MySQL Standard Edition 5.7 32-bit / 64-bit.
  • MySQL Enterprise Edition 5.7 32-bit / 64-bit.
  • All supported Microsoft SQL Server versions on Amazon Relational Database Service (RDS) and Microsoft Azure.

Kaspersky Security Center 11 Web Console Server

• Hardware requirements

  • CPU: CPU: 4 cores, 2.5 GHz
  • RAM size: 8 GB
  • Hard disk: 40 GB

• Software Requirements

  Database server:

  • Microsoft SQL Express 2008, 2008 R2, 2012, 2014
  • Microsoft SQL Server 2008, 2008 R2, 2012, 2014, 2016

• • Microsoft Windows x64: 7 SP1, 8, 8.1, and 10
  • Microsoft Windows Server x64: 2008, 2008 R2, 2012, 2012 R2, and 2016

Kaspersky Security Center Web Console client

• Software and hardware requirements

  Using the Kaspersky Security Center web console on client side Requires only a web browser ( Google Chrome 60 or higher). Hardware and software requirements identical for web browser requirements.

Network Agent

Minimum Requirements for computers on which Network Agent is installed:

• Hardware requirements

  • CPU with an operating frequency of 1 GHz or higher. For 64-bit operating systems, the minimum CPU operating frequency is 1.4 GHz.
  • RAM: 512 MB.
  • Free disk space: 1 GB.

  Device with installed Agent administration, which will additionally perform the role of Update Agent, must meet the following requirements:

  • Processor: 3.6 or higher.
  • RAM: 8 GB.
  • Amount of free disk space: from 120 GB.

• Supported Operating Systems

  • Microsoft Windows Embedded POSReady 2009/POSReady 7/Standard 7/8/8.1
  • Microsoft Windows XP SP3/7/8/8.1/10
  • Windows Essential Business Server 2008
  • Windows Small Business Server 2008/2011
  • Microsoft Windows Home Server 2011, 64-bit version
  • Microsoft Windows MultiPoint Server 2011
  • Microsoft Windows Server 2008/2008 R2/2012/2012 R2/2016/2019
  • Microsoft Windows Storage Server 2008 R2/2012/2012 R2
  • Debian GNU / Linux 7.x/8.x/9.x
  • Ubuntu Server/Desktop 14.04/16.04/18.04
  • CentOS 6.x/7.0 64-bit
  • Red Hat Enterprise Linux Server 6.x/7.x
  • SUSE Linux Enterprise Server/Desktop 12
  • OS X 10.10–10.14

• Supported virtualization platforms

The application is available as part of the Kaspersky solution Endpoint Security for business and can be used on a subscription basis with flexible monthly licensing. Check with your local partner for system requirements. You can view the subscription options available in your country.

The larger the network, the more the system administrator (or IT department) tries to automate the management of software products. Antivirus software is no exception in this regard.

Many antivirus manufacturers have remote administration tools in their arsenal; today we will talk about a similar solution from Kaspersky Lab.

In general, Kaspersky Security Center is a rather serious application, which definitely cannot be described in one article. Therefore, in this article we will analyze only its deployment.

You can download Kaspersky Security Center. The product itself consists of a server that will need to be deployed, an administration console that can be installed on another computer for remote administration of the server, a web console as an alternative to the usual one, and an administration agent that is installed on client computers and is responsible for communicating anti-virus software with the server.

The server itself must be deployed only on Windows operating systems. Moreover, the presence of a server edition is not necessary. Systems from XP and higher are supported, but only in the Professional/Enterprise/Ultimate editions. A complete list of supported systems can be found on the website.

In addition, the server requires MS SQL or MySQL (remote is possible) to operate. If ready server There are no databases at hand, the Kaspersky Security Center installer will install MS SQL Express itself, which is quite enough for most organizations.

So, to deploy the server, download and run the installation file (I recommend downloading the full distribution). As test bench We have selected a computer with the Windows Server 2012 R2 operating system.

You will see a convenient menu in which we are now interested in the “Install Kaspersky Security Center 10” item.

After starting the installation, you will be asked to accept the license agreement and select the installation type. For better control Above the installation process we will mark a custom installation.

If you have mobile devices on your network, you can install a separate component to manage their security.

Enter the size of your network. This point, however, does not carry any important determining force.

Next, the installation program will ask under which user to run the administration server service. You can specify an existing user with admin rights or allow the installer to create a new one.

The next step is to select a database server. As already mentioned, there are two options here - MS SQL or MySQL. If you do not have a ready-made server, Kaspersky Security Center will carefully deploy MS SQL Express.

At this step in the installation process, you may be in for a small surprise if you do not have the .NET Framework 3.5 SP 1 installed on your system.

Windows Server .NET Framework 3.5 SP 1 is built in as a feature and only needs to be enabled. If you do not have a server operating system, then you need to go to the Microsoft website and download the installer.

Let's consider the option of enabling the component in Windows Server. To do this, open Server Manager and select “Add roles and features.”

A wizard will launch in which we need to indicate that we are going to install roles or components.

Windows Server Add Roles and Features Wizard

We select our server and skip the selection of roles. In the list of components, find .NET Framework 3.5 Functions and check them.

Adding a Feature to Windows Server

After this, we will return to installing Kaspersky Security Center itself.

We need to select the SQL authentication mode. This can be either a separate account or a current one.

The Kaspersky Security Center server requires a shared folder, which client computers could access to receive updates and installation packages. You can create a new folder or specify an existing one.

We indicate the ports through which we will connect to the administration server.

Specify the server address on the network. If the server has and will have a static IP address, you can limit yourself to it. But it’s still more convenient to identify the server by name.

The last step before installation is to select the necessary plugins. Plugins allow you to manage various Kaspersky Lab antivirus products. This is useful if you have a whole “zoo” of versions. Plugins can also be installed later.

Now all that remains is to watch the installation process. Sometimes plugins require you to accept a separate license agreement.

The installation of Kaspersky Security Center is complete.

Now let's go over the initial server setup. The administration console installed with the server looks like this:

Administration console of Kaspersky Security Center

The console can also be installed separately. And it’s even necessary so as not to log into the server every time for routine actions.

The left column lists the servers. For now there is only our newly created server. If you administer several servers, then simply click Add Administration Server.

So, click on the newly created server and the Initial Setup Wizard will launch. You will be asked to activate the program using a code or key. However, this can be done later.

In addition, the wizard will ask for your consent to participate in the Kaspersky Security Network program. Essentially, this is another spy on your computers that sends Kaspersky Lab data about what resources you access and where you pick up the infection. This is motivated by the creation of a certain knowledge base. In my opinion, for the end user the point of participating in such a program is questionable.

You will also be asked to indicate mailboxes for notifications from the Kaspersky Security Center server. You can skip this step.

After all these steps, the server will start downloading the latest updates from the network. In the future, you can configure not the Kaspersky Lab server on the Internet as an update source, but an upstream server, if there are several of them on your network.

After downloading updates and polling the network, the wizard will display a successful completion message and offer to run the Deploy Protection on Workstations Wizard.

We will talk about deploying protection on workstations in.

1. Go to node Administration Server.
2. Select from menu View → Interface setup.
3. Configure the display of interface elements using the following checkboxes:

   Display System Administration. If the checkbox is checked, in the folder Remote installation Deploying device images, and in the folder Storage subfolder is displayed Equipment. By default, the checkbox is cleared.

   Display encryption and data protection. If the checkbox is selected, you can manage data encryption on devices connected to the network. After restarting the program, a folder will appear in the console tree Encryption and data protection

   Display workplace control parameters. If the checkbox is selected, in the section Security control The Kaspersky Endpoint Security for Windows policy properties window displays the following subsections: Program control, Vulnerability monitoring, Device Control, Web Control. By default, the checkbox is cleared.

   Display Mobile Device Management. If the checkbox is checked, the function is available Mobile device management. After restarting the program, a folder will appear in the console tree Mobile devices . By default, the checkbox is cleared.

   Display slave Administration Servers. If the checkbox is selected, the console tree displays nodes of slave and virtual Administration Servers as part of administration groups. By default, the checkbox is selected.

   Display sections with security settings. If the checkbox is selected, the section will be displayed in the properties windows of the Administration Server, administration groups and other objects Safety. By default, the checkbox is selected.

4. Click OK.

To apply some changes, you must close and reopen the Administration Console.

A large number of articles describe how to remotely install an application on several computers in a domain network (AD). But many people face the problem of finding or creating suitable packages Windows installations Installer (MSI).

Really. In order to install, for example, FireFox for all users of a group, you must either assemble an MSI package yourself (), or download a suitable one from the appropriate website. The only thing is that in the first case - in fact - the task is not at all trivial, but in the second - we get a package configured in the way its creator wanted, and even in fact modified (doubtful, but a minus).

If your organization as antivirus protection you use Kaspersky Lab products - and you use an administration server - you can install programs remotely even from *.exe packages, using keys - to manage installation parameters.

Silent installation options

Most programs can be installed in “quiet” mode, for example there is a table with a large number of frequently used programs, and supported parameters passed during installation. You can also find a large number transmitted parameters installations.

So we need:

• Download the standard distribution of the program we need from the developer’s website (or where you usually get them from)
• Find on the Internet which silent installation keys the program you are using supports.
• Install the program on the user's PC using Kaspersky Security Center

To do this, you need to prepare an installation package in Kaspersky Administration Kit(KSC). And by task or manually install on necessary computers.
Administration panel - gives full control (during installation) comparable to administration through group policies Win-server, but for me it’s even more convenient - less tricks - less chance of making mistakes;)

If you assign installation of programs manually, or all your users use the same set of programs, then you can skip this section, but if in your organization different software is installed for different departments, these departments can be assigned different groups for which different tasks will be used .

User groups in KSC are divided - similar to the structure used in AD - directories and sub-directories. Tasks and policies used in parent groups are applied to all child groups.

This way, for example, all company users can install FireFox and Chrome, and only Photoshop designers.

So let's get started:

1) To create an installation package, you need to go to the “Installation packages” subsection of the “Storage” section in the KSC control panel. There we will see a list of created individual entrepreneurs, the ability to create a new one, as well as edit or delete an existing one.

Creating a new installation package is simple: you indicate its name (how it will be displayed in KSC), select “IP for a program specified by the user,” specify let to the program (exe, bat, cmd, msi) and specify launch parameters (keys quiet installation).

The specified package can then be used for installation on remote computers.

2) Now we need to create a task to install the created package. If you have previously worked with KSC, or its previous analogue Adminkit. The process of creating a task itself will not be difficult for you.

You can either create a task by going to the folder of the corresponding group, and going to the “Tasks” tab - create a new task. Or Go to the “Tasks for sets of computers” section and create a new task.
Set the name of the created task and select the task type “Remote program installation”.

We select the program that we want to install, which user groups will be assigned this task, and indicate the user who is allowed to install the software on all of the computers used (usually a domain administrator).

The only thing in terms of settings is that we are limited only to those parameters that the developer allows you to transfer when installing the program, and configure the proxy server in the browser via command line We are unlikely to succeed. But here standard AD group policies come to our aid. After all, alternative browsers usually use system settings proxies, and we can assign them to the right users via AD. ;)

Kaspersky Endpoint Security 10 for Windows is one of best solutions, allowing you to protect a private local network or an organization’s network. The program is installed on a computer that is base station, but protects all network components. This scheme of work allows you to save on licenses, because it is enough to equip one computer with anti-virus software, and not all. This is why Kaspersky Endpoint Security is the best option for large organizations.
Like other Kaspersky products, Endpoint security has all the necessary elements for comprehensive protection. They work independently of each other, which allows you to configure protection parameters with the highest precision. For example, you can disable verification of downloaded files, but leave site security monitoring. This ensures maximum performance and efficiency. You can download Kaspersky Endpoint Security for free to evaluate it functionality and quality GUI. The program can be easily installed on regular home computers under Windows control 7/8/10. Of course, both 32 and 64 bit versions are supported.

Technically, this version is a regular anti-virus software, to which special tools have been added for centralized communication of several devices, as well as a number of specific utilities that guarantee greater security when working on the network. By using Endpoint Security, you can be sure that your organization's data will remain private and that all kinds of spyware will not be able to access it.

Many tests have been carried out which have shown that Windows system, supplemented by the Kaspersky anti-virus solution, is not susceptible to all existing threats. This is also facilitated by cloud technology, which identifies malware not only by signatures, but also by behavioral characteristics of the program. This approach does not allow downloading files infected with unique viruses on a computer with Kaspersky Endpoint Security installed.

Additional features of KES 10:

• Control of devices installed on the computer;
• Monitoring the network and browser status;
• IM and mail protector;
• Encryptor of hard and removable drives;
• Anti-DdoS.

This material was prepared for specialists involved in managing anti-virus protection and security in an enterprise.

This page describes and discusses the most interesting functionality of the latest versions of Kaspersky Endpoint Security 10 and the central console Kaspersky management Security Center 10.

The information was selected based on the experience of communication by NovaInTech specialists with system administrators, heads of IT departments and security departments of organizations that are just switching to Kaspersky anti-virus protection, or are going through the process of switching from using the 6th version of the anti-virus on client computers and the Administration management console Kit 8. In the latter case, when anti-virus protection from Kaspersky Lab is already used, it is also common that IT specialists do not know the most interesting moments in the work of new versions of products that really help make life easier for these same IT specialists, and at the same time increase the level of security and reliability.

After reading this article and watching the videos, you will be able to briefly familiarize yourself with the most interesting functionality that provides latest version management consoles of Kaseprky Security Center and Kaspersky Endpoint Security and see how it works.

1. Installation of the Kaspersky Security Center 10 administration server.

You can find the necessary distribution kits on the official Kaspersky Lab website:

ATTENTION! The distribution package of the full version of Kaspersky Security Center already includes the distribution package of Kaspersky Endpoint Security of the latest version.

First of all, I would like to talk about where to start installing anti-virus protection from Kaspersky Lab: Not with the anti-viruses themselves on client computers, as it might seem at first glance, but with the installation of the administration server and the central management console Kaspesky Security Center (KSC ). Using this console, you can deploy anti-virus protection on all computers in your organization much faster. In this video you will see that after installation and minimal server configuration KSC administration, it becomes possible to create an installer for an anti-virus solution for client computers, which even a completely untrained user can install (I think every administrator has such “users”) - the installation interface contains only 2 buttons - “Install” and “Close”.

The administration server itself can be installed on any computer that is always on or is maximally accessible; this computer must be visible to other computers on the network, and it is very important for it to have access to the Internet (for downloading databases and synchronizing with the KSN cloud).

Watch the video, even if you have installed the center console before, but previous versions- perhaps you will hear and see something new for yourself...

DID YOU LIKE THE VIDEO?
We do the same supply of Kaspersky products. And even more - we provide technical support. We care about our clients.

2. Setting up centralized management on computers with Kaspersky already installed.

It is often found that in small organizations, system administrators install and configure anti-virus protection on each computer manually. Thus, the time they spend on maintaining anti-virus protection increases and they do not have enough time for some more important tasks. There are cases when administrators, simply due to lack of time, simply do not know that corporate versions of anti-virus protection from Kaspersky Lab generally have centralized management, and do not know that they do not have to pay anything for this miracle of civilization.

In order to “link” already installed client antiviruses with the administration server, you need very little:

• Install the administration server (First section of this article).
• Install the administration server agent (NetAgent) on all computers - I will tell you about the installation options in the attached video below.
• After installing the administration server agent, the computers, depending on your settings, will be either in the “Non-distributed computers” section or in the “Managed computers” section. If the computers are in “Not distributed computers”, they will need to be transferred to “Managed computers” and configure a policy that will apply to them.

After these steps, your computers will be visible to you from the central console, users will no longer be able to manage the antiviruses installed on their machines and, as a result, there will be fewer infections and less headaches for the administrator.

In the video below, I will try to describe scenarios for installing NetAgents on client computers, depending on how your network is structured.

We reviewed the functionality of Kaspersky Endpoint Security 8, which provides a comprehensive multi-level system of protection for computers running operating systems. Windows systems. To centrally manage all deployed copies of Kaspersky Endpoint Security 8 on an organization's computers, the Kaspersky Security Center solution is used. In the second part of the review, we will look in detail at how administration occurs using the new, ninth version of Kaspersky Security Center and what main capabilities it provides.

The main purpose of Kaspersky Security Center is to provide the administrator with tools for configuring all components of the protection system and access to detailed information about the security level corporate network. Kaspersky Security Center is a single tool for centralized management of a large set of security tools in an organization, provided by Kaspersky Lab. A set of software products that can be controlled by Kaspersky help Security Center includes solutions for protecting workstations, servers and mobile devices:

• Kaspersky Endpoint Security 8 for Smartphone;
• Kaspersky Endpoint Security 8 for Windows;
• Kaspersky Endpoint Security 8 for Linux;
• Kaspersky Endpoint Security 8 for Mac;
• Kaspersky Anti-Virus 6.0 for Windows Workstation;
• Kaspersky Anti-Virus 6.0 Second Opinion Solution;
• Kaspersky Anti-Virus 6.0 for Windows Servers Enterprise Edition;
• Kaspersky Anti-Virus 8.0 for Windows Servers Enterprise Edition;
• Kaspersky Anti-Virus 8.0 for data storage systems;
• Kaspersky Anti-Virus 8.0 for Linux File Server;
• Kaspersky Anti-Virus 6.0 for Windows Servers;
• Kaspersky Anti-Virus 5.7 for Novell NetWare.

Figure 1. Logic of using Kaspersky Security Center to protect an organization’s network

Kaspersky Security Center can operate in two modes - the usual one, which is described in this review, and the mode necessary for the work of service providers who provide other organizations with protection of their networks in the form of a SaaS service. This mode requires a special license.

Kaspersky Security Center is not a separate program, but a complex software, which includes:

• Administration server – a service responsible for security management. It is the main module of Kaspersky Security Center and stores all information about managed computers in a database (MS SQL Server or MySQL). In addition to the main administration server, you can organize a hierarchical structure of administration servers to work through them with remote parts local network or the local network of the serviced organization. This is especially true for companies whose structure is distributed. In this case local users They only access their own server.
• administration console – a module implemented as a snap-in for the Microsoft Management Console and intended for managing the administration server;
• web console – a web application that has a purpose similar to the administration console. The difference is that the web console allows you to access the administration server through a browser using the web interface. However, compared to the same administration console, it has limited management capabilities;
• Kaspersky Security Center Administration Agent is a program designed for interaction between the administration server and client computers. It is installed on client systems and allows you to receive information about the current state of programs and events that occurred on client computers, send and receive control commands, and also ensures the functioning of the update agent.
• program management modules – modules that are installed on the administrator’s workstation. Purpose – to gain access to software products Kaspersky Lab in the organization through the administration console.

Figure 2. Structural scheme interactions between Kaspersky Security Center components

The diagram shows that the administrator has the ability to work through the snap-in with several administration servers, which are, for example, company servers located in different offices. In addition, the administrator has the ability to access the administration server through an Internet browser from any computer without having to install any modules on it, which can be useful when it is necessary to monitor the security system. This method access is also used when deploying protection in an organization by an external service provider, whose administration server can be accessed from the protected network using the web console.

Figure 3. Web console usage diagram

;

Kaspersky Security Center allows you to configure and manage components and settings on client computers. For each user group or specific user, the administrator can set various settings the following components:

1. Protection components: file antivirus, mail antivirus, web antivirus, IM antivirus, firewall, defence from network attacks, network monitoring, system monitoring.
2. Control components: program launch control, program activity control, vulnerability scan, device control, web control.

Figure 4. Diagram of components managed by Kaspersky Security Center

Ninth Kaspersky version Security Center is a development of the Kaspersky Administration Kit 8.0 tool. In comparison, a set of new functions has been added to Kaspersky Security Center. It has become possible to create virtual administration servers, control over the operation of the Application Control, Vulnerability Control, Web Control and Device Control components has been added; a web console has appeared for managing the administration server via a browser; functions for managing clients on virtual machines, it became possible to centrally detect and eliminate vulnerabilities on client computers. The functions of tools for managing installations of various components, obtaining additional information about monitored computers, creating reports and working with accounts.

System requirements

To work with Kaspersky Security Center 9, your computer must meet the general system requirements listed in Table 1.

Table 1. Hardware requirements for working on different operating systems

Operating system version	Hardware requirements
32-bit OS
Microsoft Windows Server 2003; Microsoft Windows Server 2008 deployed in Server Core mode; Microsoft Windows XP Professional SP2, Vista SP1, 7 SP1.	processor with a frequency of 1 GHz or higher; 512 MB RAM; 1 GB of free hard disk space.
64-bit OS
Microsoft Windows Server 2003; Microsoft Windows Server 2008 SP1, 2008 R2, 2008 R2 deployed in Server Core mode; Microsoft Windows XP Professional SP2, Vista SP1, 7 SP1;	processor with a frequency of 1.4 GHz or higher; 512 MB RAM; 1 GB of free hard disk space.

Since Kaspersky Security Center 9 includes three components - the administration server, the administration console and the web administration console server, for each of them to work, the following requirements must be met.

Administration Server

• Microsoft Data Access Components (MDAC) 2.8 or higher or Microsoft Windows DAC 6.0.
• Microsoft Windows Installer 4.5 (for Windows Server 2008 / Windows Vista).

Database Management System

• Microsoft SQL Server Express 2005, 2008;
• Microsoft SQL Server 2005, 2008, 2008 R2;
• MySQL Enterprise.

Administration Console

• Microsoft Management Console 2.0 or later.
• Microsoft Internet Explorer 8.0.

Server web administration console

• Web server: Apache 2.2.
• Browser – Internet Explorer 7, Firefox 3.6 or Safari 4.

Functionality

The main functions of Kaspersky Security Center are to deploy protection on client machines, centralize the administration of these programs, and receive information about events on protected computers.

Deployment of protection

1. Remote installation and removal of endpoint protection software and administrative tools.
2. Deployment of third-party products or your own installation packages on protected computers.
3. Ability to install endpoint protection systems on infected computers.

Administration

1. Creation of virtual administration servers to ensure protection of physically remote segments of an organization’s local network or remote offices.
2. Formation of a hierarchy of administration groups for “flexible” configuration of rules for the work of various user groups.
3. Combining a set of rules and settings of various components into policies and flexible application of the created policies to regulate the activities of a specific user or group of users. The ability to use both standard policies and create new policies.
4. Implementation of centralized (if necessary, remote) management of programs to protect endpoints.
5. Centralized updating of databases and protection modules with endpoint protection programs.
6. Centralized work with files placed in quarantine or in backup storage, as well as with objects whose processing has been postponed.
7. Inventory of hardware devices and software on computers on the organization’s local network.
8. Centralized detection and elimination of vulnerabilities found in the operating system and various software.
9. Management of Kaspersky Endpoint Security 8 deployed in virtual environments (automatic detection of virtual machines, management life cycle virtual machines, optimizing the load on the host server when performing resource-intensive tasks).

Monitoring

• Obtaining information about critical events on protected computers in real time.
• Receiving statistics and reports on all events on protected computers. It is possible to generate reports containing events in each protection component and administrator actions. Reports can be generated on a schedule or at the request of the administrator. If necessary, you can configure sending reports in a convenient format by email.
• Using the web console allows you to organize access to operational information about the protection status and reports from any computer on the network or remotely.

Also in Kaspersky Security Center there is now the ability to manage the protection of virtual workstations. When a new one appears on the network virtual machine, it is automatically found, connected to the administration console, and all the necessary protection components are installed on it. Kaspersky Security Center allows you to distinguish between virtual and physical machines and combine them into different groups for easy administration of the virtual infrastructure. Dynamic mode support for Virtual Desktop Infrastructure (VDI) is also implemented.

Preparation for use

To install Kaspersky Security Center, you need to run the program installation file, after which the installation wizard welcome window will appear.

Figure 5. Initial window of the Kaspersky Security Center installation wizard

Next you need to familiarize yourself with license agreement and accept its terms. After this, you need to select the installation type. The standard installation contains a minimum set of components and is recommended for networks containing up to 200 computers. Custom installation allows you to configure additional settings for Kaspersky Security Center and is recommended for networks containing more than 200 computers. Select a custom installation and click the “Next” button.

Figure 6. Selecting the Kaspersky Security Center installation type

On next step you need to select the components to install.

Figure 7. Selecting Kaspersky Security Center components for installation

Figure 8. Selecting network size

In the next step, you need to select the account under which the administration server will be launched on the computer. You can choose one of two types of accounts - a system account (not available in Windows Vista and later Microsoft operating systems) or a user account.

Figure 9. Selecting the account under which Kaspersky Security Center will be launched

After this, you need to select the database type for the administration server - Microsoft SQL Server (Express Edition) or MySQL. When you select MS SQL Server, if this DBMS is not available, it will be installed. If you choose to work MySQL DBMS– it must already be installed on the system.

Figure 10. Selecting a database server for Kaspersky Security Center

The next step is to configure the connection parameters to the server with the database. And then an account is configured to connect to the server.

Figure 11. Configuring connection parameters to a server with a database

After this you need to determine the location and name of the folder public access, in which they will be stored setup files and updates. You can create a new folder or select an existing one.

Figure 12. Creating a public folder

Next, you need to specify the port number for connecting to the administration server (“port 14000 is used by default”) and the SSL port number for a secure connection to the administration server using the SSL protocol (“port 13000 is used by default”).

Figure 13. Configuring connection parameters to the administration server

After this, you need to set the address of the administration server. The address can be a DNS name, NetBIOS name, or IP address.

Figure 14. Setting the address of the administration server

The next step is to select modules to manage programs. We need a module to manage Kaspersky Endpoint Security 8 for Windows, so we select it.

Figure 15. Selecting modules for installation

This completes the setup process and you can start installing the program. Next, you need to restart the operating system, after which the installation can be considered complete.

After installation you will need to make a series additional settings– specify the key or registration code, decide on the use of cloud technologies, configure the sending of notifications about the occurrence of events and proxy server settings. After this, you can start working with Kaspersky Security Center.

Working with the product

The administration server is managed through the administration console. It is a special snap-in that is integrated into the Microsoft Management Console (MMC).

Figure 16. Microsoft Management Console snap-in window

The advantage of using the snap-in is its standard interface, which is familiar to administrators working with Windows OS. In addition, you can add several different snap-ins to one management console. For example, Windows Firewall, Diskeeper defragmentation program, Performance snap-in and Kaspersky Security Center.

Figure 17. Example of creating a management console

The main window for working with Kaspersky Security Center consists of a menu, a toolbar, an overview panel (console tree) and a work area. After installing Kaspersky Security Center, we gain access to the administration server, through which we will manage instances of Kaspersky Endpoint Security 8 installed on computers on the local network.

With a distributed company structure, it is necessary to create a set of administration servers that will allow servicing each network segment separately, but, at the same time, centrally manage everything from one point. This will reduce traffic within the local network and simplify work with remote offices or local network segments. If you have several administration servers, you can delegate responsibility for security and authority to manage each virtual server to individual administrators. You can add administration servers from the context menu of the “Kaspersky Security Center” node (“Create” – “Kaspersky Administration Server” – “Administration Server...”). The created hierarchy allows you to create rules for inheriting tasks and policies for different administration servers.

The hierarchy of tools for the administrator’s work is presented in Figure 18.

Figure 18. Hierarchy of tools for administrator work

The administration server can be used as a proxy server for Kaspersky Security Network (KSN), a special service - KSN Proxy - is responsible for this. Its use allows all computers under the control of the administration server to transmit and receive data to the “cloud” even if they do not have access to the Internet. Also, by caching requests, KSN Proxy allows you to reduce the load on Internet access.

Figure 19. Configuring KSN Proxy parameters

The logic for working with the program when deploying protection and administering it is constructed as follows. First, the administrator configures the administration server settings. After this, administration groups are created in accordance with the logic of the protected network. For example, accounting employees can be prohibited from using any removable media, and for programmers to configure the most stringent web control parameters.

Computers are added to the created groups, and the Administration Agent and Kaspersky Endpoint Security 8 are installed on each computer. Security policies are then created and configured for each user group. The administrator can also create various tasks (virus scan, update, etc.) and set criteria for their execution (by timer, by event, etc.). After this, working with the program goes into background mode- the administrator needs to periodically review reports, respond to threats, add new users for protection, and perform other network maintenance work. Let's take a step-by-step look at how it works.

To manage protection settings on client computers, use the “Computer Management” group, which contains four panels: “Groups”, “Policies”, “Tasks” and “Computers”.

Figure 20. Computer Management group

Creating administration groups and setting them up

The “Groups” panel contains tools for managing groups of computers on the “Administration Server”. These administration groups allow you to organize a hierarchy of computers on the network in order to selectively apply various policies and tasks to them in the future. By default, only one, the root, group is available. Using the “Create Group” and “Create Subgroup” commands in the “Groups” panel, you can create the hierarchy of computer groups required in your organization.

Figure 21. Example of creating administration groups

Via the context menu of the “Managed computers” node (command “All tasks” - “Create group structure” in context menu) the hierarchy of computers can be generated automatically. For this purpose, information about the structure of domains and workgroups is used Windows network, groups Active Directory or content text file.

In the “Groups” panel, you can set the conditions for installing programs on computers newly added to the group. You can also specify the criteria by which the user’s computer will be assigned the “Warning” or “Critical” status. For example, if the databases have not been updated for more than X days or more than Y viruses have been found.

Figure 22. Setting criteria for setting statuses for computers

Once the groups have been created and configured, you can begin populating the groups with computers. To do this, use the “Computers” panel, in which you can add and remove computers on the “Administration Server”. You can also view information about each computer on the network - its status, the time the databases with signatures were updated, the number of viruses found, etc.

Figure 23. Computers panel with the filtering panel expanded

To add a new computer, you need to click on the “Add computers” button, after which the wizard window will appear. The first step is to determine how to add client computers.

Figure 24. Window of the Add Client Computers Wizard

When manually adding computers, you need to specify the IP address or range of IP addresses of computers on the network. You can also import a list from a text file with a list of IP addresses.

Figure 25. Manual addition new computers

At automatic addition Simply specify the required computers from the list of detected computers on the network.

Figure 26. Window for adding computers detected by the administration server

If for some reason the computers were not distributed into administration groups, they remain in the folders of the “Unassigned computers” node. You can also apply tasks and configure policies to these computers. New computers found by the administration server when polling the Windows network, IP addresses and Active Directory groups are also placed in these folders. After finding new computers on the network, the administrator can move them to one of the existing groups.

Installing applications via Kaspersky Security Center

Kaspersky Security Center allows installation on computers on a local network various programs. These may be Kaspersky Lab customer protection programs or third-party programs. To install the program on a client computer, you must create a task of the appropriate type and specify the computers for which it will be executed.

Installing programs through Kaspersky Security Center is primarily necessary to deploy protection on client computers when starting to use Kaspersky Lab solutions in an organization and when adding new computers for protection.

To organize protection on client computers, you first need to install administration agents and Kaspersky Endpoint Security 8. The installation package is installed using the Remote Installation Wizard, which is launched from the “Groups” panel by clicking on the “Start installation” button. Select the administration agent and click the “Next” button.

Figure 27. Selecting the program to install

We indicate that the program is installed “From a shared folder”. After installing the Administration Agent, it is more convenient to carry out all installations through it, since in this case it is possible to centrally manage the installation repository. And when adding a new computer to the network, the administrator will be able to run one task to install the entire list of necessary programs.

Figure 28. Selecting program installation options

In the next step you can specify Accounts with administrator rights.

Figure 29. Selecting accounts with administrator rights on the target computer

After this, you will need to choose whether to restart the computer after installing the program and, if so, whether to force it or ask the user. At this point, the creation of the program installation task is completed and you can run it.

Figure 30. Running the application installation task

If for some reason installation over the network is not possible (for example, the network is disabled on the computer), then you can create an installation package and provide it to the user for independent installation.

Subscribe to news