Kaspersky Security Center 10 - Newco ICT Security Services Kft.

Kaspersky Security Center 10 - Newco ICT Security Services Kft.
Kaspersky Security Center 10
AD Getting Started
APPLICATION VERSION : 10 S ERVICE P ACK 1
Dear User,
Thank you for choosing our product. We hope that this document will help you in your work and will provide answers
regarding this software product.
Attention! This document is the property of Kaspersky Lab: All rights to this document are protected by the copyright laws
of the Russian Federation and by international treaties. Illegal reproduction or distribution of this document or parts
hereof will result in civil, administrative, or criminal liability under applicable law.
Any type of reproduction or distribution of any materials, including translations, is allowed only with the written permission
of Kaspersky Lab.
This document, and graphic images related to it, may only be used for informational, non-commercial, and personal
purposes.
This document may be amended without additional notification. The latest version of this document can be found on the
Kaspersky Lab website, at http://www.kaspersky.com/docs.
Kaspersky Lab assumes no liability for the content, quality, relevance, or accuracy of any materials used herein the rights
to which are owned by third parties, or for any potential damages associated with the use of such documents.
Document revision date: 1/15/2015
© 2014 Kaspersky Lab ZAO. All Rights Reserved.
http://www.kaspersky.com
http://support.kaspersky.com
2
TABLE OF CONTENTS
ABOUT THIS DOCUMENT ..................................................................................................................................... 5
In this document ................................................................................................................................................ 5
Document conventions ...................................................................................................................................... 6
SOURCES OF INFORMATION ABOUT THE APPLICATION ................................................................................... 8
Sources of information for independent research ................................................................................................ 8
Discussing Kaspersky Lab applications on the forum .......................................................................................... 9
KASPERSKY SECURITY CENTER ...................................................................................................................... 10
APPLICATION LICENSING .................................................................................................................................. 11
About the End User License Agreement ........................................................................................................... 11
About the license............................................................................................................................................. 11
About key........................................................................................................................................................ 12
Kaspersky Security Center licensing options .................................................................................................... 12
About restrictions of the main functionality........................................................................................................ 14
About the activation code ................................................................................................................................ 15
About the key file............................................................................................................................................. 15
About data provision........................................................................................................................................ 16
APPLICATION INTERFACE ................................................................................................................................. 17
STARTING THE APPLICATION............................................................................................................................ 18
DEPLOYING THE PROTECTION SYSTEM .......................................................................................................... 19
Deploying anti-virus protection within an organization ....................................................................................... 19
Deploying a protection system on a client's corporate network .......................................................................... 20
PERFORMING TYPICAL TASKS.......................................................................................................................... 21
Installing Kaspersky Security Center components ............................................................................................ 22
Creating administration groups ........................................................................................................................ 22
Installing Kaspersky Security Center Web Console........................................................................................... 23
Creating a virtual Administration Server ........................................................................................................... 24
Defining an Update Agent. Configuring Update Agent....................................................................................... 24
Configuring the Network Agent installation package ......................................................................................... 25
Managing mobile devices ................................................................................................................................ 26
Connecting mobile devices supporting Exchange ActiveSync ...................................................................... 26
Connecting iOS MDM mobile devices ......................................................................................................... 27
Installing an application remotely ..................................................................................................................... 27
Configuring automatic installation of applications .............................................................................................. 28
Creating the task of downloading updates to the repository............................................................................... 28
Verifying downloaded updates ......................................................................................................................... 29
Distributing updates to client computers automatically ...................................................................................... 30
Configuring policies for an application .............................................................................................................. 31
Viewing and changing local application settings ............................................................................................... 31
Configuring notification settings ....................................................................................................................... 31
Testing notifications......................................................................................................................................... 32
Creating and viewing a report .......................................................................................................................... 32
Saving a report................................................................................................................................................ 33
Creating a report delivery task ......................................................................................................................... 33
3
GETTING
STARTED
Viewing the report on detected viruses ............................................................................................................. 33
Viewing information about events..................................................................................................................... 34
Viewing the current status of anti-virus protection ............................................................................................. 34
Backing up Administration Server data ............................................................................................................. 35
SWITCHING FROM KASPERSKY SECURITY CENTER 9.0 TO KASPERSKY SECURITY CENTER 10 ................ 36
CONCLUSION ..................................................................................................................................................... 37
CONTACTING TECHNICAL SUPPORT SERVICE ................................................................................................ 38
About technical support ................................................................................................................................... 38
Technical support by phone ............................................................................................................................. 38
Technical Support via Kaspersky CompanyAccount ......................................................................................... 38
KASPERSKY LAB ZAO ........................................................................................................................................ 40
INFORMATION ABOUT THIRD-PARTY CODE ..................................................................................................... 41
ABOUT NAC/ARP ENFORCEMENT TECHNOLOGY ............................................................................................ 42
ENHANCED PROTECTION WITH KASPERSKY SECURITY NETWORK .............................................................. 43
TRADEMARK NOTICE ......................................................................................................................................... 44
4
ABOUT THIS DOCUMENT
This 'Getting Started' guide is aimed at specialists who are involved in installation and administration of Kaspersky
Security Center, as well as specialists who are in charge of support of organizations that use Kaspersky Security Center.
You can use this guide for a quick start of the application use (acquainting with the interface, performing basic
operations).
IN THIS SECTION:
In this document .........................................................................................................................................................5
Document conventions ...............................................................................................................................................6
IN THIS DOCUMENT
Getting Started with Kaspersky Security Center contains an introduction, sections that describe typical tasks that
Kaspersky Security Center performs, and a conclusion.
Sources of information about the application
This section describes sources of information about the application and lists websites that you can use to discuss the
application's operation.
Kaspersky Security Center (see page 10)
The section contains information on the purpose of Kaspersky Security Center, and its main features and components.
Application licensing
This section provides information about general concepts related to the application activation. This section describes the
purpose of the End User License Agreement, the ways of activating the application, and how to renew your license.
Application interface (see page 17)
This section describes the main features of the Kaspersky Security Center interface.
Starting the application (see page 18)
This section describes the startup of Kaspersky Security Center.
Deploying the protection system (see page 19)
This section describes the possible scenarios for deployment of a protection system in an organization's network:
Executing standard tasks (see page 21)
This section describes the basic operations that you can perform using Kaspersky Security Center.
5
GETTING
STARTED
Switching from Kaspersky Security Center 9.0 to Kaspersky Security Center 10 (see page 36)
This section describes the procedure for switching from Kaspersky Security Center 9.0 to Kaspersky Security Center 10,
as well as the main actions for initial setup of the new version of the application.
Conclusion (see page 37)
This section summarizes the information in this document.
Contacting Technical Support Service
This section explains how to contact Technical Support Service.
Kaspersky Lab ZAO (see page 40)
This section provides information about Kaspersky Lab.
Information about third-party code (see page 41)
This section provides information about third-party code used in Kaspersky Security Center.
Trademark notice (see page 44)
This section contains registered trademark notices.
DOCUMENT CONVENTIONS
Document conventions are used herein (see the table below).
Table 1.
Document conventions
SAMPLE TEXT
DOCUMENT CONVENTIONS DESCRIPTION
Note that...
Warnings are highlighted with red color and boxed. Warnings contain information
about actions that may lead to some unwanted outcome.
Notes are boxed. Notes contain additional and reference information.
We recommend that you use...
Example:
Examples are given on a yellow background under the heading "Example".
...
6
ABOUT
THIS DOCUMENT
SAMPLE TEXT
DOCUMENT CONVENTIONS DESCRIPTION
Update means...
The following elements are italicized in the text:
The Databases are out of date event
occurs.
 New terms.
Press ENTER.
Names of keyboard keys appear in bold and are capitalized.
Press ALT+F4.
Names of keys that are connected by a + (plus) sign indicate the use of a key
combination. Those keys should be pressed simultaneously.
Click the Enable button.
Names of application interface elements, such as entry fields, menu items, and
buttons, are set off in bold.
To configure task schedule:
 Names of application statuses and events.
Introductory phrases of instructions are italicized and accompanied by the arrow
sign.
Enter help in the command line
The following types of text content are set off with a special font:
The following message then appears:
 text in the command line;
Specify the date in dd:mm:yy  text of messages displayed on the screen by the application;
format.
 data that the user should enter from the keyboard.
<User name>
Variables are enclosed in angle brackets. Instead of a variable, the
corresponding value should be inserted, with angle brackets omitted.
7
SOURCES OF INFORMATION ABOUT THE
APPLICATION
This section lists the sources of information about the application.
You can select the most suitable information source, depending on the issue's level of importance and urgency.
IN THIS SECTION:
Sources of information for independent research .........................................................................................................8
Discussing Kaspersky Lab applications on the forum ...................................................................................................9
SOURCES OF INFORMATION FOR INDEPENDENT RESEARCH
You can use the following sources to find information about Kaspersky Security Center:

Kaspersky Security Center page on the Kaspersky Lab website

Kaspersky Security Center page on the Technical Support Service website.

Online help.

Documentation.
If you cannot find the solution to an issue on your own, we recommend that you contact Technical Support at Kaspersky Lab.
An Internet connection is required to use online information sources.
Kaspersky Security Center page on the Kaspersky Lab website
On the Kaspersky Security Center page (http://www.kaspersky.com/security-center), you can view general information
about the application, its functions and features.
The Kaspersky Security Center page contains a link to eStore. There you can purchase or renew the application.
Page of Kaspersky Security Center in the Knowledge Base
Knowledge Base is a section on the Technical Support website.
On the Kaspersky Security Center page (http://support.kaspersky.com/ksc10), you can read articles that provide useful
information, recommendations, and answers to frequently asked questions on how to purchase, install, and use the application.
Knowledge Base articles can answer questions relating to not only to Kaspersky Security Center but also to other
Kaspersky Lab applications. Knowledge Base articles can also include Technical Support news.
Online help
The online help of the application comprises help files.
Context help provides information about Kaspersky Security Center windows: A description of Kaspersky Security Center
settings is followed by links to descriptions of the tasks that use these settings.
Full help provides information about how to configure and use Kaspersky Security Center.
8
SOURC ES
OF INFORMA TION AB OUT THE APPLICATION
Documentation
Application documentation consists of the files of application guides.
The administrator guide provides instructions on:

Prepare Kaspersky Security Center for installation, installing and activating the application.

Configuring and using Kaspersky Security Center.
The administrator's guide provides information on how to configure and use Kaspersky Security Center.
The user guide describes the common tasks that users can perform using the application depending on the available
Kaspersky Security Center rights.
The installation guide describes how you can perform the following tasks:

Prepare Kaspersky Security Center for installation, installing and activating the application.

Preparing Kaspersky Security Center for operation.

Restoring or removing Kaspersky Security Center.
The deployment guide describes how you can perform the following tasks:

Plan Kaspersky Security Center installation (taking into account the operating principles of Kaspersky Security
Center, system requirements, common deployment scenarios, and specifics of Kaspersky Security Center
integration with other applications).

Configure Kaspersky Security Center after installation.
The implementation guide provides instructions on:

Plan Kaspersky Security Center installation (taking into account the operating principles of Kaspersky Security
Center, system requirements, common deployment scenarios, and specifics of Kaspersky Security Center
integration with other applications).

Prepare Kaspersky Security Center for installation, installing and activating the application.

Configure Kaspersky Security Center after installation.
The Getting Started guide provides information needed to start using the application quickly (a description of the
interface and main tasks that can be performed using Kaspersky Security Center).
The help guide describes the functions and settings of Kaspersky Security Center. The help guide sections are arranged
alphabetically and grouped by topic.
DISCUSSING KASPERSKY LAB APPLICATIONS ON THE
FORUM
If your question does not require an immediate answer, you can discuss it with the Kaspersky Lab experts and other
users in our forum (http://forum.kaspersky.com).
In this forum you can view existing topics, leave your comments, create new topics.
9
KASPERSKY SECURITY CENTER
The section contains information on the purpose of Kaspersky Security Center, and its main features and components.
Kaspersky Security Center is designed for centralized execution of basic administration and maintenance tasks in an
organization's network. The application provides the administrator access to detailed information about the organization's
network security level; it allows configuring all the components of protection built using Kaspersky Lab applications.
Kaspersky Security Center is an application aimed at corporate network administrators and employees responsible for
anti-virus protection in organizations.
Using Kaspersky Security Center, you can:

Create a hierarchy of Administration Servers to manage the organization's network, as well as networks at
remote offices or client organizations.
The client organization is an organization, whose anti-virus protection is ensured by service provider.

Create a hierarchy of administration groups to manage a selection of client computers as a whole.

Manage an anti-virus protection system built based on Kaspersky Lab applications.

Create images of operating systems and deploy them on client computers over the network, as well as
performing remote installation of applications by Kaspersky Lab and other software vendors.

Perform remote administration of applications by Kaspersky Lab and other vendors installed on client
computers. Install updates, find and fix vulnerabilities.

Perform centralized deployment of keys for Kaspersky Lab applications to client devices, monitor their use, and
renew licenses.

Receive statistics and reports about the operation of applications and devices.

Receive notifications about critical events in the operation of Kaspersky Lab applications.

Control access of devices to an organization's network using access restriction rules and a white list of devices.
NAC agents are used to manage access of devices to an organization's network.

Manage mobile devices that support Kaspersky Security for Android™, Exchange ActiveSync®, or iOS Mobile
Device Management (iOS MDM) protocols.

Manage encryption of information stored on the hard drives of devices and removable media and users' access
to encrypted data.

Perform inventory of hardware connected to the organization's network.

Centrally manage files moved to Quarantine or Backup by anti-virus applications, as well as objects for which
processing by anti-virus applications has been postponed.
10
APPLICATION LICENSING
This section provides information about general concepts related to the application licensing.
IN THIS SECTION:
About the End User License Agreement .................................................................................................................... 11
About the license ...................................................................................................................................................... 11
About key ................................................................................................................................................................. 12
Kaspersky Security Center licensing options.............................................................................................................. 12
About restrictions of the main functionality ................................................................................................................. 14
About the activation code .......................................................................................................................................... 15
About the key file ...................................................................................................................................................... 15
About data provision ................................................................................................................................................. 16
ABOUT THE END USER LICENSE AGREEMENT
The End User License Agreement is a binding agreement between you and Kaspersky Lab ZAO, stipulating the terms on
which you may use the application.
We recommend that you read through the terms of the End User License Agreement carefully before you start using the
application.
You can view the terms of the End User License Agreement using the following methods:

While installing Kaspersky Security Center.

By reading the document license.txt. This document is included in the application distribution kit.
You accept the terms of the End User License Agreement by confirming that you agree with the End User License
Agreement when installing the application. If you do not accept the terms of the End User License Agreement, you
should abort the application installation and renounce the use of the application.
ABOUT THE LICENSE
A license is a time-limited right to use the application, granted under the End User License Agreement.
A valid license entitles you to use the following services:

Use of the application in accordance with the terms of the End User License Agreement.

Technical Support.
The scope of service and the application usage term depend on the type of license under which the application has been
activated.
11
GETTING
STARTED
The following license types are provided:

Trial – a free license intended for trying out the application.
A trial license usually has a short term. As soon as the trial license expires, all Kaspersky Security Center
features are disabled. To continue using the application, you need to purchase the commercial license.
You can activate the application under the trial license only once.

Commercial – a paid license granted upon purchase of the application.
When the commercial license expires, the application keeps running though with a limited functionality (for
example, updates of the Kaspersky Security Center databases are not available). To continue using Kaspersky
Security Center in fully functional mode, you have to renew your commercial license.
We recommend renewing the license before its expiration to ensure maximum protection against all security threats.
ABOUT KEY
Key is a sequence of bits that you can apply to activate and then use the application in accordance with the terms of the
End User License Agreement. Keys are generated by Kaspersky Lab specialists.
You can add a key to the application using one of the following methods: Apply a key file or enter an activation code. The
key is displayed in the application interface as a unique alphanumeric sequence after you add it to the application.
The key may be blocked by Kaspersky Lab in case the terms of the License Agreement have been violated. If the key
has been blocked, you need to add another one if you want to use the application.
A key may be active or additional.
Active key – a key used at the moment to work with the application. A key for the trial or commercial license can be
added as the active key. The application cannot use more than one active key.
Additional key – a key that verifies the use of the application but is not used at the moment. The additional key
automatically becomes active when the license associated with the current active key expires. An additional key can be
added only if an active key has already been added.
A trial license key can be added as the active key only. A trial license key cannot be added as the additional key.
KASPERSKY SECURITY CENTER LICENSING OPTIONS
In Kaspersky Security Center, the license can apply to different groups of functionality.
Basic functionality of Administration Console
The following functions are available:

Creation of virtual Administration Servers that are used to administer a network of remote offices or client
organizations.

Creation of hierarchy of administration groups to manage a set of devices as a single entity.

Control of the anti-virus security status of an organization.

Remote installation of applications.

Viewing the list of operation system images available for remote installation.
12
APPLICA TION
LICENSING

Centralized configuration of settings for applications that are installed on client computers.

Viewing and editing of existing groups of license programs.

Statistics and reports on the application's operation, as well as notifications about critical events.

Data encryption and protection management.

Viewing and manual editing of the list of hardware components detected by polling the network.

Centralized operations with files that were moved to Quarantine or Backup and files whose processing was
postponed.
Kaspersky Security Center with support of the Administration Console basic functionality is delivered as a part of
Kaspersky Lab products for protection of corporate networks. You can also download it from the Kaspersky Lab website
(http://www.kaspersky.com).
Until the application is activated, or after the commercial license expires, Kaspersky Security Center runs in basic
functionality mode of Administration Console (see the section "About restrictions of the basic functionality" on page 14).
System Administration
The following functions are available:

Remote installation of operating systems.

Remote installation of software updates, scanning and fixing of vulnerabilities.

Management of device access to the corporate network (Network Access Control, NAC).

Hardware components inventory.

Licensed applications group management.

Remote permission of connection to client computers through a Microsoft Windows ® component named
Remote Desktop Connection.

Remote connection to client computers through Windows Desktop Sharing.

Management of user roles.
The management unit for the System Administration is a client computer in the "Managed computers" group.
For a proper functioning of Systems Management, at least 100 GB free disk space must be available.
Mobile Device Management
The Mobile Device Management is used to Administer Exchange ActiveSync and iOS MDM mobile devices.
The following functions are available for Exchange ActiveSync mobile devices:

Creation and editing of mobile device management profiles, assignment of profiles to users' mailboxes.

Configuration of mobile device settings (mail synchronization, application usage, user password, data
encryption, connection of removable drives).

Installation of certificates on mobile devices.
13
GETTING
STARTED
The following functions are available for iOS MDM mobile devices:

Creation and editing of configuration profiles, installation of configuration profiles on mobile devices.

Installation of applications on mobile devices via App Store or using manifest files (.plist).

Locking of mobile devices, resetting of the mobile device password, and deleting of all data from the mobile
device.
In addition, Mobile Devices Management allows executing commands provided by relevant protocols.
The management unit for Mobile Devices Management is a mobile device. A mobile device is considered to be managed
after it is connected to the Mobile Devices Server.
ABOUT RESTRICTIONS OF THE MAIN FUNCTIONALITY
Until the application is activated or after the commercial license expires, Kaspersky Security Center provides the basic
functionality of Administration Console. The limitations imposed on the application operation are described below.
Managing mobile devices
You cannot create a new profile and assign it to a mobile device (iOS MDM) or to a mailbox (Exchange ActiveSync).
Edition of existing profiles and assignment of profiles to mailboxes are always available.
Managing applications
You cannot run the update installation task and the update removal task. All tasks that had been started before the license
expired will be completed, but the latest updates will not be installed. For example, if the critical update installation task had
been started before the license expired, only critical updates found before the license expiration will be installed.
Launch and editing of the synchronization, vulnerability scan, and vulnerabilities database update tasks are always
available. Also, no limitations are imposed on viewing, searching, and sorting of entries on the list of vulnerabilities and
updates.
Remote installation of operating systems and applications
Cannot run tasks of operating system image capturing and installation. Tasks that had been started before the license
expired, will be completed.
Network access control
The NAC Agent and NAC switch to "Disabled" mode without an option to enable them.
Hardware inventory
You cannot use collection of information about new devices with NAC and the Mobile devices server. Information about
computers and connected devices is updated at that.
You receive no notifications of changes in the configurations of devices.
The equipment list is available for viewing and editing manually.
Managing groups of licensed applications
You cannot add a new key.
You receive no notifications of violated limitations imposed on the use of keys.
14
APPLICA TION
LICENSING
Remote connection to client computers
Remote connection to client computers is not available.
Anti-virus security
Anti-Virus uses databases that had been installed before the license expired.
ABOUT THE ACTIVATION CODE
Activation code is a code that you receive on purchasing the commercial license for Kaspersky Security Center. The
activation code is a unique sequence of twenty digits and Latin letters in the format xxxxx-xxxxx-xxxxx-xxxxx.
To activate the application using an activation code, you must connect to the Kaspersky Lab activation servers via the
Internet. If no connection with activation servers and Internet has been established, the application is activated using a
key file (see the section "About the key file" on page 15).
The license term countdown starts from the date when you activate the application. If you have purchased a license
entitling to the use of Kaspersky Security Center on several devices, the term of the license starts counting down from
the moment you have first applied the activation code.
If you have lost or accidentally deleted your activation code after the application activation, contact the Kaspersky Lab
Technical Support Service to recover the activation code.
ABOUT THE KEY FILE
Key file is a file with the following name: xxxxxxx.key.
Key files are used to activate the application. A key file contains information required for activation. To activate the
application using a key file, you do not have to connect to activation servers or to the Internet.
To obtain the key file or recover the key in case it was lost, send a request to the Technical Support Service.
The key file contains the following data:

Key is a unique alphanumeric sequence. The key can be used, for example, to receive technical support from
the Kaspersky Lab.

A Kaspersky Security Center key file can specify restrictions on the number of managed computers and mobile
devices. The type of limit is determined by the current license (see the section "Kaspersky Security Center
licensing options" on page 12).

Key file creation date is the date when the key file was created on the activation server.

License validity period is the term of the application usage stipulated by the License Agreement and starting
from the day of the first activation of the application using the provided key file (for example, one year).
The license expires no later than does the key file that was used to activate the application under this license.

Key file expiry date is a specific period starting from the day when the key file is created. The application shall
be activated using the provided key before this period expires.
The key file expiry period is automatically considered to be expired when the license for the application
activated using this key file expires.
15
GETTING
STARTED
ABOUT DATA PROVISION
By participating in Kaspersky Security Network program, you agree to send to Kaspersky Lab in automatic mode
information about the operation of Kaspersky Lab applications installed on client computers that are managed by
Kaspersky Security Center. Kaspersky Lab specialists use information retrieved from client computers in order to fix
problems in Kaspersky Lab applications or to modify some of their features.
If you participate in Kaspersky Security Network program, you agree to send to Kaspersky Lab in automatic mode the
following information retrieved by Kaspersky Security Center on your computer:

Name, version, and language of the software product for which the update is to be installed.

Version of the update database that is used by the software during installation.

Result of the update installation.

Computer ID and version of Network Agent used on it.

Software settings used when installing updates, such as the ID's of operations executed and the codes of
results for those operations.
If you cancel your participation in Kaspersky Security Network program, the above-listed details will not be sent to
Kaspersky Lab/
Retrieved information is protected by Kaspersky Lab pursuant to the requirements of the current legislation and the
existing rules of Kaspersky Lab. Kaspersky Lab uses retrieved information in non-personalized form only and as general
statistics. The general statistical data is generated automatically based on originally retrieved information and does not
contain any personal details or other confidential information. The originally retrieved information is stored in encrypted
form and erased as it is accumulated (two times per year). The storage term of general statistical data is unlimited.
Provision of data is accepted on a voluntary basis. The feature of data provision can be enabled or disabled at any
moment in the application settings window.
16
APPLICATION INTERFACE
This section describes the main features of the Kaspersky Security Center interface.
Viewing, creation, modification and configuration of administration groups, and centralized management of Kaspersky
Lab applications installed on client devices are performed from the administrator's workstation. The management
interface is provided by the Administration Console component. It is a specialized stand-alone snap-in that is integrated
with Microsoft Management Console (MMC); so the Kaspersky Security Center interface is standard for MMC. For more
details, please refer to the Kaspersky Security Center Administrator's Guide.
The main application window (see figure below) comprises a menu, a toolbar, an overview panel, and a workspace.
The menu bar allows you to use the windows and provides access to the Help system. The Action menu duplicates the
context menu commands for the current console tree object.
The overview panel displays the name space of Kaspersky Security Center in a console tree view.
The set of toolbar buttons provides direct access to some of the menu items. The set of buttons on the toolbar may
change depending on the current node or folder selected in the console tree.
The appearance of the workspace of the main application window depends on which node (folder) of the console tree it
is associated with, and what functions it performs.
Figure 1. Kaspersky Security Center main application window
17
STARTING THE APPLICATION
This section describes the startup of Kaspersky Security Center.
Kaspersky Security Center starts automatically when you start the Administration Server.
To run Administration Console of the application,
select Kaspersky Security Center in the Kaspersky Security Center group of the Start  Applications menu.
This Kaspersky Security Center program group is created on administrators' workstations during installation of
Administration Console.
18
DEPLOYING THE PROTECTION SYSTEM
This section describes two possible scenarios for deploying a protection system on an organization's network:

Deploying a protection system within an organization.

Deploying a protection system on a client's corporate network (when using SPE version).
If you need to deploy a protection system within an organization that includes remote offices that are not in the
organization's network, you can use the anti-virus protection deployment scenario for service providers.
For detailed descriptions of operations included in the above-listed protection deployment scenarios, refer to the section
"Performing common tasks" (see page 21).
IN THIS SECTION:
Deploying anti-virus protection within an organization ................................................................................................ 19
Deploying a protection system on a client's corporate network ................................................................................... 20
DEPLOYING ANTI-VIRUS PROTECTION WITHIN AN
ORGANIZATION
To deploy a protection system on a corporate network, perform the following actions:
1.
Install and configure Administration Server and Administration Console (see the section "Installing Kaspersky
Security Center components" on page 22).
2.
Create administration groups and add client computers to them (see the section "Creating administration
groups" on page 22).
3.
Perform remote installation of Network Agent and required Kaspersky Lab applications to the selected client
computers” (see the section "Remote installation of the application" on page 27).
4.
If required, update the databases of Kaspersky Lab applications on the client computers (for more details,
please refer to the Kaspersky Security Center Administrator's Guide).
5.
If necessary, perform advanced configuration of installed applications using policies (see the section
"Configuring a policy for an application" on page 31) and local settings of applications (see the section "Viewing
and editing the local settings of an application" on page 31).
6.
Configure notifications of events on client computers to be sent to the administrator (see the section
"Configuring notifications" on page 31).
7.
Check the functioning of notifications of events in the operation of the protection system (see the section
"Verifying downloaded updates" on page 29).
8.
View reports (see the section "Creating and viewing a report" on page 32) and configure automatic delivery of
required reports by email (see the section "Creating a report delivery task" on page 33).
9.
Configure automatic installation of applications to new computers on the network (see the section "Configuring
automatic installation of applications" on page 28).
After you complete the above steps, the protection system will be deployed on the corporate network.
19
GETTING
STARTED
DEPLOYING A PROTECTION SYSTEM ON A CLIENT'S
CORPORATE NETWORK
To deploy anti-virus protection across an organization's network:
1.
Install Administration Server and Administration Console to the administrator's workstation (see the section
"Installing Kaspersky Security Center components" on page 22).
2.
Install Kaspersky Security Center Web Console to the administrator's workstation (see the section "Installing
Kaspersky Security Center Web Console" on page 23).
3.
Configure Administration Server for work with Kaspersky Security Center Web Console (for more details, please
refer to the Kaspersky Security Center Implementation Guide).
4.
Create and configure a virtual Administration Server to manage the client organization's network (see the
section "Creating a virtual Administration Server" on page 24).
5.
Select and configure an Update Agent in the client organization's network (see the section "Defining an Update
Agent. Configuring Update Agent" on page 24).
6.
Configure the installation package of Network Agent that you intend to use to install Network Agent to the client
organization's computers (see the section "Configuring the Network Agent installation package" on page 25).
7.
Perform remote installation of Network Agent and required Kaspersky Lab applications to the selected client
computers” (see the section "Remote installation of the application" on page 27).
8.
If necessary, perform advanced configuration of installed applications using policies (see the section
"Configuring a policy for an application" on page 31) and local settings of applications (see the section "Viewing
and editing the local settings of an application" on page 31).
After you complete the above steps, the protection system will be deployed on the client's corporate network.
20
PERFORMING TYPICAL TASKS
This section describes the basic operations that you can perform using Kaspersky Security Center.
IN THIS SECTION:
Installing Kaspersky Security Center components ...................................................................................................... 22
Creating administration groups.................................................................................................................................. 22
Installing Kaspersky Security Center Web Console .................................................................................................... 23
Creating a virtual Administration Server ..................................................................................................................... 24
Defining an Update Agent. Configuring Update Agent ................................................................................................ 24
Configuring the Network Agent installation package ................................................................................................... 25
Managing mobile devices .......................................................................................................................................... 26
Installing an application remotely............................................................................................................................... 27
Configuring automatic installation of applications ....................................................................................................... 28
Creating the task of downloading updates to the repository ........................................................................................ 28
Verifying downloaded updates .................................................................................................................................. 29
Distributing updates to client computers automatically................................................................................................ 30
Configuring policies for an application ....................................................................................................................... 31
Viewing and changing local application settings ......................................................................................................... 31
Configuring notification settings ................................................................................................................................. 31
Testing notifications .................................................................................................................................................. 32
Creating and viewing a report.................................................................................................................................... 32
Saving a report ......................................................................................................................................................... 33
Creating a report delivery task................................................................................................................................... 33
Viewing the report on detected viruses ...................................................................................................................... 33
Viewing information about events .............................................................................................................................. 34
Viewing the current status of anti-virus protection ...................................................................................................... 34
Backing up Administration Server data ...................................................................................................................... 35
21
GETTING
STARTED
INSTALLING KASPERSKY SECURITY CENTER
COMPONENTS
To install Administration Server and Administration Console:
1.
Select the computer on which Administration Server and Administration Console will be installed. We
recommend installation of the components on a computer that is in the domain.
You can install Kaspersky Security Center 10 Administration Server and Administration Console to the same
computer where Administration Server and Administration Console of version 9.0 are running.
We also recommend that the installation be performed by using the domain administrator's rights. This allows
the automatic creation of the KLAdmins and KLOperators user groups, and provides the necessary rights to
the account under which Administration Server will be running.
2.
Run the setup.exe file and follow the instructions of the Setup Wizard.
3.
Select the typical installation. Most of the settings are determined automatically.
Custom installation is described in detail in the Kaspersky Security Center Implementation Guide.
The following applications required for application operation will be installed, if they were not installed
previously:

Microsoft Windows Installer 3.1.

Microsoft Data Access Components (MDAC) 2.8.

Microsoft .NET Framework 2.0.

Microsoft SQL Server® 2008 R2 Express Edition.
These additional applications do not require any maintenance or administration.
During the next step of the Wizard, the application files will be copied to the computer, and the database will be created
in which Administration Server centralizes information about the network anti-virus protection.
After the Wizard completes, you can start Administration Console and perform initial configuration by using the Quick
Start Wizard.
CREATING ADMINISTRATION GROUPS
The hierarchy of administration groups is created in the main application window of Kaspersky Security Center, in the
Managed computers folder. Administration groups are displayed as folders in the console tree (see figure below).
Immediately after the installation of Kaspersky Security Center, the Managed computers folder only contains the
Administration Servers folder which is empty.
The user interface settings determine whether the Administration Servers folder appears in the console tree. To make
this section displayed, go to the View  Configure interface and in the Configure interface window that opens select
the Display slave Administration Servers check box.
When creating a hierarchy of administration groups, you can add client computers and virtual machines to the Managed
computers folder, as well as add nested groups. You can add slave Administration Servers to the Administration
Servers folder.
22
PERFOR MING
TYPICA L TA SKS
Identically to the Managed computers group, each created group initially contains the Administration Servers folder
only, which is empty, intended to handle slave Administration Servers of this group. Information about policies, tasks of
this group, and computers included is displayed on the corresponding tabs in the workspace of this group.
Figure 2. Viewing administration groups hierarchy
To create an administration group:
1.
In the console tree, open the Managed computers folder.
2.
If you want to create a subgroup in an existing administration group, in the Managed computers folder select a
nested folder corresponding to the group, which should comprise the new administration group.
If you create a new top-level administration group, you can skip this step.
3.
4.
Start the administration group creation process in one of the following ways:

Using the Create  Group command from the context menu

By clicking the Create a subgroup link located in the workspace of the main application window, on the
Groups tab.
In the Group name window that opens, enter a name for the group and click the OK button.
As a result, a new administration group folder with the specified name appears in the console tree.
INSTALLING KASPERSKY SECURITY CENTER WEB
CONSOLE
To install the Kaspersky Security Center Web Console on the administrator's workstation,
run the setup.exe file from the distribution package of Kaspersky Security Center Web Console.
The Kaspersky Security Center Web Console Setup Wizard will start, and guide you through the installation. Follow the
Wizard's instructions.
23
GETTING
STARTED
CREATING A VIRTUAL ADMINISTRATION SERVER
To add a virtual Administration Server to the selected administration group:
1.
In the console tree, in the administration group folder, select the Administration Servers node.
2.
Start the process of virtual Administration Server creation in one of the following ways:

in the context menu of the Administration Servers node, select Create  Virtual Administration Server.

Click the Add virtual Administration Server link in the workspace.
The New Virtual Administration Server Wizard starts. Follow the Wizard's instructions.
DEFINING AN UPDATE AGENT. CONFIGURING UPDATE
AGENT
To make a computer in the corporate network of client organization an Update Agent:
1.
Create a standalone package for Network Agent. Do the following:
a.
In the console tree select the virtual Administration Server, which manages the client organization's network.
b.
In the Remote installation folder of the virtual Administration Server select the Installation packages
subfolder.
c.
In the workspace of the folder select or create an installation package of Network Agent.
d.
Open the properties window of the installation package of Network Agent.
e.
In the Connection section, in the Server address string check the address of the virtual Administration
Server. The address should be specified in the following format: <Address of master
Administration Server>/<Name of virtual Administration Server>.
f.
Run the process of creation of a standalone package for this installation package using one of the following
methods:
g.
h.
2.

In the context menu of the installation package, select Create stand-alone installation package.

Click the Create stand-alone installation package in the workspace of the selected installation
package.
Open the list of created standalone Network Agent installation packages using one of the following methods:

In the final window of the Stand-alone Installation Package Creation Wizard select the Open the list of
stand-alone packages check box

Select Show the list of stand-alone packages from the context menu of the installation package.
In the list of standalone packages that opens, select the created standalone package and specify the way it
should be delivered to the administrator of the client organization.
Contact the client organization's administrator to install Network Agent locally to a client computer defined as
Update Agent.
After Network Agent is installed to client computer defined as Update Agent, this computer is displayed in the
Managed computers folder of the virtual Administration Server.
24
PERFOR MING
TYPICA L TA SKS
Kaspersky Security Center assigns this computer an Update Agent and makes it a connection gateway at the
first connection with Administration Server.
If you need to assign a computer an Update Agent manually:
a.
Open the properties window of the Managed computers folder of the virtual Administration Server.
b.
In the Update Agents section select a client computer that will function as Update Agent, by clicking the
Add button.
c.
Open the properties window of Network Agent and perform the following steps:

Configure the network polling by Update Agent in the Network poll section.

Select the Advanced section and select the Connection gateway check box to use Update Agent as
connection gateway in the network of client organization.
As a result, the selected client computer starts running as Update Agent for the client organization, being used as a
gateway for connection with the virtual Administration Server.
You can assign a computer the Update Agent status manually only if the automatic assignment is disabled (the Settings
section of the properties window of the virtual Administration Server).
CONFIGURING THE NETWORK AGENT INSTALLATION
PACKAGE
Before installing Network Agent to a client organization's computers, you should configure a Network Agent installation
package that will be used for remote installation.
To configure a Network Agent installation package before installing it to a client organization's computers:
1.
In the console tree select the virtual Administration Server, which manages the client organization's network.
2.
In the Remote installation folder of the virtual Administration Server select the Installation packages
subfolder.
3.
In the workspace select or create an installation package of Network Agent that will be used to install Network
Agent to a client organization's computers.
4.
In the context menu of the Network Agent installation package, select Properties.
The properties window of the Network Agent installation package opens.
5.
6.
In the properties window adjust the following settings of the installation package:

In the Connection section, in the Server address string, specify the address of the same virtual
Administration Server that was specified during local installation of Network Agent to Update Agent (see the
section "Defining an Update Agent. Configuring Update Agent" on page 24).

In the Advanced section, select the Connect to Administration Server using connection gateway
check box. In the Connection gateway address string, specify the Update Agent address. You can use
either the IP address or computer name in the Windows network.
Click OK.
25
GETTING
STARTED
MANAGING MOBILE DEVICES
Kaspersky Security Center allows managing mobile devices that support Exchange ActiveSync (EAS), iOS Mobile
Device Management (iOS MDM), and Kaspersky Endpoint Security for Android™ (KES) protocols.
Kaspersky Security Center supports the following features:

Creation of an MDM policy that allows centralized configuration of EAS devices and iOS MDM devices.

Management of EAS devices and iOS MDM devices through remote commands.

Management of mobile applications packages.

Option for users to manage their devices remotely (send commands, install apps), using corporate Self Service
Portal.
The list of functions available for a specific mobile device depends on the Exchange ActiveSync support features on that
device.
Kaspersky Security Center allows managing mobile devices through Mobile Devices Servers. A mobile devices server is
a component of Kaspersky Security Center that provides access to mobile devices and allows managing them through
Administration Console.
There are two types of mobile devices servers:

Mobile devices server supporting Exchange ActiveSync. Used for managing EAS devices. To be installed on
the client computer on which the Microsoft Exchange server has been installed. Exchange ActiveSync Mobile
Devices Server allows retrieving data from the Microsoft Exchange server and then transmit it to Administration
Server.

iOS MDM Mobile Devices Server. Used for managing iOS MDM devices. To be installed on a client computer.
iOS MDM Mobile Devices Server allows connecting iOS MDM devices to Administration Server and managing
them through Apple Push Notifications (APNs) service.
For detailed information about how to manage mobile devices refer to the Kaspersky Security Center Administrator's Guide.
Hereinafter, a brief description of actions is provided, which must be performed in order to connect EAS devices and iOS
MDM devices to Administration Server.
CONNECTING MOBILE DEVICES SUPPORTING EXCHANGE
ACTIVESYNC
Connection of EAS devices to Administration Server comprises the following steps:
1.
The administrator installs the Exchange ActiveSync Mobile Devices Server on a client computer with the
Microsoft Exchange server installed. Mobile Devices Server is included in installation packages of
Administration Server by default.
You are recommended to install the Exchange ActiveSync Mobile Devices Server to a Microsoft Exchange
server with Client Access Server (CAS) role assigned. If several Microsoft Exchange servers with Client Access
Server role are combined into a CAS array, you are recommended to install the Exchange ActiveSync Mobile
Devices Server to each of the Microsoft Exchange servers in that array.
2.
The EAS device user connects the mobile device to the Microsoft Exchange server and receives a notification
stating that his or her mailbox is managed by a profile that imposes restrictions on the mobile device being
connected.
3.
The mobile device is displayed in the console tree, in the Mobile devices folder, which is a subfolder of the
Mobile Device Management one.
26
PERFOR MING
TYPICA L TA SKS
For more details on how to connect Exchange ActiveSync mobile devices to Administration Server, please refer to the
Kaspersky Security Center Implementation Guide.
The administrator can manage EAS devices that have been connected to Administration Server. For instructions on how
to manage EAS devices, please refer to the Kaspersky Security Center Administrator's Guide.
CONNECTING IOS MDM MOBILE DEVICES
Connection of iOS devices to Administration Server comprises the following steps:
1.
The administrator installs to a client computer the iOS MDM mobile devices server included in Administration
Server installation packages by default.
2.
The administrator installs an Apple Push Notification Service (APNs) certificate on Administration Server.
3.
The administrator installs the general certificate for the user account.
4.
The mobile device user receives a notification with a link for downloading the iOS MDM profile from the
Kaspersky Security Center web portal.
The user clicks the link. After that, the device's operating system prompts the user to accept the installation of
the iOS MDM profile. If the user accepts, the iOS MDM profile will be downloaded to the device.
5.
After the iOS MDM profile is downloaded and synchronized with Administration Server, the iOS device is
displayed in the Mobile devices folder, which is a subfolder of the Mobile Device Management one in the
console tree.
For more details on how to connect iOS devices to Administration Server, please refer to the Kaspersky Security Center
Implementation Guide.
The administrator can manage iOS devices that have been connected to Administration Server. For instructions on how
to manage iOS MDM mobile devices, please refer to the Kaspersky Security Center Administrator's Guide.
INSTALLING AN APPLICATION REMOTELY
Some Kaspersky Lab applications that can be managed through Kaspersky Security Center can only be locally installed
to client devices (for more details refer to the respective Guides for Kaspersky Lab applications).
To install an application to client computers remotely:
1.
In the console tree go to the node of the Administration Server that manages client devices.
2.
In the Remote installation folder of the console tree click the Start Remote Installation Wizard link to run the
Remote Installation Wizard.
3.
In the Select installation package window of the Wizard specify the installation package of an application that
you want to install.
4.
Follow the Wizard's instructions.
The Wizard's activities create a remote installation task to install the application to client computers. The Remote
Installation Wizard creates and runs the remote installation task for the selected application. Depending on the set of
devices or the administration group that you have selected, the created task is placed to the Tasks for specific
computers folder or in the workspace of the selected administration group, on the Tasks tab.
After the created task completes, the application is installed to the selected client devices.
27
GETTING
STARTED
You can use the above-described procedure to install an anti-virus application to client devices. If you need information
about installation of an anti-virus application to client computers of an administration group, refer to the Computers tab
in the group workspace. You can view information about the application installation on selected client computers in the
workspace of the Unassigned devices folder. In the list of computers on the Computers tab and in the workspace of
the Unassigned devices folder, the Agent/Anti-Virus column displays information about whether Network Agent and
an anti-virus application are installed on the computers. If a backslash is followed by a plus sign (+), the anti-virus
application is successfully installed.
CONFIGURING AUTOMATIC INSTALLATION OF
APPLICATIONS
To configure automatic installation of applications to new devices in an administration group:
1.
In the console tree, select the required administration group.
2.
Open the properties window of this administration group.
3.
In the Automatic installation section, select the installation packages to be installed to new computers by
selecting the check boxes next to the names of the installation packages of the required applications. Click OK.
As a result, group tasks will be created that will be run on the client devices immediately after they are added to the
administration group.
If some installation packages of one application were selected for automatic installation, the installation task will be
created for the most recent application version only.
CREATING THE TASK OF DOWNLOADING UPDATES TO THE
REPOSITORY
The Download updates to the repository task is created automatically by Kaspersky Security Center Quick Start Wizard.
You can create only one task for downloading updates to the repository. Thai is why you can create a task for
downloading updates to the repository only if such task was removed from the Administration Server tasks list.
To create a task for downloading updates to the repository:
1.
In the console tree, select the Administration Server tasks folder.
2.
Start creating the task in one of the following ways:

In the console tree, in the Administration Server tasks folder context menu, select Create  Task.

Click the Create a task link in the workspace.
This starts the New Task Wizard. Follow the Wizard's instructions. In the Task type wizard window, select
Download updates to the repository.
After the Wizard completes, the Download updates to the repository task will be created in the list of Administration
Server tasks.
When an Administration Server performs the Download updates to the repository task, updates to databases and
software modules of applications are downloaded from the updates source and stored in the shared folder.
Updates are distributed to client computers and slave Administration Servers from the shared folder.
28
PERFOR MING
TYPICA L TA SKS
The following resources can be used as a source of updates for the Administration Server:

Kaspersky Lab update servers – Kaspersky Lab's servers to which the updated anti-virus database and the
application modules are uploaded.

Master Administration Server.

FTP/HTTP server or a network updates folder – an FTP server, an HTTP server, a local or a network folder
added by the user and containing the latest updates. When selecting a local folder, you should specify a folder
on a computer with Administration Server installed.
To update Administration Server from an FTP/HTTP server or a network folder, you should copy to those
resources the correct structure of folders with updates, identical to that created when using Kaspersky Lab
update servers.
Source selection depends on task settings. By default, updating is performed over the Internet from Kaspersky Lab's
update servers.
VERIFYING DOWNLOADED UPDATES
To make Kaspersky Security Center verify downloaded updates before distributing them to client computers:
1.
In the workspace of Administration Server tasks folder, select the Download updates to the repository task
in the task list.
2.
Open the task properties window in one of the following ways:
3.

From the context menu of the task, select Properties.

By clicking the Change task settings link in the workspace of the selected task.
In the task properties window that opens, in the Updates verification section, select the Verify updates before
distributing check box and select the updates verification task in one of the following ways:

Click Select to choose an existing updates verification task.

Click the Create button to create an update verification task.
This starts the Update Verification Task Wizard. Follow the Wizard's instructions.
While creating the update verification task, you should select an administration group that contains
computers on which the task will be run. Computers included in this group are called test computers.
It is recommended to use computers with most reliable protection and most popular application
configuration in the network. This approach increases the quality of scans, and minimizes the risk of false
positives and the probability of virus detection during scans. If viruses are detected on the test computers,
the update verification task is considered unsuccessful.
4.
Click OK to close the properties window of the downloading updates to the repository task.
As a result, the updates verification task is performed with the task of downloading updates to the repository. The
Administration Server will download updates from the source, save them in temporary storage, and run the update
verification task. If the task completes successfully, the updates will be copied from the temporary storage to the
Administration Server shared folder (<Installation folder Kaspersky Security Center\Share\Updates) and distributed
to all client computers for which the Administration Server is the source of updates.
29
GETTING
STARTED
If the results of the update verification task show that updates located in the temporary storage are incorrect or if the
update verification task completes with an error, such updates will not be copied to the shared folder, and the
Administration Server will keep the previous set of updates. The tasks that have the When new updates are
downloaded to the repository schedule type are not started then, either. These operations will be performed at the
next start of the Administration Server update download task if scanning of the new updates completes successfully.
A set of updates is considered to be incorrect if one of the following conditions is met on at least one test computer:

Update task error has occurred.

The real-time protection status of the anti-virus application has changed after applying updates.

An infected object has been detected while running the scan task.

Functional error of a Kaspersky Lab application has occurred
If none of the listed conditions is true for any test computer, the set of updates is considered to be correct and the update
verification task completes successfully.
DISTRIBUTING UPDATES TO CLIENT COMPUTERS
AUTOMATICALLY
To distribute the updates of the selected application to client computers immediately after the updates are
downloaded to the Administration Server repository:
1.
Connect to the Administration Server which manages the client computers.
2.
Create an update deployment task for the selected client computers in one of the following ways:

If you want to distribute updates to the client computers that belong to the selected administration group,
create a task for the selected group.

If you want to distribute updates to the client computers that belong to different administration groups or do
not belong to administration groups at all, create a task for specific computers.
This starts the New Task Wizard. Follow its instructions and perform the following actions:
a.
In the Task type wizard window, in the node of the required application select the updates deployment
task.
The name of the updates deployment task displayed in the Task type window depends on the
application for which you create this task. For detailed information about names of update tasks for the
selected Kaspersky Lab application, see the corresponding Guides.
b.
In the Schedule wizard window, in the Scheduled start field, select When new updates are
downloaded to the repository.
As a result, the created update distribution task will start for selected computers each time the updates are
downloaded to the Administration Server repository.
If an updates distribution task for the required application is created for selected computers, to automatically distribute
updates to client computers in the task properties window in the Schedule section, select the When new updates are
downloaded to the repository option, in the Scheduled start field.
30
PERFOR MING
TYPICA L TA SKS
CONFIGURING POLICIES FOR AN APPLICATION
To configure a policy for an application:
1.
In the console tree, select an administration group for which you want to configure a policy.
2.
In the workspace of the selected group, on the Policies tab, select the policy of the relevant application.
3.
Open the policy properties window and configure the policy.
After the changes are applied, the policy with modified settings is applied to the computers of the administration group.
VIEWING AND CHANGING LOCAL APPLICATION SETTINGS
The Kaspersky Security Center administration system allows remote management of local application settings on remote
computers through Administration Console.
Local application settings are the settings of an application that are specific for a client computer. You can use Kaspersky
Security Center to specify local application settings on client computers included in administration groups.
Detailed descriptions of settings of Kaspersky Lab applications are provided in the respective guides.
To view or change application's local settings:
1.
In the workspace of the group to which the required client computer belongs to, select the Computers tab.
2.
In the client computer properties window, in the Applications section, select the required application.
3.
Open the application properties window by double-clicking the application name or by clicking the Properties
button.
As a result, the local settings window of the selected application opens so that you can view and edit those settings.
You can change the values only of the settings that have not been prohibited for modification by a group policy (that is,
those settings not marked with the "lock" in a policy).
CONFIGURING NOTIFICATION SETTINGS
Kaspersky Security Center allows you to configure notification of the administrator of events occurring on client devices
and to select a notification method:

Email. When an event occurs, the application sends a notification to email addresses specified. You can edit the
text of the notification.

NET SEND (messaging service). When an event occurs, the application sends notifications using the
messaging service.
Notification via the messaging service is only available for Windows 5.X operating systems (Windows 2000, Windows
XP, Windows Server® 2003).

SMS. When an event occurs, the application sends a notification to the phone numbers specified. You can
configure SMS notifications to be sent via the mail gateway or by means of the SMS Broadcasting utility.

Executable file. When an event occurs on a client computer, the executable file is launched on the
administrator's workstation. The administrator can receive the parameters of the event that has occurred by
means of the executable file.
31
GETTING
STARTED
To configure notification of events occurring on client devices:
1.
2.
Open the properties window of the Reports and notifications folder of the console tree in one of the following ways:

Select Properties from the context menu of the Reports and notifications folder of the console tree.

In the workspace of the Reports and notifications folder, on the Notifications tab open the window by
clicking the Modify notification delivery settings link.
In the Notification section in the properties window of the Reports and notifications folder, select the
notification method and configure notification settings.
As a result, the re-adjusted notification settings are applied to all events occurring on client devices.
You can configure the notification of an event in the properties window of that event. You can obtain quick access to the
settings of events by clicking the Configure Kaspersky Endpoint Security events and Modify Administration Server
event settings links.
TESTING NOTIFICATIONS
To check whether event notifications are sent, the application uses the notification for detection of the EICAR test virus
on client computers.
To verify sending of event notifications:
1.
Stop the task of real-time file system protection on the client computer, and copy the EICAR test "virus" to the
client computer. Now re-enable real-time protection of the file system.
2.
Run a scan task on client computers in an administration group or set of computers, one of which has the
EICAR "virus" on a client computer.
If the scan task is configured correctly, the test "virus" will be detected. If notifications are configured correctly,
you are notified that a virus has been detected.
In the Reports and notifications folder of the console tree, in the Events subfolder, under Recent events, a
record about "virus" detection is displayed.
The EICAR test "virus" IS NOT A VIRUS, and does not contain any code that can harm your computer. However, most
manufacturers' anti-virus applications identify this file as a virus. You can download the test file from the official EICAR
website.
CREATING AND VIEWING A REPORT
To create and view a report:
1.
In the console tree open the Reports and notifications folder in which report templates are listed.
2.
Select the required report template from the console tree or from the workspace on the Reports tab.
As a result, the workspace will display a report created on the selected template.
The report displays the following data:

The name and type of report, its brief description and the reporting period, as well as information about the
group of devices for which the report is generated.

Graphic diagram reflecting the most crucial data from the report.

Summary table of data reflecting calculated values from the report.

Table of detailed data from the report.
32
PERFOR MING
TYPICA L TA SKS
SAVING A REPORT
To save a created report:
1.
In the console tree open the Reports and notifications folder in which report templates are listed.
2.
Select the required report template from the console tree or from the workspace on the Reports tab.
3.
From the context menu of the selected report template select Save.
The Report Saving Wizard starts. Follow the Wizard's instructions.
After the Wizard finishes its operation, the folder opens into which you have saved the report file.
CREATING A REPORT DELIVERY TASK
Delivery of reports in Kaspersky Security Center is carried out using the report delivery task. You can deliver reports by
email or save them in a dedicated folder, for example, in a shared folder on Administration Server or a local computer.
To create a delivery task for a report:
1.
In the console tree open the Reports and notifications folder in which report templates are listed.
2.
Select the required report template from the console tree or from the workspace on the Reports tab.
3.
In the report template's context menu, select the Send Reports item.
This will start the Report Delivery Task Creation Wizard. Follow the Wizard's instructions.
To create a task of sending several reports:
1.
In the console tree, select the Administration Server tasks folder.
2.
Start creating the task in one of the following ways:

In the console tree, in the Administration Server tasks folder context menu, select Create  Task.

Click the Create a task link in the workspace.
As a result, the Administration Server Task Creation Wizard starts. Follow the Wizard's instructions. In the Task
type wizard window select Deliver reports.
The created report delivery task is displayed in the console tree, in the Administration Server tasks folder.
The report delivery task is created automatically if email settings have been specified during the Kaspersky Security
Center installation.
VIEWING THE REPORT ON DETECTED VIRUSES
To view the general report on detected viruses:
1.
In the console tree, select the Reports and notifications folder.
2.
In the workspace of the folder, on the Statistics tab, select the Anti-virus statistics page.
33
GETTING
STARTED
A summary of activity during the previous 24 hours is displayed in the information panes of this page by default:

History of virus activity.

Most frequently occurring viruses.

Computers with the largest number of viruses detected.

Users on whose computers the largest number of viruses has been detected.
In the Reports and notifications folder of the console tree, you can also view a detailed report on viruses found on the
network and displayed on the Reports tab. On this tab, in the Anti-virus statistics section, you can view detailed
reports by clicking the following links:

Viruses report.

Most infected computers report.

Users of infected computers report.
When a report is selected, the workspace displays detailed information about the viruses that have been detected since
installation of Administration Server.
You can edit the settings of any report: for example, the time interval during which the report is generated, or the set of
fields displayed in the report (for more details, please refer to the Kaspersky Security Center Administrator's Guide).
VIEWING INFORMATION ABOUT EVENTS
To view information about application operation:
1.
In the console tree, expand the Reports and notifications folder. Select the Events subfolder.
2.
Open the event selection in one of the following ways:

In the console tree, expand the Events folder and select the folder that contains the relevant selection of
events.

In the Events folder workspace, in the Preset selections group of settings, click the link that corresponds
to the relevant selection of events.
As a result, the workspace will display a list of events, stored on the Administration Server, of the selected type.
You can create your own selection of events (for more details, please refer to the Kaspersky Security Center
Administrator's Guide).
VIEWING THE CURRENT STATUS OF ANTI-VIRUS
PROTECTION
You can track the status of the protection system on client computers and devices managed by the Administration Server
named <Server name> in the workspace of the <Server name> node. The management sections of the workspace
display general information about the status of the following components of application operation:

Deployment of protection on the network (Deployment section).

Creation of a structure of administration groups that contain managed computers (Computer management
section).
34
PERFOR MING

Protection performance on client devices (Computer protection and virus scan section).

Updates of databases and software modules (Update section).

Monitoring and notifications (Monitoring section).
TYPICA L TA SKS
You can check the status of the protection system by viewing the traffic light indicators in the management sections. If a
traffic light indicator is green, all required tasks related to this area of functionality have already been completed. If the
indicator is yellow or red, this area of functionality requires attention and action may be required.
In addition to the color indicator, each section provides a short description of the status of the protection system or an
existing problem, as well as links that you can use to run the main tasks for the section.
For more detailed information about the status of the protection system, refer to the Reports and notifications folder.
BACKING UP ADMINISTRATION SERVER DATA
The Kaspersky Security Center Quick Start Wizard creates an Administration Server data backup task. By default, a
backup copy is created daily on the computer on which Administration Server is installed, in the Backup sub-folder of the
application's installation folder.
To manually initiate creation of a backup copy of Administration Server data:
1.
In the console tree, select the Administration Server tasks folder.
2.
In the workspace of the folder select an Administration Server data backup task (by default, this is the Backup
of Administration Server data task).
3.
Run the selected task.
Because virtual Administration Servers use the master Administration Server's database, backup copying and restoration
of the virtual Administration Server's data is performed only during backup copying and data restoration on the master
Administration Server.
35
SWITCHING FROM KASPERSKY SECURITY
CENTER 9.0 TO KASPERSKY SECURITY
CENTER 10
This section describes the procedure for switching from Kaspersky Security Center 9.0 to Kaspersky Security Center 10,
as well as the main actions for initial setup of the new version of the application.
To switch from Kaspersky Security Center 9.0 to Kaspersky Security Center 10:
1.
Create a backup copy of the Administration Server data for Kaspersky Security Center 9.0 by using the
klbackup utility. This utility is included in the application distribution, and is located in the root of the Kaspersky
Security Center installation folder.
2.
Install Administration Server and Administration Console (version 10).
You can install Administration Server on a computer on which a previous version of Administration Server is
installed. When you upgrade Administration Server to version 10, all data and settings from the previous version
of the application are saved.
If you install Administration Server on another computer, you can restore the settings of the previous version by
using the backup and data restoration utility (klbackup).
3.
If settings have not been inherited from the previous version of Administration Server, perform initial
configuration of Administration Server.
4.
Create the structure of administration groups.
5.
Select the client computers on which you want to install the new version of Administration Server and new
versions of Kaspersky Lab applications.
6.
For the selected computers, create a remote installation task for the new version of Network Agent and the new
versions of the required applications. To perform remote installation of applications, you can use installation
packages that are created automatically during installation of Kaspersky Security Center 10.
7.
Run the created task.
The new version of Network Agent and the new versions of Kaspersky Lab applications are now installed on the
selected client computers.
8.
Client computers have been upgraded to the new versions of the applications; add these computers to the
hierarchy of administration groups.
As a result, the protection system based on earlier versions of the applications is now managed by Kaspersky
Security Center 10.
You can convert policies and tasks created for previous versions of Kaspersky Lab applications into policies and tasks
for the new version, by using the Policies and Tasks Conversion Wizard. For more details, please refer to the Kaspersky
Security Center Administrator's Guide.
36
CONCLUSION
This section summarizes the information in this document.
The document describes a simple scenario of deploying protection on an enterprise network, as well as the actions
required to quickly deploy protection and start using Kaspersky Security Center. For more details on the features of
Kaspersky Security Center and protection deployment scenarios please refer to the Kaspersky Security Center
Implementation Guide and the Kaspersky Security Center Administrator's Guide.
37
CONTACTING TECHNICAL SUPPORT
SERVICE
This section provides information about the ways and conditions for providing you support.
IN THIS SECTION:
About technical support ............................................................................................................................................ 38
Technical support by phone ...................................................................................................................................... 38
Technical Support via Kaspersky CompanyAccount................................................................................................... 38
ABOUT TECHNICAL SUPPORT
If you do not find a solution to your problem in the documentation or in one of the sources of information about the
application (see the section "Sources of information about the application" on page 8), we recommend that you contact
Kaspersky Lab Technical Support. Technical Support specialists will answer your questions about installing and using
the application.
Technical support is only available to users who purchased the commercial license. Users who have received a trial
license are not entitled to technical support.
Before contacting Technical Support, please read the support rules (http://support.kaspersky.com/support/rules).
You can contact Technical Support in one of the following ways:

By calling Kaspersky Lab Technical Support.

By sending a request to Technical Support through the Kaspersky CompanyAccount web service.
TECHNICAL SUPPORT BY PHONE
If an urgent issue arises, you can phone specialists at Technical Support of Kaspersky Lab
(http://support.kaspersky.com/support/contacts).
Before contacting Technical Support, it is recommended to read the support rules
(http://support.kaspersky.com/support/rules). These rules provide information about the hours open for calls at
Kaspersky Lab Technical Support, as well as the data that a support specialist will need to help you.
TECHNICAL SUPPORT VIA KASPERSKY
COMPANYACCOUNT
Kaspersky CompanyAccount (https://companyaccount.kaspersky.com) is a web service for companies that use
Kaspersky Lab applications. The Kaspersky CompanyAccount web service is designed to facilitate interaction between
users and Kaspersky Lab specialists via online requests. The Kaspersky CompanyAccount web service lets you monitor
the progress of electronic request processing by Kaspersky Lab specialists and store a history of electronic requests.
38
CONTACTING TEC HNICA L SUPPORT SERV ICE
You can register all of your organization's employees under a single account on Kaspersky CompanyAccount. A single
account lets you centrally manage electronic requests from registered employees to Kaspersky Lab and also manage the
privileges of these employees via Kaspersky CompanyAccount.
The Kaspersky CompanyAccount web service is available in the following languages:

English.

Spanish.

Italian.

German.

Polish.

Portuguese.

Russian.

French.

Japanese.
To learn more about Kaspersky CompanyAccount, please visit the Technical Support website
(http://support.kaspersky.com/faq/companyaccount_help).
39
KASPERSKY LAB ZAO
Kaspersky Lab software is internationally renowned for its protection: against viruses, malware, spam, network and
hacker attacks, and other threats.
In 2008, Kaspersky Lab was rated among the world’s top four leading vendors of information security software solutions
for end users (IDC Worldwide Endpoint Security Revenue by Vendor). Kaspersky Lab is the preferred developer of
computer protection systems among home users in Russia, according to the COMCON survey "TGI-Russia 2009".
Kaspersky Lab was founded in Russia in 1997. Today, it is an international group of companies headquartered in
Moscow with five regional divisions that manage the company's activity in Russia, Western and Eastern Europe, the
Middle East, Africa, North and South America, Japan, China, and other countries in the Asia-Pacific region. The
company employs more than 2000 qualified specialists.
PRODUCTS. Kaspersky Lab’s products provide protection for all systems—from home computers to large corporate
networks.
The personal product range includes anti-virus applications for desktop, laptop, and tablet computers, as well as for
smartphones and other mobile devices.
Kaspersky Lab delivers applications and services to protect workstations, file and web servers, mail gateways, and
firewalls. Used in conjunction with Kaspersky Lab’s centralized management system, these solutions ensure effective
automated protection for companies and organizations against computer threats. Kaspersky Lab's products are certified
by the major test laboratories, are compatible with the software of many suppliers of computer applications, and are
optimized to run on many hardware platforms.
Kaspersky Lab’s virus analysts work around the clock. Every day they uncover hundreds of new computer threats, create
tools to detect and disinfect them, and include them in the databases used by Kaspersky Lab applications. Kaspersky
Lab anti-virus database is updated hourly, Anti-Spam database – every 5 minutes.
TECHNOLOGIES. Many technologies that are now part and parcel of modern anti-virus tools were originally developed
by Kaspersky Lab. It is no coincidence that many other developers use the Kaspersky Anti-Virus kernel in their products,
including: SafeNet (USA), Alt-N Technologies (USA), Blue Coat Systems (USA), Check Point Software Technologies
(Israel), Clearswift (UK), CommuniGate Systems (USA), Openwave Messaging (Ireland), D-Link (Taiwan), M86 Security
(USA), GFI Software (Malta), IBM (USA), Juniper Networks (USA), LANDesk (USA), Microsoft (USA), Netasq+Arkoon
(France), NETGEAR (USA), Parallels (USA), SonicWALL (USA), WatchGuard Technologies (USA), and ZyXEL
Communications (Taiwan). Many of the company’s innovative technologies are patented.
ACHIEVEMENTS. Over the years, Kaspersky Lab has won hundreds of awards for its services in combating computer
threats. For example, in 2010 Kaspersky Anti-Virus received a few top Advanced+ awards in a test held by AVComparatives, an acknowledged Austrian anti-virus laboratory. But Kaspersky Lab's main achievement is the loyalty of
its users worldwide. The company’s products and technologies protect more than 300 million users, and its corporate
clients number more than 200,000.
Kaspersky Lab official site:
http://www.kaspersky.com
Virus encyclopedia:
http://www.securelist.com
Anti-Virus Lab:
[email protected] (only for sending probably infected files
in archives)
Kaspersky Lab web forum:
http://forum.kaspersky.com
40
INFORMATION ABOUT THIRD-PARTY CODE
Information about third-party code is contained in a file named legal_notices.txt and stored in the application installation
folder.
41
ABOUT NAC/ARP ENFORCEMENT
TECHNOLOGY
The NAC Solution/ARP Enforcement technology is legal technology dedicated to securing and regulating access to a
corporate network by ensuring device compliance to corporate security policies.
User behavior and user obligations
The user agrees to comply with the applicable local, state, national, international, and supranational laws and regulations
as well as the specifications mentioned in the documentation or the related transfer documents of the authorized dealer
from whom the user purchased the Software and

(a)

(b)
not to transmit or store material that infringes intellectual property rights or any other rights of third
parties or is illegal, unauthorized, defamatory or offensive or invades the privacy of third parties,

(c)
not to transmit or store data owned by third parties, without obtaining beforehand the consent
prescribed by law of the owner of the data to the data transmission,

(d)
not to transmit material containing software viruses or any other harmful computer codes, files or
programs,

(e)
not to carry out any acts interfering with or interrupting the operation of the server or networks
associated with the software,

(f)
not to attempt to gain unauthorized access to computer systems or networks associated with the
Software.
not to use the Software for illegal purposes,
The user is restricted to using the software as intended and within the specific legal framework conditions in their
country. Please note that the use of this security Software within networks can affect provisions of data protection law at
the EU level and/or at EU member state level. Moreover, in operational use also provisions of collective labor law may
have to be observed.
42
ENHANCED PROTECTION WITH
KASPERSKY SECURITY NETWORK
Kaspersky Lab offers an extra layer of protection to users through the Kaspersky Security Network. This protection
method is designed to combat advanced persistent threats and zero-day attacks. Integrated cloud technologies and the
expertise of Kaspersky Lab virus analysts make Kaspersky Endpoint Security the unsurpassed choice for protection
against the most sophisticated network threats.
Details on enhanced protection in Kaspersky Endpoint Security are available on the Kaspersky Lab website.
43
TRADEMARK NOTICE
The registered trademarks and service marks are the property of their owners.
ActiveSync, Microsoft, Windows, and SQL Server are trademarks of Microsoft Corporation registered in the USA and
other countries.
Apple is a registered trademark of Apple Inc.
44
Was this manual useful for you? yes no
Thank you for your participation!

* Your assessment is very important for improving the work of artificial intelligence, which forms the content of this project

Download PDF

advertisement