Kaspersky Administration Kit 8.0

How to create a hierarchy of Administration servers

Back to "Installation / Uninstallation" section

ID: 2714

Complexity

2012 Jan 23

Applies to Kaspersky Administration Kit 8.0

Kaspersky Administration Kit allows an administrator to organize networked Administration servers into a hierarchy. Administration servers are united into a master server – slave server hierarchy. Each Administration server can have more than one slave server within a hierarchy.

In order to subordinate one Server to another:

Choose which Server will be the master, and which slave.
Open Administration console on the master Server and select an administration group to house the slave Server. Right-click Administration servers node. Choose New > Administration Server. Add Administration Server Wizard will require the following data needed for connection:

slave Server address. You can use IP address, Server name (NetBios name) or absolute server domain name (FQDN).

It is recommended to set this parameter to decrease slave Server connection time by skipping stage 3 of the connection process. But it requires placing the account running the Console into KLAdmins group on the slave Server. Otherwise you will be prompted to enter credentials of an account having such permissions.
If you do not have such permissions, the slave Server administrator will have to fulfill stage 3 of the connection process.
slave Server name to display in the administration group Administration servers node.
master Server name and its connection settings. You can use IP address, Server name (NetBios name) or absolute server domain name (FQDN). This stage applies if you were entering the slave Server name in previous connection stages.
slave Server certificate. The certificate will be used to authenticate the slave Server when connecting the two Servers. This certificate is not saved on a disk in some obvious form, but is placed into the Settings Storage. This stage applies if you were entering the slave Server name in previous connection stages.

If you did not enter a slave Server name into the connection Wizard (or did not have slave Server administrator permissions), please do the following:

open Console on the slave Server;
open its properties and click Advanced on the tab General;
click Settings in the section Administration Server hierarchy;
check the box This Administration Server is a slave server in the server hierarchy and specify:

address of the master Server. You can use IP address, Server name (NetBios name) or absolute server domain name (FQDN).
master Server certificate path. The certificate will be used to authenticate the master Server when connecting the two Servers. This certificate is not saved on a disk in some obvious form, but is placed into the Settings Storage.
proxy server settings – if there is a proxy server between the two Servers.

Open a Master Server console, expand the administration group housing the slave Server, and click on it to connect. It might take some time to connect to the Server depending on network configuration.

In order to be able to view subordinate servers in the Administration console, open the menu View (in MMC console), click Configuring interface and check the box Display slave Administration Servers.

If an attempt to establish connection fails, make sure that master Server credentials are configured correctly on the slave Server and that the box This Administration Server is a slave server in the server hierarchy is checked.

Permissions to connect a slave Server and its permissions to access logical network depend on the permissions for the master Server administration group to which this slave Server connects / is connected.

To be able to connect a slave Server, an account needs to have Reading and Modify access privileges permissions.

To be able to view the logical network of a connected slave Server an account needs to have Reading permission.

To be able to work with the logical network of a connected slave Server an account needs to have Writing and Execution permissions.

Kaspersky Administration Kit 8.0 allows each group task created on the master Server to be inherited by the slave Server. To enable such inheritance, go to the task settings tab General and check the box Send to slave Administration Servers. Master server does not transmit Kaspersky Administration Kit tasks and Computer selection tasks to slave Servers.

You can remove a slave Server from an administration group by clicking Delete in its right-click menu. If you delete a Server, the box This Administration Server is a slave server in the server hierarchy automatically becomes unchecked, and all policies and tasks assigned to it from the master Server will be deleted.

Did the provided info help you?

Yes No

Useful references

How to configure forced update of application modules / databases on slave Servers and client computers of master and slave Servers?
Hierarchy of Administration servers

Back to "Installation / Uninstallation" section

Kaspersky Administration Kit 8.0

Status: Supported

Database Update	Yes
Support	Yes
Error fix	Yes

Latest Version:

8.0.2177

Download:

Files

Trial Version

What is this status?Version history

Database Update
Release of antivirus database updates (required to protect your computer/server/mobile device).
Support
Limited technical support is provided over phone and web for commercially licensed customers.
Error fix
Release of patches for the application (addressing detected bugs).

Kaspersky Administration Kit 8.0

Administration Server

Attention! The amount of RAM and processor types in Network Agent and Administration Server/Console are minimum system requirements to be able to install corresponding components. It is recommended to use computers with a larger amount of RAM and processor frequency.

Minimum system requirements to install an Administration Server:

Operating systems:
- [for versions 8.0.2048 and 8.0.2090 only] Microsoft Windows 2000 Server / Professional SP4 and above. Please be advised that Microsoft Windows 2000 Server / Professional support Administration Server only. This operating system does not support Administration Console.
  
  If you are working with operating system Microsoft Windows 2000 with installed SP4, you should install the following Microsoft Windows updates before installing Administration Server:
- Microsoft Windows XP Professional SP2 and above;
  If you are going to use Microsoft SQL Server 2005 Express Edition SP3 as a database server, and it will be installed on the same computer as the Administration server, it is necessary to install SP3 for Microsoft Windows XP Professional on this computer.
- Microsoft Windows XP Professional x64 and above;
- Microsoft Windows Server 2003 and above;
- Microsoft Windows Server 2003 x64 and above;
- Microsoft Windows Vista SP1 and above;
- Microsoft Windows Vista x64 SP1 with all actual updates,
  Microsoft Windows Vista x64 requires installed Microsoft Windows Installer 4.5.
- Microsoft Windows Server 2008;
- Microsoft Windows Small Business Server 2003;
- Microsoft Windows Small Business Server 2003 R2;
- Microsoft Windows Small Business Server 2008 Standard;
- Microsoft Windows Small Business Server 2008 Premium;
- Microsoft Windows Server 2008 installed as Server Core;
- Microsoft Windows Server 2008 x64 SP1 and SP2 with all actual updates.
  Microsoft Windows Server 2008 x64 requires installed Microsoft Windows Installer 4.5.
- Microsoft Windows Server 2008 R2;
- Microsoft Windows 7 Professional/Enterprise/Ultimate (x32/x64).
Database Server (Can be installed on a separate computer):
- Microsoft SQL Server 2008.
- Microsoft SQL Server 2008 R2.
- Microsoft SQL Server Express 2008 R2.
- Microsoft SQL Server 2008 Express.
- Microsoft SQL Server 2005 SP2 and above.
- Microsoft SQL Server 2005 Express Edition SP2 and above (Microsoft SQL Server 2005 Express Edition is included into Kaspersky Administration Kit distribution package and can be installed directly from Kaspersky Administration Kit installation CD).
  If you are going to install Microsoft SQL Server 2005 Express Edition SP3 on a computer running Microsoft Windows XP Professional, please be sure to install SP3 for Microsoft Windows XP Professional on this computer first. Installation of Microsoft SQL Server 2005 Express Edition SP3 on a computer running Microsoft Windows XP Professional SP2 may result in BSOD (due to incompatibility of Microsoft SQL Server 2005 Express Edition SP3 and Microsoft Windows XP Professional SP2). Kaspersky Lab is not responsible for this problem.
- MySQL Enterprise 5.0.60 SP1, 5.0.70, 5.0.82 SP1, 5.0.90.
- MySQL 5.0.67, 5.0.77, 5.0.85, 5.087 SP1, 5.091.
- [for versions 8.0.2048 and 8.0.2090 only] Microsoft SQL Server 2000 SP 3 and above.
- [for versions 8.0.2048 and 8.0.2090 only] Microsoft SQL Server 2000 Desktop Engine (MSDE) SP3 and above.
Microsoft Data Access Components (MDAC) version 2.8 and above (is included into Kaspersky Administration Kit distribution package).
Microsoft .NET Framework 2.0 (is included into Kaspersky Administration Kit distribution package).

Hardware requirements:

For versions 8.0.2048 and 8.0.2090:
- Processor: Pentium III 800 MHz or better.
- RAM: 256MB.
- Free hard disk space: 1GB.
For version 8.0.2134:
- Processor: 1 GHz or better.
- RAM: 512MB.
- Free hard disk space: 1GB.

Administration Server and Console, and Network Agent have passed a full cycle of testing on:

VMware Workstation for Windows 6.5;
VMware Server 1.0.4;
VMware ESXi 4.0.

Administration Console

Network Agent

Kaspersky Administration Kit 8.0

Kaspersky Lab's Certificates:

Microsoft Gold Certified Partner Status

The Microsoft Gold Certified Partner Status shows that Kaspersky Lab has the highest qualification level in developing software compatible with Microsoft software and is a reliable, experienced, pioneer company in its field.

The status of Microsoft Gold Certified Partner for Security Solutions is reserved for Microsoft Certified Partners who have demonstrated significant success in providing information security solutions based on Microsoft technologies.

Microsoft Gold Certified Partner Status gives priorities among other companies recommended by Microsoft Company for partnership.

Red Hat Ready Partner Status

Kaspersky Lab has been granted Red Hat Ready partner status. Red Hat Company is a vendor of the most popular and commercially successful distributive of the Linux operating system. Red Hat Ready partner status attests to the fact that Kaspersky Labs products are optimized for Red Hat Enterprise Linux platforms. Membership offers a range of benefits, including the inclusion of Kaspersky Labs in the list of companies which Red Hat recommends to current and potential clients.

SUSE Technology Partner Status

Kaspersky Labs has recently been awarded SUSE Technology Partner status. This partnership program offers a range of benefits: dedicated information and professional support in developing and optimizing new Linux products; the opportunity to exchange information with other Linux developers; exclusive training courses; and new marketing opportunities in the form of the SUSE Linux Solution Map. Participation in the program will enable Kaspersky Labs to further improve its award-winning products for systems running under Linux.

Kaspersky Administration Kit 8.0

How to create a hierarchy of Administration servers

Useful references

Kaspersky Administration Kit 8.0

Status: Supported

Download:

Documentation

Distributive

Additional Distributives

Database Update

Support

Error fix

Kaspersky Administration Kit 8.0

Administration Server

Administration Console

Network Agent

Kaspersky Administration Kit 8.0

Kaspersky Lab's Certificates:

Microsoft Gold Certified Partner Status

Red Hat Ready Partner Status

SUSE Technology Partner Status

Feedback on Technical support site

For Home

Utilities

For Small Office

For Business

For Workstations and Mobile Devices

Kaspersky Hosted Security

For Virtual Environments

For File Servers

For Internet Gateways

Administration

For Mail and Collaboration Servers

Discontinued products

For Home

For Business

For Workstations and Mobile Devices

Kaspersky Hosted Security

For File Servers

For Internet Gateways

Administration

For Mail and Collaboration Servers