Support

Support for business applications

Kaspersky Endpoint Agent

Managing the application using Kaspersky Security Center Web Console and Kaspersky Security Center Cloud Console

Configuring Kaspersky Endpoint Agent settings

Configuring integration between Kaspersky Endpoint Agent and KATA Central Node

Configuring trusted connection with KATA Central Node

Kaspersky Endpoint Agent
Нет результатов
Online Help
FAQ Forum Contact support Recovery tools Product videos

Configuring trusted connection with KATA Central Node

November 17, 2023

ID 206809

To configure trusted connection between Kaspersky Endpoint Agent and KATA Central Node, perform the following actions on Kaspersky Endpoint Agent side:

  1. Open the policy properties window.
  2. In the Telemetry collection servers section select KATA integration.

    The KATA integration window opens.

  3. In the Connection settings group, select the Use pinned certificate to secure connection check box.
  4. Click the Add new TLS certificate button.

    The window for adding a new TLS certificate opens.

  5. Perform one of the following actions to add a TLS certificate:
    • Add a certificate file. Click Browse, and in the window that opens, select the certificate file and click Open.
    • Copy and paste the contents of the certificate file to the TLS certificate data field.

    Kaspersky Endpoint Agent may have only one KATA server TLS certificate. If you have added a TLS certificate before and then add a TLS certificate once again, only the last added certificate is valid.

  6. Click OK.

    Information about the added TLS certificate is shown in the TLS certificate data group of settings.

  7. If you want to configure additional connection protection by a user certificate, do the following:
    1. Select the Secure connection with client certificate check box.
    2. Click the Upload a cryptocontainer button.
    3. In the window that opens select the PFX archive and click Open.
    4. In the Cryptocontainer password field, enter the password for the PFX archive.
    5. Click OK.
  8. In the upper right corner of the settings group, change the switch from Undefined to Enforce.

    The default switch position is Enforce.

  9. Click OK.

A Trusted connection to the KATA server is now configured.

The TLS certificate file must satisfy the following requirements:

  • The file must contain the certificate itself and a private encryption key for the connection.
  • The file must be in PEM or DER format.
  • The private key length must be 2048 bits or longer.

For more details about preparing TLS certificates for import, refer to OpenSSL documentation.

See also

Enabling and disabling integration with KATA Central Node

Configuring synchronization settings between Kaspersky Endpoint Agent and KATA Central Node

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.