Authentication for Threat Response group tasks on the Administration Server

If you want Kaspersky Endpoint Agent to create group tasks for Threat Response, perform authentication on the Administration Server: enter the user name and password for connecting to Kaspersky Security Center.

You can authenticate with the internal Kaspersky Security Center user account created in Kaspersky Security Center or use Windows authentication.

For more information about creating Kaspersky Security Center user accounts and Windows authentication, refer to Kaspersky Security Center Help.

The user account name must not be the same as the domain name of the user and must not have the <domain name>\<user name> format.

To authenticate at the Administration Server:

1. Open Kaspersky Security Center Administration Console.
2. In the console tree, open the Policies folder.
3. Select Kaspersky Endpoint Agent policy and open its properties window in one of the following ways:
   • Double-click the policy name.
   • Select Properties in the policy context menu.
   • Select the Configure policy settings item in the right part of the window.
4. In the Kaspersky Sandbox integration section select the Threat Response subsection.
5. In the Authentication on Administration Server group of settings, in the Administration Server login field, enter the name of Kaspersky Security Center user account.
6. In the Authentication on Administration Server group of settings, in the Administration Server password field, enter the password for accessing Kaspersky Security Center.
7. In the upper right corner of the settings group, change the switch from Policy not enforced to Under policy.
8. Click OK.

See also Enabling and disabling Threat Response actions Adding Threat Response actions to the action list of the current policy Device protection from legitimate applications that can be used by cybercriminals Configuring start of Autonomous IOC Scan tasks

Page top