Uploading a TLS certificate of the Central Node server or Sensor to Kaspersky Endpoint Agent

To upload a TLS certificate of the Central Node or Sensor server to Kaspersky Endpoint Agent:

1. Open the KSC Console.
2. In the console tree, open the Policies folder.
3. In the Kaspersky Endpoint Agent policy section, select the required policy and double-click it to open its properties.

   The properties of the selected policy are displayed.

4. In the KATA integration section, select the KATA Central Node subsection.

5. Select the Enable KATA integration check box.
6. In the Address field, enter the address of the Central Node server of the Kaspersky Anti Targeted Attack Platform program that you want to configure integration with, and select a port to use for the connection. Port 443 is used by default.
7. Select the Use trusted connection check box.
8. Click Add new TLS certificate.

   The Adding TLS certificate window opens.

9. To add a TLS certificate previously created on the Kaspersky Anti Targeted Attack Platform side and downloaded, do one of the following:
   • Add a certificate file. To do so, click Browse; in the window that opens, select a certificate file and click Open.
   • Paste the contents of the certificate file into the OR field.

   Kaspersky Endpoint Agent can store only one TLS certificate for the Kaspersky Anti Targeted Attack Platform server. If you have added a TLS certificate before and are adding a TLS certificate again, only the last added certificate is used.

   If you have configured traffic redirection to the server with the Sensor component, you must download the TLS certificate of the Sensor server and then upload it here.

10. Click Add.

    Information about the added TLS certificate is displayed in the section for integration with Kaspersky Anti Targeted Attack Platform.

11. In the upper right corner of the settings group, switch from Unaffected by policy to Under policy.
12. Click OK.

The TLS certificate of the Central Node server is uploaded to Endpoint Agent.

See also Configuring the integration of Kaspersky Anti Targeted Attack Platform with Kaspersky Endpoint Agent Configuring the trusted connection of Kaspersky Anti Targeted Attack Platform with Kaspersky Endpoint Agent Downloading the TLS certificate of the Central Node server Generating a TLS certificate for the Central Node server in the web interface of Kaspersky Anti Targeted Attack Platform Uploading an independently prepared TLS certificate for the Central Node server using the web interface of Kaspersky Anti Targeted Attack Platform. Enabling the validation of the Kaspersky Endpoint Agent TLS certificate in the web interface of Kaspersky Anti Targeted Attack Platform Generating a TLS certificate of Kaspersky Endpoint Agent in the web interface of Kaspersky Anti Targeted Attack Platform and downloading a cryptographic container Uploading an independently prepared TLS certificate of Kaspersky Endpoint Agent using the web interface of Kaspersky Anti Targeted Attack Platform. Viewing the table of Kaspersky Endpoint Agent TLS certificates in the web interface of Kaspersky Anti Targeted Attack Platform Filtering and searching Kaspersky Endpoint Agent TLS certificates in the web interface of Kaspersky Anti Targeted Attack Platform Deleting Kaspersky Endpoint Agent TLS certificates in the web interface of Kaspersky Anti Targeted Attack Platform Configuring the validation of the Kaspersky Endpoint Agent TLS certificate by the Central Node server and uploading a cryptographic container to Kaspersky Endpoint Agent Configuring traffic redirection from Kaspersky Endpoint Agent to the Sensor server Generating a TLS certificate for the Sensor server in the administrator menu of the Sensor server Uploading an independently prepared TLS certificate for the Sensor server in the administrator menu of the Sensor server Downloading the TLS certificate of the Sensor server to your computer Configuring the integration and trusted connection with Kaspersky Anti Targeted Attack Platform on the Kaspersky Endpoint Agent side

Page top