Configuring the validation of the Kaspersky Endpoint Agent TLS certificate by the Central Node server and uploading a cryptographic container to Kaspersky Endpoint Agent

To configure the validation of Kaspersky Endpoint Agent TLS certificate by the Central Node server and upload the cryptographic container with the Kaspersky Endpoint Agent certificate to Kaspersky Endpoint Agent:

1. Open the KSC Console.
2. In the console tree, open the Policies folder.
3. In the Kaspersky Endpoint Agent policy section, select the required policy and double-click it to open its properties.

   The properties of the selected policy are displayed.

4. In the KATA integration section, select the KATA Central Node subsection.

5. Click Configure additional security.
6. In the window that opens, select the Secure the connection with client certificate check box.
7. Click Upload.

   This opens the file selection window on your local computer.

8. Select the cryptographic container file of the Kaspersky Endpoint Agent certificate that was generated on the Kaspersky Anti Targeted Attack Platform server and downloaded to the hard drive of your computer.
9. Click OK.

   The window closes.

10. Make sure the toggle switch in the upper right corner of the group of settings is in the Under policy position.
11. Click OK.

The cryptographic container with the Kaspersky Endpoint Agent certificate is uploaded to Kaspersky Endpoint Agent. Kaspersky Anti Targeted Attack Platform now validates the TLS certificate of Kaspersky Endpoint Agent when it tries to connect.

See also Configuring the trusted connection of Kaspersky Anti Targeted Attack Platform with Kaspersky Endpoint Agent Downloading the TLS certificate of the Central Node server Generating a TLS certificate for the Central Node server in the web interface of Kaspersky Anti Targeted Attack Platform Uploading an independently prepared TLS certificate for the Central Node server using the web interface of Kaspersky Anti Targeted Attack Platform. Uploading a TLS certificate of the Central Node server or Sensor to Kaspersky Endpoint Agent Enabling the validation of the Kaspersky Endpoint Agent TLS certificate in the web interface of Kaspersky Anti Targeted Attack Platform Generating a TLS certificate of Kaspersky Endpoint Agent in the web interface of Kaspersky Anti Targeted Attack Platform and downloading a cryptographic container Uploading an independently prepared TLS certificate of Kaspersky Endpoint Agent using the web interface of Kaspersky Anti Targeted Attack Platform. Viewing the table of Kaspersky Endpoint Agent TLS certificates in the web interface of Kaspersky Anti Targeted Attack Platform Filtering and searching Kaspersky Endpoint Agent TLS certificates in the web interface of Kaspersky Anti Targeted Attack Platform Deleting Kaspersky Endpoint Agent TLS certificates in the web interface of Kaspersky Anti Targeted Attack Platform Configuring traffic redirection from Kaspersky Endpoint Agent to the Sensor server Generating a TLS certificate for the Sensor server in the administrator menu of the Sensor server Uploading an independently prepared TLS certificate for the Sensor server in the administrator menu of the Sensor server Downloading the TLS certificate of the Sensor server to your computer Configuring the integration and trusted connection with Kaspersky Anti Targeted Attack Platform on the Kaspersky Endpoint Agent side

Page top