Uploading an independently prepared TLS certificate for the Sensor server in the administrator menu of the Sensor server

You can independently prepare a TLS certificate and upload it to the server with the Sensor component via the SCP protocol. For more details on the methods for uploading files via the SCP protocol, see the documentation for the operating system installed on the computer from which you want to upload the TLS certificate.

The TLS certificate file prepared for upload to the server must satisfy the following requirements:

• The file must contain the certificate itself and a private encryption key for the connection.
• The file must be in PEM format.
• The file name must be kata.pem.
• The private key length must be 2048 bits or longer.

For more details on preparing TLS certificates for import, please refer to the documentation on Open SSL.

To upload an independently prepared TLS certificate to the server with the Sensor component via the SCP protocol, perform the following actions in your computer's interface used for working over the SCP protocol (using the Linux operating system as an example):

1. Run the following command: scp kata.pem admin@<IP address of the server with the Sensor component>:
2. At the password prompt, enter the administrator password for working in the administrator menu of the server with the Sensor component that was set during installation.

The TLS certificate is uploaded to the server with the Sensor component.

To apply the uploaded TLS certificate on the server with the Sensor component, do the following in the administrator menu of the Sensor server:

1. In the main window of the administrator menu, select Program settings.
2. Press ENTER.

   This opens the next window of the administrator menu.

3. Select Manage server certificate.
4. Press ENTER.

   This opens the Certificate management window.

5. In the lower part of the window, select kata.pem.
6. Press ENTER.

   This opens the Uploaded certificate window.

7. Select Install certificate.
8. Press ENTER.

   This opens the action confirmation window.

9. Click Yes.

   This opens a window containing information about the certificate.

10. Click Continue.

    This opens the action confirmation window.

11. Click Install.

    Installation of the certificate starts.

12. After installation of the certificate is completed, press ENTER.

    This opens a window containing information about the applied certificate.

13. Click Continue.

    This opens the action confirmation window.

14. Click Ok.

The certificate will be applied. The data of previously installed certificates will be overwritten.

See also Configuring the trusted connection of Kaspersky Anti Targeted Attack Platform with Kaspersky Endpoint Agent Downloading the TLS certificate of the Central Node server Generating a TLS certificate for the Central Node server in the web interface of Kaspersky Anti Targeted Attack Platform Uploading an independently prepared TLS certificate for the Central Node server using the web interface of Kaspersky Anti Targeted Attack Platform. Uploading a TLS certificate of the Central Node server or Sensor to Kaspersky Endpoint Agent Enabling the validation of the Kaspersky Endpoint Agent TLS certificate in the web interface of Kaspersky Anti Targeted Attack Platform Generating a TLS certificate of Kaspersky Endpoint Agent in the web interface of Kaspersky Anti Targeted Attack Platform and downloading a cryptographic container Uploading an independently prepared TLS certificate of Kaspersky Endpoint Agent using the web interface of Kaspersky Anti Targeted Attack Platform. Viewing the table of Kaspersky Endpoint Agent TLS certificates in the web interface of Kaspersky Anti Targeted Attack Platform Filtering and searching Kaspersky Endpoint Agent TLS certificates in the web interface of Kaspersky Anti Targeted Attack Platform Deleting Kaspersky Endpoint Agent TLS certificates in the web interface of Kaspersky Anti Targeted Attack Platform Configuring the validation of the Kaspersky Endpoint Agent TLS certificate by the Central Node server and uploading a cryptographic container to Kaspersky Endpoint Agent Configuring traffic redirection from Kaspersky Endpoint Agent to the Sensor server Generating a TLS certificate for the Sensor server in the administrator menu of the Sensor server Downloading the TLS certificate of the Sensor server to your computer Configuring the integration and trusted connection with Kaspersky Anti Targeted Attack Platform on the Kaspersky Endpoint Agent side

Page top