Enabling and disabling Self-Defense

The Self-Defense mechanism of Kaspersky Endpoint Agent provides protection from malware that tries to lock the application or delete it. The Self-Defense mechanism prevents alteration or deletion of application files on the hard drive, memory processes, and entries in the system registry.

To enable or disable Self-Defense:

1. Do one of the following:
   • Open the application properties window for an individual device.
     1. In the main Kaspersky Security Center Web Console window select Devices → Managed devices.
     2. Select the device.
     3. In the <Device name> window that opens, select the Applications tab.
     4. Select Kaspersky Endpoint Agent.
     5. In the window that opens, select the Application settings tab.
   • Open the policy properties window.
     1. In the main Kaspersky Security Center Web Console window select Devices → Policies and profiles.
     2. Select the policy you want to configure.
     3. In the <Policy name> window that opens, select the Application settings tab.
2. In the Application settings section select the Security settings subsection.
3. In the Self-defense group of settings, do one of the following:
   • Select the Enable self-defense for application modules in memory check box to enable the self-defense mechanism.
   • Clear the Enable self-defense for application modules in memory check box to disable the self-defense mechanism.
4. If you configure the policy settings, in the upper right corner of the group of settings, change the switch from Undefined to Forced.
5. Click OK.
6. Click the Save button.

The Self-Defense mechanism is enabled or disabled.

See also Configuring user permissions Enabling Password protection

Page top