Configuring the integration and trusted connection with Kaspersky Anti Targeted Attack Platform on the Kaspersky Endpoint Agent side

To configure integration with Kaspersky Anti Targeted Attack Platform on the Kaspersky Endpoint Agent side:

  1. Open the KSC Console.
  2. In the console tree, open the Policies folder.
  3. In the Kaspersky Endpoint Agent policy section, select the required policy and double-click it to open its properties.

    The properties of the selected policy are displayed.

  4. In the KATA integration section, select the KATA integration settings subsection.

  5. Select the Enable KATA integration check box.
  6. In the Address field, enter the address of the Central Node server of the Kaspersky Anti Targeted Attack Platform program that you want to configure integration with, and select a port to use for the connection. Port 443 is used by default.
  7. Select the Use pinned certificate to secure connection check box.
  8. Click Add new TLS certificate....

    This opens the Adding TLS certificate window.

  9. To add a TLS certificate previously created on the Kaspersky Anti Targeted Attack Platform side and downloaded, do one of the following:
    • Add a certificate file. To do so, click Browse...; in the window that is displayed, select a certificate file and click Open.
    • Paste the content of the certificate file to the Paste TLS certificate data: field.

    Kaspersky Endpoint Agent can store only one TLS certificate for the Kaspersky Anti Targeted Attack Platform server. If you have added a TLS certificate before and are adding a TLS certificate again, only the last added certificate is used.

    If you have configured traffic redirection to the server with the Sensor component, you must download the TLS certificate of the Sensor server and then upload it here.

  10. Click Add.

    Information about the added TLS certificate is displayed in the section for integration with Kaspersky Anti Targeted Attack Platform.

  11. Click Add client certificate....
  12. In the window that is displayed, select the Secure with client certificate check box.
  13. Click Upload.

    This opens the file selection window on your local computer.

  14. Select the cryptographic container file of the Kaspersky Endpoint Agent certificate that was generated on the Kaspersky Anti Targeted Attack Platform server and downloaded to the hard drive of your computer.
  15. Click OK.

    The window closes.

  16. In the Timeout period (sec.): field, enter the maximum response timeout of the Kaspersky Anti Targeted Attack Platform Central Node server in seconds.
  17. In the Send sync request to KATA server every (min.) field, enter the period in minutes.
  18. If you do not want Kaspersky Endpoint Agent to send information about repeated running of processes to the Kaspersky Anti Targeted Attack Platform server, select the Apply TTL period for events transmission check box. If the process is started after the next TTL period expires, Kaspersky Endpoint Agent does not consider this a repeated start of the process.
  19. If you have set the "Apply TTL period for events transmission" check box, specify the time in the TTL period (min.) field.
  20. Make sure the toggle switch in the upper right corner of the group of settings is in the Under policy position.
  21. Click OK.

The integration with Kaspersky Anti Targeted Attack Platform on the Kaspersky Endpoint Agent side is configured.

See also

Configuring the trusted connection of Kaspersky Anti Targeted Attack Platform with Kaspersky Endpoint Agent

Downloading the TLS certificate of the Central Node server

Generating a TLS certificate for the Central Node server in the web interface of Kaspersky Anti Targeted Attack Platform

Uploading an independently prepared TLS certificate for the Central Node server using the web interface of Kaspersky Anti Targeted Attack Platform

Uploading a TLS certificate of the Central Node server or Sensor to Kaspersky Endpoint Agent

Enabling the validation of the Kaspersky Endpoint Agent TLS certificate in the web interface of Kaspersky Anti Targeted Attack Platform

Generating a TLS certificate of Kaspersky Endpoint Agent in the web interface of Kaspersky Anti Targeted Attack Platform and downloading a cryptographic container

Uploading an independently prepared TLS certificate of Kaspersky Endpoint Agent using the web interface of Kaspersky Anti Targeted Attack Platform

Viewing the table of Kaspersky Endpoint Agent TLS certificates in the web interface of Kaspersky Anti Targeted Attack Platform

Filtering and searching Kaspersky Endpoint Agent TLS certificates in the web interface of Kaspersky Anti Targeted Attack Platform

Deleting Kaspersky Endpoint Agent TLS certificates in the web interface of Kaspersky Anti Targeted Attack Platform

Configuring the validation of the Kaspersky Endpoint Agent TLS certificate by the Central Node server and uploading a cryptographic container to Kaspersky Endpoint Agent

Configuring traffic redirection from Kaspersky Endpoint Agent to the Sensor server

Generating a TLS certificate for the Sensor server in the administrator menu of the Sensor server

Uploading an independently prepared TLS certificate for the Sensor server in the administrator menu of the Sensor server

Downloading the TLS certificate of the Sensor server to your computer

Page top