Enabling options in the policy of Kaspersky Endpoint Agent for Linux
When configuring default settings of a Kaspersky Endpoint Agent policy, setting values are saved but not applied until you enable them.
You can enable settings by enabling groups in which the settings reside. In one policy you can enable some groups of settings or all groups of settings.
To enable a group of settings in the Kaspersky Endpoint Agent policy:
Open the Kaspersky Security Center Administration Console.
In the console tree, open the Policies folder.
Select a policy for Kaspersky Endpoint Agent and open its settings window in one of the following ways:
Double-click on the name of the policy.
In the context menu of the policy, select Properties.
In the opened window, select the Application settings tab.
Select the Other settings subsection.
Select one of the following options for using a proxy server:
Do not use proxy server.
Use proxy server with specified settings.
If you selected Use proxy server with specified settings, in the Server name or IP address and Port, enter the address and port of the proxy server to which you want to connect. Port 8080 is used by default.
Kaspersky Endpoint Agent does not encrypt the connection with the proxy server. You must take steps to make sure the network connection between your proxy server and Kaspersky Endpoint Agent is secure.
If you want to use NTLM authentication when connecting to the proxy server:
Select the Use NTLM authentication by user name and password.
In the User name field, enter the name of the user whose account will be used for authorization at the proxy server.
In the Password field, enter the password to obtain connection to the proxy server.
To reveal password characters, click Show to the right of the Password field.
If you do not want to use the proxy server for addresses internal to the organization, select the Bypass proxy server for local addresses check box.
Click Apply.
Select the KATA integration section.
Go to the General Settings subsection.
In the Data transmission settings group, set the Under policy toggle switch to active.
In the Event transmission period (sec.) field, type 30.
In the Event limit per one package, type 1024.
In the Throttling settings group, set the Under policy toggle switch to active.
Select the Enable throttling check box.
Enter the maximum number of events per hour and the percentage value for events exceeding the limit.
Go to the KATA integration settings subsection.
In the Connection settings group, move the Enforce toggle switch to active.
Select the Enable KATA integration check box.
Enter the address and port of the KATA server in the Address and Port fields.
Select the Use pinned certificate to secure connection check box.
Click Add new TLS certificate.
In the opened window, click Upload and select the server certificate file to set up a secure connection or enter certificate data in the field.
Click Add.
Click Add client certificate.
In the opened window, select the Secure with client certificate check box.
Click Upload and select a client certificate file to set up a secure connection.
In the Cryptographic container password field, enter the password of the client certificate to set up a secure connection.
Select the Apply TTL period for events transmission.
In the TTL period (min.) field, enter the interval for sending synchronization requests.
Click Apply.
Click OK.
Policy settings required by Kaspersky Endpoint Agent are enabled.