This section provides information related to Kaspersky Endpoint Agent for Windows. This information may be partially or completely inapplicable to Kaspersky Endpoint Agent for Linux. For complete information about Kaspersky Endpoint Agent for Linux, please refer to the Help of the solution that includes the application: Kaspersky Anti Targeted Attack Platform or Kaspersky Managed Detection and Response.
The task can be run only if you have an active Kaspersky Industrial CyberSecurity for Node license key with an ICS Audit licensed object.
To configure the Security Audit task settings using a custom database from a file:
You can load only one archive containing an XML file with OVAL rules and XCCDF rules.
The total archive size must not exceed 2 MB.
The Source of rules section displays information about the loaded rules. Follow the Details links in the Platforms and Products fields to open windows with lists of the operating systems and products mentioned in the rules of the selected source.
You cannot use external variables if the selected source contains XCCDF rules.
The Scope section is unavailable if the selected rule source contains XCCDF rules.
Kaspersky Endpoint Agent scans the devices to which the task is assigned in order to detect all vulnerabilities described in the rules of the Kaspersky ICS CERT vulnerabilities database for SCADA.
Kaspersky Endpoint Agent scans the devices to which the task is assigned in order to detect all vulnerabilities described in the rules of the Kaspersky ICS CERT vulnerabilities database for SCADA except for those added to the list below.
Kaspersky Endpoint Agent scans the devices to which the task is assigned in order to detect vulnerabilities added to the list below.
Directives cannot be applied if the selected rule source contains XCCDF rules.
If the switch next to a directive status is on, results of scans based on the directive's rules that have this status will be displayed in the security audit task report.
By default, the check boxes next to the True and False scan result are selected for all directives.
You can start the created task manually or configure a scheduled task start.
Page top