This section provides information related to Kaspersky Endpoint Agent for Windows. This information may be partially or completely inapplicable to Kaspersky Endpoint Agent for Linux. For complete information about Kaspersky Endpoint Agent for Linux, please refer to the Help of the solution that includes the application: Kaspersky Anti Targeted Attack Platform or Kaspersky Managed Detection and Response.
To create a Kaspersky Security Center installation package with OVAL or XCCDF rules as a signed archive:
cmd.exe
) with the permissions of the local administrator.cd
command, navigate to the folder where the ovaldbmgr.exe file is located.For example: cd "C:\Program Files (x86)\Kaspersky Lab\Endpoint Agent\Tools"
ovaldbmgr.exe --make-package --command={replace|merge} --subject=<
certificate name
> --output=<
full path
> --source=<
full path
> <
full path to the file with OVAL or XCCDF rules
>
ovaldbmgr.exe --make-package --command={replace|merge} --pfx=<
full path to the PFX container
> --pwd=<
password to access the PFX container
> --output=<
full path
> --source=<
full path
> <
full path to the file with OVAL or XCCDF rules
>
Command parameters for creating a Kaspersky Security Center installation package
Parameters |
Description |
---|---|
|
Required parameter. Creates an archive with files. |
|
Required parameter. This parameter defines the package deployment mode in Kaspersky Security Center. Available values:
|
|
Required parameter. This parameter defines the full path to the PFX container that contains the signature certificate. |
|
Required parameter. This parameter defines the password to access the PFX container. |
|
Required parameter. This parameter passes the name of the certificate for signing. If the name of a non-existent certificate for signing is specified, the command ends with an error. |
|
Required parameter. This parameter specifies the full path to the folder where the installation package will be created as a result of running the command. |
|
This parameter specifies the full path to the folder that contains the folder with OVAL and XCCDF rules that you want to include in the Kaspersky Security Center package. |
|
This parameter defines the full path to the files with OVAL or XCCDF rules in XML format that you want to include in the Kaspersky Security Center package. OVAL and XCCDF rules must be saved in UTF-8 without BOM. The file with OVAL or XCCDF rules must be located in a folder inside another folder. For example: C:\Users\UserName\Desktop\folder\subfolder\OvalRules.xml You can specify several parameter values separated by spaces. To specify files with OVAL or XCCDF rules, select one of the following options:
|
As a result of running the command, Kaspersky Endpoint Agent creates:
--output=<
full path
> parameter.
The archive contains the following files:
rules. Each archive contains one XML file with rules as well as the signature file for that XML file.You can specify the thumbprint in the Security Audit task settings using the custom rule database from the Kaspersky Security Center repository as the rule source.