In the main window of the Web Console, select Devices → Policies and policy profiles.
The list of policies opens.
Select the administration group containing client devices to which the policy should be applied. To do so, click the link in the Current path field in the upper part of the window and select an administration group in the window that opens.
The list displays only the policies configured for the selected administration group.
Click Add.
The Policy Wizard starts.
Select Kaspersky Endpoint Security 11.2.0 for Linux and click Next.
Decide whether you want to participate in Kaspersky Security Network. Carefully read the Kaspersky Security Network Statement and do one of the following:
If you agree with all the terms and conditions of the Statement and want the application to use Kaspersky Security Network, select I confirm that I have fully read, understand, and accept the terms and conditions of Kaspersky Security Network Statement.
If you do not want to use Kaspersky Security Network, select I do not accept the terms and conditions of the Kaspersky Security Network Statement and confirm your decision in the window that opens.
Refusal to use Kaspersky Security Network does not interrupt the policy creation process. You can enable, disable, or change the Kaspersky Security Network mode for the managed devices in the policy settings at any time.
Click Next.
The General tab of the new policy settings window opens.
On the General tab, you can configure the following policy settings:
Policy name.
Policy status:
Active. The policy that is currently applied to the device.
If this option is selected, this policy becomes active on the device upon the next device synchronization with the Administration Server. This option is selected by default.
Inactive. The policy that is not currently applied to the device.
If this option is selected, the policy becomes inactive but remains in the Policies folder. You can activate the inactive policy later.
Out-of-office. Policy that becomes active when the device leaves the corporate network.
If this option is selected, the policy becomes active when the device leaves the organization network.
Policy settings inheritance:
Inherit settings from parent policy. If this option is enabled, the policy settings values are inherited from the upper-level group policy and, therefore, are locked. The check toggle button is switched on by default.
Enforce settings inheritance for child policies If this option is enabled, the settings values of the child policies are locked. The toggle button is switched off by default.
For general information about the policy settings, refer to Kaspersky Security Center documentation.
The created policy will be displayed in the list of policies. You can change the policy settings later. For general information about managing policies, refer to Kaspersky Security Center documentation.