The following application tasks are provided for managing Kaspersky Endpoint Security using the command line:
File Threat Protection. This task allows you to enable or disable File Threat Protection in real time and defines the settings for the File Threat Protection component. The task starts automatically when the application starts.
Malware Scan. This task allows you to scan file system objects for malware on demand and defines the settings for the scan. You can use this task to perform a full or custom scan of the device.
Critical Areas Scan. This task allows you to run a critical areas scan of the operating system on demand and defines the settings for the scan.
Custom file scan. This task is designed for configuring and storing settings that are used when scanning the specified files and directories using the kesl-control --scan-file command. As a result of the command execution, the application creates and starts a temporary file scan task.
Container scan. This task allows you to scan containers and images on demand and defines the settings for the scan.
Custom Container Scan. This task is designed for configuring and storing settings that are used when scanning the specified containers and images using the kesl-control [-T] --scan-container command. As a result of the command execution, the application creates and starts a temporary Container Scan task.
Removable Drives Scan. This task allows you to monitor the connection of removable drives to the device in real time and defines the settings for the removable drives scan, as well as the scan of their boot sectors, for the presence of malware.
Web Threat Protection. This task allows you to enable or disable Web Threat Protection and defines the settings for the Web Threat Protection component.
Network Threat Protection. This task allows you to enable or disable Network Threat Protection and defines the settings for the Network Threat Protection component.
Anti-Cryptor. This task allows you to enable or disable the protection of files from remote malicious encryption and defines the settings for the Anti-Cryptor component.
Firewall Management. This task allows you to enable or disable firewall management and defines the network connection control settings on the device.
Application Control. This task allows you to enable or disable Application Control and defines the settings of the Application Control component.
Device Control. This task allows you to enable or disable Device Control and defines the settings for the Device Control component. The task starts automatically when Kaspersky Endpoint Security starts.
Web Control. This task allows you to enable or disable Web Control and defines the settings of the Web Control component.
Behavior Detection. This task allows you to monitor malicious activity of applications in the operating system. The task starts automatically when Kaspersky Endpoint Security starts.
System Integrity Monitoring. This task allows you to perform real-time monitoring of the actions performed with objects from the monitoring scope specified in the System Integrity Monitoring component settings.
System Integrity Check. This task allows you to check for changes in files and directories that you have included in the monitoring scope, by comparing the current state of the monitored object with a previously recorded state.
Backup management. This task provides the capability to save backup copies of files to the Backup located on the device. The task starts automatically when the application starts, and it resides in the device operating memory. The task cannot be started, stopped, or deleted.
Licensing. This task provides the capability to activate an application installed on the device. The task starts automatically when the application starts, and it resides in the device operating memory. The task has no settings; license keys are managed using special management commands. The task cannot be started, stopped, or deleted.
Each application task has a name used on the command line, an ID, and a type (see the table below).
IDs are unique for all tasks, including deleted tasks. The application does not reuse the identifiers of the deleted tasks. The identifier of a new task is the next successive number to the identifier of the latest created task.
Task names are not case-sensitive.
During installation of the application, predefined tasks are created. These tasks cannot be deleted. Each predefined task has a name and ID.
Tasks that you create while working with the application are called user tasks. When you create the task, you specify the name for it. IDs for user tasks are defined and assigned by the application when the task is created. IDs for user tasks are starting from 100.
During operation, the application creates temporary scan tasks. Temporary task names and IDs are assigned by the application. Temporary tasks are automatically deleted when completed.
Application tasks
Task
Task name in command line
Task ID
Task type
File Threat Protection
File_Threat_Protection
1
OAS
Malware Scan
Scan_My_Computer
2
ODS
Malware Scan (user task)
user-defined
starting from 100
ODS
Custom file scan
Scan_File
3
ODS
Critical Areas Scan
Critical_Areas_Scan
4
ODS
Container Scan
Container_Scan
18
ContainerScan
Container scan (user task)
user-defined
starting from 100
ContainerScan
Custom Container Scan
Custom_Container_Scan
19
ContainerScan
Removable Drives Scan
Removable_Drives_Scan
16
RDS
Web Threat Protection
Web_Threat_Protection
14
WTP
Network Threat Protection
Network_Threat_Protection
17
NTP
Anti-Cryptor
Anti_Cryptor
13
AntiCryptor
Firewall Management
Firewall_Management
12
Firewall
Application Control
Application_Control
21
AppControl
Inventory
Inventory_Scan
22
InventoryScan
Inventory (user task)
user-defined
starting from 100
InventoryScan
Device Control
Device_Control
15
DeviceControl
Behavior Detection
Behavior_Detection
20
BehaviorDetection
System Integrity Monitoring
System_Integrity_Monitoring
11
OAFIM
System Integrity Monitoring (user task)
user-defined
starting from 100
ODFIM
Backup management
Backup
10
Backup
Update
Update
6
Update
Update (user task)
user-defined
starting from 100
Update
Rollback
Rollback
7
Rollback
Rollback (user task)
user-defined
starting from 100
Rollback
Licensing
License
9
License
Kaspersky Endpoint Detection and Response (KATA) Integration
KATAEDR
24
KATAEDR
Web Control
Web_Control
26
WebControl
You can perform the following actions with tasks:
Start and stop all predefined and user tasks except Backup and License tasks.