Task management in the command line

The following application tasks are provided for managing Kaspersky Endpoint Security using the command line:

• File Threat Protection. This task allows you to enable or disable File Threat Protection in real time and defines the settings for the File Threat Protection component. The task starts automatically when the application starts.
• Malware Scan. This task allows you to scan file system objects for malware on demand and defines the settings for the scan. You can use this task to perform a full or custom scan of the device.
• Critical Areas Scan. This task allows you to run a critical areas scan of the operating system on demand and defines the settings for the scan.
• Custom file scan. This task is designed for configuring and storing settings that are used when scanning the specified files and directories using the kesl-control --scan-file command. As a result of the command execution, the application creates and starts a temporary file scan task.
• Container scan. This task allows you to scan containers and images on demand and defines the settings for the scan.
• Custom Container Scan. This task is designed for configuring and storing settings that are used when scanning the specified containers and images using the kesl-control [-T] --scan-container command. As a result of the command execution, the application creates and starts a temporary Container Scan task.
• Removable Drives Scan. This task allows you to monitor the connection of removable drives to the device in real time and defines the settings for the removable drives scan, as well as the scan of their boot sectors, for the presence of malware.
• Web Threat Protection. This task allows you to enable or disable Web Threat Protection and defines the settings for the Web Threat Protection component.
• Network Threat Protection. This task allows you to enable or disable Network Threat Protection and defines the settings for the Network Threat Protection component.
• Anti-Cryptor. This task allows you to enable or disable the protection of files from remote malicious encryption and defines the settings for the Anti-Cryptor component.
• Firewall Management. This task allows you to enable or disable firewall management and defines the network connection control settings on the device.
• Application Control. This task allows you to enable or disable Application Control and defines the settings of the Application Control component.
• Inventory. The task allows you to obtain information about all the application executable files stored on the device.
• Device Control. This task allows you to enable or disable Device Control and defines the settings for the Device Control component. The task starts automatically when Kaspersky Endpoint Security starts.
• Web Control. This task allows you to enable or disable Web Control and defines the settings of the Web Control component.
• Behavior Detection. This task allows you to monitor malicious activity of applications in the operating system. The task starts automatically when Kaspersky Endpoint Security starts.
• System Integrity Monitoring. This task allows you to perform real-time monitoring of the actions performed with objects from the monitoring scope specified in the System Integrity Monitoring component settings.
• System Integrity Check. This task allows you to check for changes in files and directories that you have included in the monitoring scope, by comparing the current state of the monitored object with a previously recorded state.
• Backup management. This task provides the capability to save backup copies of files to the Backup located on the device. The task starts automatically when the application starts, and it resides in the device operating memory. The task cannot be started, stopped, or deleted.
• Licensing. This task provides the capability to activate an application installed on the device. The task starts automatically when the application starts, and it resides in the device operating memory. The task has no settings; license keys are managed using special management commands. The task cannot be started, stopped, or deleted.
• Update. You can use this task to perform scheduled and on-demand application database and module updates and edit update settings.
• Rollback. You can use this task to roll back the last update of application databases and modules.
• Kaspersky Endpoint Detection and Response (KATA) Integration. This task allows you to enable or disable integration with Kaspersky Endpoint Detection and Response (KATA) and defines the integration settings.

Each application task has a name used on the command line, an ID, and a type (see the table below).

IDs are unique for all tasks, including deleted tasks. The application does not reuse the identifiers of the deleted tasks. The identifier of a new task is the next successive number to the identifier of the latest created task.

Task names are not case-sensitive.

During installation of the application, predefined tasks are created. These tasks cannot be deleted. Each predefined task has a name and ID.

Tasks that you create while working with the application are called user tasks. When you create the task, you specify the name for it. IDs for user tasks are defined and assigned by the application when the task is created. IDs for user tasks are starting from 100.

During operation, the application creates temporary scan tasks. Temporary task names and IDs are assigned by the application. Temporary tasks are automatically deleted when completed.

Application tasks

Task	Task name in command line	Task ID	Task type
File Threat Protection	File_Threat_Protection	1	OAS
Malware Scan	Scan_My_Computer	2	ODS
Malware Scan (user task)	user-defined	starting from 100	ODS
Custom file scan	Scan_File	3	ODS
Critical Areas Scan	Critical_Areas_Scan	4	ODS
Container Scan	Container_Scan	18	ContainerScan
Container scan (user task)	user-defined	starting from 100	ContainerScan
Custom Container Scan	Custom_Container_Scan	19	ContainerScan
Removable Drives Scan	Removable_Drives_Scan	16	RDS
Web Threat Protection	Web_Threat_Protection	14	WTP
Network Threat Protection	Network_Threat_Protection	17	NTP
Anti-Cryptor	Anti_Cryptor	13	AntiCryptor
Firewall Management	Firewall_Management	12	Firewall
Application Control	Application_Control	21	AppControl
Inventory	Inventory_Scan	22	InventoryScan
Inventory (user task)	user-defined	starting from 100	InventoryScan
Device Control	Device_Control	15	DeviceControl
Behavior Detection	Behavior_Detection	20	BehaviorDetection
System Integrity Monitoring	System_Integrity_Monitoring	11	OAFIM
System Integrity Monitoring (user task)	user-defined	starting from 100	ODFIM
Backup management	Backup	10	Backup
Update	Update	6	Update
Update (user task)	user-defined	starting from 100	Update
Rollback	Rollback	7	Rollback
Rollback (user task)	user-defined	starting from 100	Rollback
Licensing	License	9	License
Kaspersky Endpoint Detection and Response (KATA) Integration	KATAEDR	24	KATAEDR
Web Control	Web_Control	26	WebControl

You can perform the following actions with tasks:

• Start and stop all predefined and user tasks except Backup and License tasks.
• Suspend and resume ODS, ODFIM, and InventoryScan tasks.
• Create and delete user tasks. Depending on the application usage mode, you can create the following types of tasks:
  • Standard mode: ODS, Update, Rollback, ODFIM, ContainerScan, and InventoryScan;
  • Light Agent mode for protecting virtual environments: ODS, ODFIM, ContainerScan, and InventoryScan.
• Change the settings for all user tasks and all predefined tasks, except for Rollback and License tasks.

  If the application is used in Light Agent mode to protect virtual environments, the settings of the predefined Update task also cannot be edited.

• Configure the task start schedule.

In this section Viewing a list of tasks in the command line Viewing the status of a task in the command line Creating a task in the command line Starting, stopping, pausing, and resuming tasks in the command line Deleting a task in the command line

Page top