Container monitoring

The Container Monitoring component is enabled by default. The application scans running containers and namespaces in real time.

For the Container Monitoring component to work, the File Threat Protection component must be enabled. The File Threat Protection settings are used when scanning containers and namespaces.

The application does not scan namespaces and containers unless components for working with containers and namespaces are installed in the operating system. In this case, the component status for Container Monitoring on the command line is displayed as "Task is available and not running", whereas in Kaspersky Security Center, it is displayed as "Stopped".

You can enable or disable the Container Monitoring component, and also configure the settings for scanning containers and namespaces in real time:

• Select the action that the application performs on a container when it detects an infected object.

  This setting is available when using the application under a license that supports this function.

• Configure the integration of Kaspersky Endpoint Security with the Docker container management system, CRI-O framework, and Podman and runc utilities.

In this section Configuring container monitoring in the Web Console Configuring container monitoring in the Administration Console Configuring container monitoring in the command line

Page top