Kaspersky Endpoint Security distribution kit contains files for creating a container application ("KESL container") for embedding into external systems in order to scan container images from image repositories.
The KESL container functionality is not supported when using Kaspersky Endpoint Security in Light Agent mode for protecting virtual environments.
A KESL container lets you do the following:
A deployed, activated, and configured KESL container offers the following Kaspersky Endpoint Security functional components and tasks:
The following Kaspersky Endpoint Security additional functions are available in the KESL container:
You can communicate with the KESL container via a REST API. You can also configure the KESL container via policies in Kaspersky Security Center.
For correct operation of KESL containers in Kaspersky Security Center, it is recommended to move the devices that correspond to the KESL containers to a separate administration group with its own policy. In the policy properties, all Kaspersky Endpoint Security functions and settings are available for editing, but configuring settings that are not supported in a KESL container does not affect the operation of the KESL container.
KESL containers cannot be managed using the command line.
If the KESL container was activated during deployment, and it is connected to Kaspersky Security Center with automatic license key distribution to managed devices configured, the key will not apply to the devices that correspond to the KESL containers.