for Windows, macOS, and Linux
This section lets you manage the settings for the creation and retention of reports about events encountered by Kaspersky Endpoint Security, as well as configure the storage of objects in Backup and Quarantine.
Reports
Information about the operation of each Kaspersky Endpoint Security component, data encryption events, the performance of each scan task, the update task and integrity check task, and the overall operation of the application is recorded in reports.
Windows Reports are stored in the folder C:\ProgramData\Kaspersky Lab\KES.0.9\Report.
Backup
Backup stores backup copies of files that were deleted or modified during disinfection. A backup copy is a file copy created before the file was disinfected or deleted. Backup copies of files are stored in a special format and do not pose a threat.
Backup copies of files are stored in the folder:
Windows: C:\ProgramData\Kaspersky Lab\KES.0.9\QBLinux: /var/opt/kaspersky/kesl/common/objects-backup/Users in the Administrators group are granted full permission to access this folder. Limited access rights to this folder are granted to the user whose account was used to install Kaspersky Endpoint Security.
Quarantine
Quarantine is a special local storage on the computer. The user can quarantine files that the user considers dangerous for the computer. Quarantined files are stored in an encrypted state and do not threaten the security of the device.
Reports and Storage settings
|
Settings |
OS |
Description |
|---|---|---|
|
Delete reports after (days) |
|
If the check box is selected, the maximum report storage term is limited to the defined time interval. The default maximum storage term for reports is 30 days. After that period of time, Kaspersky Endpoint Security automatically deletes the oldest entries from the report file. |
|
Limit the size of report file to (MB) |
|
If the check box is selected, the maximum report file size is limited to the defined value. By default, the maximum file size is 1024 MB. To avoid exceeding the maximum report file size, Kaspersky Endpoint Security automatically deletes the oldest entries from the report file when the maximum report file size is reached. |
|
Keep only recent events |
|
If this check box is selected, every time the task is started, Kaspersky Endpoint Security deletes information about non-critical events that have occurred since the previous start of the task, but retains important notes in the report (for example, information about detected malicious objects). |
|
Log non-critical events |
|
If this check box is selected, Kaspersky Endpoint Security records non-critical events (for example, informational events) in the report. Non-critical events do not affect protection. |
|
Delete objects after (days) |
|
If the check box is selected, the maximum file storage term is limited to the defined time interval. The default maximum storage term for files is 30 days. After expiration of the maximum storage term, Kaspersky Endpoint Security deletes the oldest files from Backup. |
|
Limit the size of Backup to (MB) |
|
If the check box is selected, the maximum storage size is limited to the defined value. By default, the maximum size is 1024 MB. To avoid exceeding the maximum storage size, Kaspersky Endpoint Security automatically deletes the oldest files from storage when the maximum storage size is reached. |
|
Limit the size of Quarantine |
|
Maximum size of Quarantine (MB). If the check box is selected, the maximum Quarantine size is limited to the defined value. By default, the maximum size is 200 MB. When Quarantine reaches maximum size, Kaspersky Endpoint Security sends the Not enough space in Quarantine storage event to Kaspersky Security Center and creates an event in the operating system event log. Meanwhile the application stops quarantining new objects. You must empty the Quarantine manually. Notify when the Quarantine storage reaches (%). Threshold value of the Quarantine. For example, you can set the Quarantine threshold to 50%. When Quarantine reaches the threshold, Kaspersky Endpoint Security sends the corresponding event to Kaspersky Security Center and publishes the event in Windows Event Log. Meanwhile the application continues quarantining new objects. |