Enabling Password protection

Password protection lets you restrict users' access to Kaspersky Endpoint Security according to the permissions granted to them (for example, permission to exit the application).

To enable password protection:

  1. In the lower part of the main application window, click the icon_settings button.

    In the application settings window, select the Interface section.

  2. Use the Password protection toggle to enable or disable the component.
  3. Specify the password for the KLAdmin account and confirm it.

    The KLAdmin account has the right to perform any action that is password-protected.

    If a computer is running under a policy, the Administrator can reset the password for the KLAdmin account in the policy properties. If the computer is not connected to Kaspersky Security Center and you have forgotten the password for the KLAdmin account, it is not possible to recover the password.

  4. Set permissions for all users within the corporate network:
    1. In the Permissions table, click the Edit button to open the list of permissions for the Everyone group.

      The Everyone group is a built-in Windows group that includes all users within the corporate network.

    2. Select the check boxes next to the actions that users will be allowed to perform without entering the password.

      If a check box is cleared, the users are blocked from performing the action. For example, if the check box next to the Exit the application permission is cleared, you can exit the application only if you are logged in as KLAdmin, or as an individual user who has the required permission, or if you enter a temporary password.

      Password protection permissions have some important aspects to consider. Make sure that all conditions for accessing Kaspersky Endpoint Security are fulfilled.

    3. Click the ОК button.
  5. Save your changes.

When password protection is enabled, the application will restrict users' access to Kaspersky Endpoint Security according to the permissions granted to the Everyone group. You can perform the actions that are blocked for the Everyone group only if you use the KLAdmin account, another account that is granted the required permissions, or if you enter a temporary password.

You can disable Password protection only if you are logged in as KLAdmin. It is not possible to disable password protection if you are using any other user account or a temporary password.

During the password check, you can select the Save password for current session check box. In this case, Kaspersky Endpoint Security will not prompt for a password when a user attempts to perform another password-protected action for the duration of the session.

Page top