Open the Kaspersky Security Center Administration Console.
In the Managed devices folder in the Administration Console tree, open the folder with the name of the administration group to which the relevant client computers belong.
In the workspace, select the Policies tab.
Select the necessary policy and double-click to open the policy properties.
In the policy window, select Advanced Threat Protection → Host Intrusion Prevention.
Use the Host Intrusion Prevention check box to enable or disable the component.
In the lower part of the main application window, click the button.
In the application settings window, select Protection → Advanced Threat Protection → Host Intrusion Prevention.
Use the Host Intrusion Prevention toggle to enable or disable the component.
Save your changes.
If the Host Intrusion Prevention component is enabled, Kaspersky Endpoint Security will place an application in a trust group depending on the level of danger that this application may pose to the computer. Kaspersky Endpoint Security will then block the actions of the application depending on the trust group.