Description of setup.ini file installation settings

The setup.ini file is used when installing the application from the command line or when using the Group Policy Editor of Microsoft Windows. To apply settings from the setup.ini file, place this file into the folder containing the Kaspersky Endpoint Security distribution package.

The setup.ini file consists of the following sections:

[Setup] – general settings of application installation.
[Components] – selection of application components to be installed. If none of the components are specified, all components that are available for the operating system are installed. File Threat Protection is a mandatory component and is installed on the computer regardless of which settings are indicated in this section.
[Tasks] – selection of tasks to be included in the list of Kaspersky Endpoint Security tasks. If no task is specified, all tasks are included in the task list of Kaspersky Endpoint Security.

The alternatives to the value 1 are the values yes, on, enable, and enabled.

The alternatives to the value 0 are the values no, off, disable, and disabled.

Settings of the setup.ini file

Section	Parameter	Description
`[Setup]`	`InstallDir`	Path to the application installation folder.
	`ActivationCode`	Kaspersky Endpoint Security activation code.
	`Eula`	Acceptance or rejection of the terms of the End User License Agreement. Available values: `1` – acceptance of the terms of the End User License Agreement. `0` – rejection of the terms of the End User License Agreement. The text of the License Agreement is included in the distribution kit of Kaspersky Endpoint Security. Accepting the terms of the End User License Agreement is necessary for installing the application or upgrading the application version.
	`PrivacyPolicy`	Acceptance or rejection of the Privacy Policy. Available values: `1` – acceptance of the Privacy Policy. `0` – rejection of the Privacy Policy. The text of the Privacy Policy is included in the Kaspersky Endpoint Security distribution kit. To install the application or upgrade the application version, you must accept the Privacy Policy.
	`KSN`	Agreement or refusal to participate in Kaspersky Security Network (KSN). If no value is set for this parameter, Kaspersky Endpoint Security will prompt to confirm your consent or refusal to participate in KSN when Kaspersky Endpoint Security is first started. Available values: `1` – agreement to participate in KSN. `0` – refusal to participate in KSN (default value). The Kaspersky Endpoint Security distribution package is optimized for use with Kaspersky Security Network. If you opted not to participate in Kaspersky Security Network, you should update Kaspersky Endpoint Security immediately after the installation is complete.
	`Login`	Set the user name for accessing the features and settings of Kaspersky Endpoint Security (the Password protection component). The user name is set together with the `Password` and `PasswordArea` parameters. The user name KLAdmin is used by default.
	`Password`	Specify a password for accessing Kaspersky Endpoint Security features and settings (the password is specified together with the `Login` and `PasswordArea` parameters). If you specified a password but did not specify a user name with the `Login` parameter, the KLAdmin user name is used by default.
	`PasswordArea`	Specify the scope of the password for accessing Kaspersky Endpoint Security. When a user attempts to perform an action that is included in this scope, Kaspersky Endpoint Security prompts for the user’s account credentials (`Login` and `Password` parameters). Use the "`;`" character to specify multiple values. Available values: `SET` – modifying application settings. `EXIT` – exiting the application. `DISPROTECT` – disabling protection components and stopping scan tasks. `DISPOLICY` – disabling Kaspersky Security Center policy. `UNINST` – removing the application from the computer. `DISCTRL` – disabling control components. `REMOVELIC` – removing the key. `REPORTS` – viewing reports.
	`SelfProtection`	Enabling or disabling the application installation protection mechanism. Available values: `1` – the application installation protection mechanism is enabled. `0` – the application installation protection mechanism is disabled. You can disable installation protection. Installation protection includes protection against replacement of the distribution package with malicious programs, blocking access to the installation folder of Kaspersky Endpoint Security, and blocking access to the system registry section containing application keys. However, if the application cannot be installed (for example, when performing remote installation with the help of Windows Remote Desktop), you are advised to disable protection of the installation process.
	`Reboot=1`	Automatic restart of the computer, if required after installation or upgrade of the application. If no value is set for this parameter, automatic computer restart is blocked. Restart is not required when installing Kaspersky Endpoint Security. Restart is required only if you have to remove incompatible applications prior to installation. Restart may also be required when updating the application version.
	`AddEnvironment`	In the %PATH% system variable, add the path to executable files located in the Kaspersky Endpoint Security setup folder. Available values: `1` – the %PATH% system variable is supplemented with the path to executable files that are located in the Kaspersky Endpoint Security setup folder. `0` – the %PATH% system variable is not supplemented with the path to executable files that are located in the Kaspersky Endpoint Security setup folder.
	`AMPPL`	Enables or disables protection of the Kaspersky Endpoint Security service using AM-PPL technology (Antimalware Protected Process Light). Available values: `1` – protection of the Kaspersky Endpoint Security service using AM-PPL technology is enabled. `0` – protection of the Kaspersky Endpoint Security service using AM-PPL technology is disabled.
	`SetupReg`	Enable writing of registry keys from the setup.reg file to the registry. `SetupReg: setup.reg` parameter value.
	`EnableTraces`	Enabling or disabling application installation traces. Kaspersky Endpoint Security saves trace files in the folder %ProgramData%/Kaspersky Lab. Available values: `1` – application installation traces are enabled. `0` – application installation traces are disabled (default value).
	`TracesLevel`	Level of detail of traces. Available values: `100` (critical). Only messages about fatal errors. `200` (high). Messages about all errors, including fatal errors. `300` (diagnostic). Messages about all errors, and a selection of messages containing warnings. `400` (important). All warnings and messages about ordinary and critical errors, and a selection of messages that contain additional information. `500` (normal). All warnings and messages about normal and fatal errors, and also messages containing detailed information about normal operation (default value). `600` (low). All possible messages.
`[Components]`	`ALL`	Installation of all components. If the parameter value `1` is specified, all components will be installed regardless of the installation settings of individual components.
	`MailThreatProtection`	Mail Threat Protection.
	`WebThreatProtection`	Web Threat Protection.

	`HostIntrusionPrevention`	Host Intrusion Prevention.
	`BehaviorDetection`	Behavior Detection.
	`ExploitPrevention`	Exploit Prevention.
	`RemediationEngine`	Remediation Engine.
	`Firewall`	Firewall
	`NetworkThreatProtection`	Network Threat Protection.
	`WebControl`	Web Control.
	`DeviceControl`	Device Control.
	`ApplicationControl`	Application Control.
	`FileEncryption`	File Level Encryption libraries.
	`DiskEncryption`	Full Disk Encryption libraries.
	`BadUSBAttackPrevention`	BadUSB Attack Prevention.
	`AntiAPT`	Endpoint Sensor.
	`AdminKitConnector`	Network Agent Connector for remote administration of the application through Kaspersky Security Center. Available values: `1` – Network Agent Connector is installed. `0` – Network Agent Connector is not installed.
`[Tasks]`	`ScanMyComputer`	Full Scan task. Available values: `1` – the task is included in the list of Kaspersky Endpoint Security tasks. `0` – the task is not included in the list of Kaspersky Endpoint Security tasks.
	`ScanCritical`	Critical Areas Scan task. Available values: `1` – the task is included in the list of Kaspersky Endpoint Security tasks. `0` – the task is not included in the list of Kaspersky Endpoint Security tasks.
	`Updater`	Update task. Available values: `1` – the task is included in the list of Kaspersky Endpoint Security tasks. `0` – the task is not included in the list of Kaspersky Endpoint Security tasks.

Page top