Task management in the command line

The following application tasks are provided for managing Kaspersky Industrial CyberSecurity for Linux Nodes using the command line:

• File Threat Protection. This task allows you to enable or disable File Threat Protection in real time and defines the settings for the File Threat Protection component. The task is started automatically at application startup if you selected the Only File Threat Protection in "Notify only" mode (PROTECTION_MODE=OAS_Notify) or Only File Threat Protection (PROTECTION_MODE=OAS_Block) operating mode is enabled.
• Malware Scan. This task allows you to scan file system objects for malware on demand and defines the settings for the scan. You can use this task to perform a full or custom scan of the device.
• Critical Areas Scan. This task allows you to run a critical areas scan of the operating system on demand and defines the settings for the scan.
• Custom file scan. This task is designed for configuring and storing settings that are used when scanning the specified files and directories using the kics-control --scan-file command. As a result of the command execution, the application creates and starts a temporary file scan task.
• Container Scan. This task allows you to scan containers and images on demand and defines the settings for the scan.
• Custom Container Scan. This task is designed for configuring and storing settings that are used when scanning the specified containers and images using the kics-control [-T] --scan-container command. As a result of the command execution, the application creates and starts a temporary Container Scan task.
• Removable Drives Scan. This task allows you to monitor the connection of removable media to the device in real time and defines the settings of the Removable Drives Scan and the scan of its boot sectors for malware.
• Web Threat Protection. This task allows you to enable or disable Web Threat Protection and defines the settings for the Web Threat Protection component.
• Network Threat Protection. This task allows you to enable or disable Network Threat Protection and defines the settings for the Network Threat Protection component.
• Anti-Cryptor. This task allows you to enable or disable the protection of files from remote malicious encryption and defines the settings for the Anti-Cryptor component.
• Firewall Management. This task allows you to enable or disable firewall management and defines the network connection control settings on the device.
• Application Control. This task allows you to enable or disable Application Control and defines the settings of the Application Control component.
• Inventory. The task allows you to obtain information about all the application executable files stored on the device.
• Device Control. This task allows you to enable or disable Device Control and defines the settings for the Device Control component.
• Web Control. This task allows you to enable or disable Web Control and defines the settings of the Web Control component.
• Behavior Detection. This task allows you to monitor malicious activity of applications in the operating system.
• System Integrity Monitoring. This task allows you to perform real-time monitoring of the actions performed with objects from the monitoring scope specified in the System Integrity Monitoring component settings.
• System Integrity Check. This task allows you to check for changes in files and directories that you have included in the monitoring scope, by comparing the current state of the monitored object with a previously recorded state.
• Backup management. This task provides the capability to save backup copies of files to the Backup located on the device. The task starts automatically when the application starts, and it resides in the device operating memory. The task cannot be started, stopped, or deleted.
• Licensing. This task provides the capability to activate an application installed on the device. The task starts automatically when the application starts, and it resides in the device operating memory. The task has no settings; license keys are managed using special management commands. The task cannot be started, stopped, or deleted.
• Update. Using this task, you can perform scheduled and on-demand updates of application databases and modules and configure update settings.
• Rollback. Using this task, you can roll back the last update of application databases and modules.
• Kaspersky Industrial CyberSecurity for Networks Integration. This task lets you enable or disable integration with Kaspersky Industrial CyberSecurity for Networks and specifies the integration settings.

Each application task has a name used on the command line, an ID, and a type (see the table below).

IDs are unique for all tasks, including deleted tasks. The application does not reuse the identifiers of the deleted tasks. The identifier of a new task is the next successive number to the identifier of the latest created task.

Task names are not case-sensitive.

During installation of the application, predefined tasks are created. These tasks cannot be deleted. Each predefined task has a name and ID.

Tasks that you create while working with the application are called user tasks. When you create the task, you specify the name for it. IDs for user tasks are defined and assigned by the application when the task is created. IDs for user tasks are starting from 100.

During operation, the application creates temporary scan tasks. Temporary task names and IDs are assigned by the application. Temporary tasks are automatically deleted when completed.

Application tasks

Task	Task name in command line	Task ID	Task type
File Threat Protection	File_Threat_Protection	1	OAS
Malware Scan	Scan_My_Computer	2	ODS
Malware Scan (user task)	user-defined	starting from 100	ODS
Custom file scan	Scan_File	3	ODS
Critical Areas Scan	Critical_Areas_Scan	4	ODS
Update	Update	6	Update
Update (user task)	user-defined	starting from 100	Update
Rollback	Rollback	7	Rollback
Rollback (user task)	user-defined	starting from 100	Rollback
Licensing	License	9	License
Backup management	Backup	10	Backup
System Integrity Monitoring	System_Integrity_Monitoring	11	OAFIM
System Integrity Monitoring (user task)	user-defined	starting from 100	ODFIM
Firewall Management	Firewall_Management	12	Firewall
Anti-Cryptor	Anti_Cryptor	13	AntiCryptor
Web Threat Protection	Web_Threat_Protection	14	WTP
Device Control	Device_Control	15	DeviceControl
Removable Drives Scan	Removable_Drives_Scan	16	RDS
Network Threat Protection	Network_Threat_Protection	17	NTP
Container Scan	Container_Scan	18	ContainerScan
Container Scan (user task)	user-defined	starting from 100	ContainerScan
Custom Container Scan	Custom_Container_Scan	19	ContainerScan
Behavior Detection	Behavior_Detection	20	BehaviorDetection
Application Control	Application_Control	21	AppControl
Inventory	Inventory_Scan	22	InventoryScan
Inventory (user task)	user-defined	starting from 100	InventoryScan
Kaspersky Industrial CyberSecurity for Networks Integration	KICS4Networks_Integration	23	KICS4NetworksIntegration
Web Control	Web_Control	26	WebControl

You can perform the following actions with tasks:

• Start and stop all predefined and user tasks except Backup and License tasks.
• Suspend and resume ODS, ODFIM, and InventoryScan tasks.
• Create or delete user tasks of the ODS, Update, Rollback, ODFIM, ContainerScan, and InventoryScan types.
• Change the settings for all user tasks and all predefined tasks, except for Rollback and License tasks.
• Configure the task start schedule.

In this section Viewing a list of tasks in the command line Viewing the status of a task in the command line Creating a task in the command line Starting, stopping, pausing, and resuming tasks in the command line Deleting a task in the command line

Page top