Viewing information about the operation of an application in the command line

To view information about application, execute the following command:

kics-control --app-info [--json]

where --json: output data in JSON format. If the --json option is not specified, the settings are output in the INI format.

As a result of the command execution, the following information will be displayed in the console:

• Name. Application names.
• Version. Current application version.
• Policy. Information about whether a Kaspersky Security Center policy is applied on the device.
• Extended information about the policy applied on the device:
  • Policy name.
  • The date and time when the policy was last applied or updated on the device.
  • Kaspersky Security Center administration group to which the device belongs.
  • List of policy profiles applied on the device (if any).

  Extended policy information is displayed if the Application is allowed to retrieve policy's extended data on device setting of the Network Agent that is installed on the device allows retrieving of extended policy data from Kaspersky Industrial CyberSecurity for Linux Nodes. This setting is disabled by default. For details about Network Agent settings, please refer to the Kaspersky Security Center Help.

• Information about the main license under which the application is being used:
  • Application license information Application license information or application license key status.
  • Kaspersky Industrial CyberSecurity for Linux Nodes license expiration date. Date and time when the application license expires, in UTC.
• License information about the license that activates additional functionality of the application. These fields are displayed if the additional functionality key has been added to the protected device:
  • ICS EDR license information. Information about the license under which the Kaspersky Industrial CyberSecurity Endpoint Detection and Response functionality is used, or the status of the ICS EDR license key.
  • ICS EDR license expiration date. Date and time when the license for using Kaspersky Industrial CyberSecurity Endpoint Detection and Response functionality expires, UTC.
• MDR BLOB file status. Status of the BLOB configuration file for integration with Kaspersky Managed Detection and Response.
• Expiration date of license from MDR BLOB file. Date and time when the Kaspersky Managed Detection and Response license expires, in UTC.
• Backup state. Information about the status of Backup.
• Backup space usage. Backup size.
• Last run date of the Scan_My_Computer task. Time of the last Malware Scan task.
• Last release date of databases. Date and time the application databases were last released.
• Application databases. Information about whether the application databases were downloaded.
• Using Kaspersky Security Network. Information about using Kaspersky Security Network: Extended KSN mode, Basic KSN mode or Disabled.
• Kaspersky Security Network infrastructure. Information about the infrastructure solution used to work with Kaspersky reputation databases: Kaspersky Security Network or Kaspersky Private Security Network.
• Kaspersky Managed Detection and Response Integration. Status of integration with Kaspersky Managed Detection and Response: Enabled, Disabled.
• Kaspersky Industrial CyberSecurity Endpoint Detection and Response Integration. Kaspersky Industrial CyberSecurity Endpoint Detection and Response integration status
• File Threat Protection. Real-time File Threat Protection status.
• Container monitoring. Real-time Container Scan status.
• System Integrity Monitoring. System Integrity Monitoring component status.
• Firewall Management. Firewall Management component status.
• Anti-Cryptor. Anti-Cryptor component status.
• Web Threat Protection. Web Threat Protection component status.
• Device Control. Device Control component status.
• Removable Drives Scan. Removable Drives Scan component status.
• Network Threat Protection. Network Threat Protection component status.
• Behavior Detection. Behavior Detection component status.
• Application Control. Application Control component status.
• Web Control. Web Control component status.
• Kaspersky Industrial CyberSecurity for Networks Integration. Kaspersky Industrial CyberSecurity for Networks integration status.
• Post-update actions. Application update actions and the actions to be performed by the user.
• Unstable application operation. Information about application failure and dump file creation. This field is displayed if a failure occurred the last time the application was launched.
• File disinfection and deletion disabled. Information about the fact that an application operating mode is enabled in which files on disk are not disinfected and deleted, regardless of the settings configured in the policy properties. This field is not displayed if the file disinfection and deletion functionality is enabled.

Page top