Configure the Registry Access Monitor task settings

To configure general Registry Access Monitor task settings:

1. Expand the Managed devices node in the Kaspersky Security Center Administration Console tree.
2. Select the administration group for which you want to configure application settings.
3. Perform one of the following actions in the details pane of the selected administration group:
   • To configure application settings for a group of protected devices, select the Policies tab and open the Properties: <Policy name> window.
   • To configure the application for a single protected device, select the Devices tab and open the Application settings window.

     If an active Kaspersky Security Center policy is applied to a device and blocks changes to application settings, then these settings cannot be edited in the Application settings window.

4. In the System inspection section in the Registry Access Monitor subsection, click the Settings button.

   The Registry Access Monitor window appears.

5. On the Registry Access Monitor Settings tab, configure the following settings:
   • In the Task mode group, select the required option from the list:
     • Block operations according to the rules

       If you select the Block operations according to the rules mode, Kaspersky Industrial CyberSecurity for Nodes blocks the Actions defined for the monitoring scope. Also, if the Apply Trusted Zone check box is selected, Kaspersky Industrial CyberSecurity for Nodes does not block the processes defined under Trusted Zone.

       By default, the Statistics only mode is applied.

     • Statistics only

       If the Statistics only mode is selected for the monitoring scope, Kaspersky Industrial CyberSecurity for Nodes compiles the statistics for registry key actions according the configured rules. Also, if the Apply Trusted Zone check box is selected, Kaspersky Industrial CyberSecurity for Nodes does not compile the statistics for processes defined under Trusted Zone.

       By default, the Statistics only mode is applied.

   • Select or clear the Apply Trusted Zone check box as applicable.

     If the Apply Trusted Zone check box is selected, the Trusted processes configured in the Trusted Zone are applied to the monitoring scope in addition to the configured rule.

     If the Apply Trusted Zone check box is cleared, the Trusted processes configured in the Trusted Zone are not applied to the monitoring scope.

     By default, the check box is cleared.

6. Add the monitoring scopes to be monitored by the task.
7. On the Task management tab, configure the schedule settings for a task.
8. Click OK to save the changes.

Kaspersky Industrial CyberSecurity for Nodes immediately applies the new settings to the running task. Information about the date and time of settings modification are saved in the system audit log.

Page top