This section contains descriptions of the settings for installing and uninstalling Kaspersky Industrial CyberSecurity for Nodes, their default values, keys for changing the installation settings, and their possible values. These keys can be used in conjunction with standard keys for the Windows Installer service's msiexec
command when installing Kaspersky Industrial CyberSecurity for Nodes from the command line.
Installation settings and command line options in Windows Installer
The possible values for EULA=<value>
command line option are as follows:
0
– you reject the terms of the End User License Agreement (default value).1
– you accept the terms of the End User License Agreement.The possible values for PRIVACYPOLICY=<value>
command line option are as follows:
0
– you reject the terms of the Privacy Policy (default value).1
– you accept the terms of the Privacy Policy.The possible values for SKIPCVEWINDOWS10=<value>
command line option are as follows:
0
– cancel the installation of Kaspersky Industrial CyberSecurity for Nodes if the KB4528760 update is not installed (default value).1
– allow the installation of Kaspersky Industrial CyberSecurity for Nodes if the KB4528760 update is not installed.The KB4528760 update fixes the CVE-2020-0601 security vulnerability. For detailed information about the CVE-2020-0601 security vulnerability please visit the Microsoft website.
The possible values for PRESCAN=<value>
command line option are as follows:
0
– do not perform a preliminary scan of active processes and the boot sectors of local disks during the installation (default value).1
– perform a preliminary scan of active processes and the boot sectors of local disks during the installation.The default values for INSTALLDIR=<full path to the folder>
command line option are as follows:
The possible values for RUNRTP=<value>
command line option are as follows:
1
– start (default value).0
– do not start.The possible values for ADDMSEXCLUSION=<value>
command line option are as follows:
1
– exclude (default value).0
– do not exclude.The possible values for ADDKLEXCLUSION=<value>
command line option are as follows:
1
– exclude (default value).0
– do not exclude.The possible values for ALLOWREMOTECON=<value>
command line option are as follows:
1
– allow.0
– deny (default value).LICENSEKEYPATH
). By default, the Windows Installer attempts to find the file with .key extension in the \server folder of the distribution kit. If the \server folder contains several key files, the Windows Installer will select the key file that has the farthest expiration date. A key file can be saved beforehand in the \server folder or by specifying another path to the key file using the Add key setting. You can add a key after Kaspersky Industrial CyberSecurity for Nodes is installed using an administrative tool of your choice: for example, the Application Console. If you do not add a key during installation of the application, Kaspersky Industrial CyberSecurity for Nodes will not function.The default value for CONFIGPATH=<configuration file name>
is not specified.
If you install Kaspersky Industrial CyberSecurity for Nodes in the install mode using the SCANSTARTUP_BLOCKING key, the Scan at Operation System startup task has the following parameters assigned to the Scan scope setting:
The Scan at Operation System startup task is created automatically. By default, the Notify only mode is applied. In this case, after you deploy Kaspersky Industrial CyberSecurity for Nodes on the devices, you can enable the Scan at Operation System startup task if no issues with system services were discovered during scan. If the application detects critical system services as infected or probably infected objects, the Notify only mode gives you time to figure out the reason and solve the issue. If the application applies the Perform recommended action mode, which calls the Disinfect. Remove if disinfection fails action, disinfection or removal of the system files may result in critical issues with the operating system startup.
The possible values for ADDWFEXCLUSION=<value>
command line option are as follows:
1
– allow.0
– deny (default value).The possible values for SKIPINCOMPATIBLESW=<value>
command line option are as follows:
0
– The check for incompatible software is performed (default value).1
– The check for incompatible software is not performed.Uninstallation settings and command line options in Windows Installer
The possible values for RESTOREQTN=<value>
command line option are as follows:
0
– Remove quarantined content (default value).1
– Restore quarantined content to the folder specified by the RESTOREPATH parameter into the \Quarantine subfolder.The possible values for RESTOREBCK=<value>
command line option are as follows:
0
– Remove backup content (default value).1
– Restore backup contents to the folder specified by the RESTOREPATH parameter into the \Backup subfolder.The default value for UNLOCK_PASSWORD=<specified password>
is not specified.
The default value for RESTOREPATH=<full path to the folder>
command line option is %ALLUSERSPROFILE%\Application Data\Kaspersky Lab\Kaspersky Industrial CyberSecurity for Nodes\3.1\Restored