Enabling untrusted network sessions blocking

To add network sessions showing any malicious or encrypting activity to the List of blocked network sessions and block access to network file resources for those sessions, at least one of the following tasks must run in the active mode:

• Real-Time File Protection
• Anti-Cryptor

Configure the Real-Time File Protection task:

1. In the Kaspersky Security Center Administration Console tree, expand the Managed devices node.
2. Select the Policies tab and open <Policy name> >Real-Time Computer Protection > Settings in the Real-Time File Protection section.

   The Real-time file protection window opens.

3. In the Integration with other components section, select the Block access to network shared resources for the hosts that show malicious activity check box if you want Kaspersky Industrial CyberSecurity for Nodes to block current session and make network shared resources unavailable for network sessions for which malicious activity was detected.
4. If the task has not been started, open the Task management tab:
   1. Select the Run by schedule check box.
   2. Select the At application launch frequency in the drop-down list.
5. In the Real-time file protection window, click OK.

The newly configured settings are saved.

Configure the Anti-Cryptor task:

1. In the Kaspersky Security Center Administration Console tree, expand the Managed devices node.
2. Select the Policies tab and open <Policy name> > Network activity control > Settings in the Anti-Cryptor section.

   The Anti-Cryptor window opens.

3. If the task has not been started, open the Task management tab:
   1. Select the Run by schedule check box.
   2. Select the At application launch frequency in the drop-down list.
4. In the Anti-Cryptor window, click OK.

The newly configured settings are saved.

Page top