You can add a connector based on one of the connector types that are available in the application.
Prior to adding a connector, you are advised to create a separate user account that the recipient system will use to connect to the application.
To add a connector:
Connect to the Kaspersky Industrial CyberSecurity for Networks Server through the web interface using the Administrator account.
Select Settings → Connectors.
On the Connectors tab, open the details area by clicking the Add connector link.
Select the relevant connector type and enter the connector name.
If you want to add an unmanageable connector (or a connector configured to ignore the functions of a manageable connector), enter the password for accessing the connector certificate.
Using the defined password, the certificate will be encrypted in the communication data package of the connector.
Specify the address of the application Server.
The connector will connect to the Server at the specified address.
Specify the connector deployment node:
If you want to add a manageable connector, you can use one of the nodes that have application components installed as the connector deployment node.
If you want to add an unmanageable connector, you need to enter the IP address of the computer where the connector application modules will be running.
Select the user account that the recipient system will use to connect to the application through the connector. You must indicate the name of one of the application users.
In the Details block, specify the advanced settings depending on the type of connector. The Details block is not shown in the details area if the connector type does not allow configuration of advanced settings.
For connector types that are built into the application by default, you can configure the following settings:
SIEM / Syslog:
Server address.
Server port.
Data transfer protocol.
Email:
Address indicated as the sender of email messages.
Recipient addresses of email messages.
Subjects of email messages for events, application messages, and audit entries.
Templates of text descriptions for events, application messages, audit entries, network interactions, and for entire messages containing notifications. Templates are formed by using variables.
Subject and text of an email message notifying when the maximum number of sent notifications is reached.
Maximum number of email messages sent per day.
Maximum number of notifications in each message. Defines the maximum number of registered notifications of one type (events, application messages, or audit entries) that can be put into one email message. If the number of registered notifications exceeds the maximum number, an additional email message is generated (within the daily limit).
Active poll:
Active polling methods that will be available to the application user when using the connector.
Allowed and denied IP addresses of devices that will determine whether active polls are allowed or denied. The address 0.0.0.0 corresponds to all possible IP addresses.
Names of address spaces whose corresponding devices will be available for active polling. You must select the address spaces for IP addresses in the L3 address space field and select the address spaces for MAC addresses in the L2 address space field.
If the connector type provides the capability to forward application messages and audit entries, use the corresponding check boxes to enable or disable forwarding of this data.
Enter a connector description if necessary.
Click Save.
The new connector will appear in the connectors table.
If an unmanageable connector was added, the Server generates a communication data package for the new connector. Then the browser saves the downloaded file. Depending on your browser settings, your screen may show a window in which you can change the path and name of the saved file. You will need to upload the contents of the new communication data package to the app that will use the connector.