Kaspersky Sandbox
- Kaspersky Sandbox
- Application licensing
- About the license
- About the End User License Agreement
- About the license certificate
- About the key
- About the key file
- Viewing license information in the web interface
- Viewing the text of the End User License Agreement in the web interface
- Viewing the text of the Privacy Policy in the web interface
- Adding a Kaspersky Sandbox license key using the web interface
- Replacing a Kaspersky Sandbox license key using the web interface
- Removing a Kaspersky Sandbox license key using the web interface
- Adding a Kaspersky Sandbox license key using the KSC
- Replacing a Kaspersky Sandbox license key using the KSC
- Program modes based on the license
- About data provision
- Scaling Kaspersky Sandbox
- Installing and performing initial configuration of the solution
- Installing the Kaspersky Sandbox application
- Step 1. Starting installation of the Kaspersky Sandbox application and selecting the language for viewing End User License Agreements
- Step 2. Viewing the Kaspersky Sandbox End User License Agreement and the Privacy Policy
- Step 3. Viewing the Adobe End User License Agreement
- Step 4. Viewing the Microsoft End User License Agreement
- Step 5. Confirming the Kaspersky Sandbox configuration
- Step 6. Selecting a drive for installing Kaspersky Sandbox
- Step 7. Assigning the host name
- Step 8. Selecting the controlling network interface in the list
- Step 9. Assigning the address, subnet mask, and gateway of the management interface
- Step 10. Creating an administrator account for Kaspersky Sandbox
- Step 11. Completing the installation of Kaspersky Sandbox.
- Getting started with Kaspersky Sandbox
- Managing the Kaspersky Sandbox application using the web interface
- Initial configuration of the application
- Monitoring of application operation
- Information about self diagnostics of the application in Kaspersky Sandbox web interface
- Information about database update state in Kaspersky Sandbox web interface
- Information about the application activation state and the license validity period in the Kaspersky Sandbox web interface
- Configuring the data display period on the diagram in the Kaspersky Sandbox web interface
- Monitoring the processing of objects received from Kaspersky Endpoint Agent in the Kaspersky Sandbox web interface
- Monitoring Kaspersky Sandbox health in KSC
- Updating databases
- Configuring network interfaces
- Configuring integration with Kaspersky Security Center
- Creating a TLS certificate of Kaspersky Sandbox web interface
- Configuring a trusted connection of Kaspersky Sandbox with Kaspersky Endpoint Agent
- Generating a TLS certificate for the connection with Kaspersky Endpoint Agent
- Uploading a TLS certificate for the connection with Kaspersky Endpoint Agent
- Saving the TLS certificate file for the connection with Kaspersky Endpoint Agent on a computer
- Replacing the TLS certificate for the connection with Kaspersky Endpoint Agent
- Setting the date and time
- Installing and configuring images of operating systems and software required for the operation of Kaspersky Sandbox
- Managing the cluster
- Downloading Kaspersky Sandbox system log to the hard drive
- Restarting Kaspersky Sandbox server
- Shutdown of Kaspersky Sandbox server
- Changing Kaspersky Sandbox administrator account password
- Managing the Kaspersky Sandbox application using Kaspersky Security Center
- Installing the Kaspersky Sandbox management plug-in
- Configuring Kaspersky Sandbox device status display in KSC
- Getting started with Kaspersky Sandbox in the KSC Administration Console
- Viewing information about Kaspersky Sandbox and the database update status
- Going to the Kaspersky Sandbox web interface
- Viewing Kaspersky Sandbox license information
- Configuring events of Kaspersky Sandbox
- Displaying information about the Kaspersky Sandbox management plug-in.
- Viewing the threat report
- Viewing object scanning statistics
- Adding a Kaspersky Sandbox license key using the KSC
- Replacing a Kaspersky Sandbox license key using the KSC
- Managing the Kaspersky Endpoint Agent application
- Installing Kaspersky Endpoint Agent
- Installing the Kaspersky Endpoint Agent management plug-in
- Creating a Kaspersky Endpoint Agent policy
- Enabling settings in the Kaspersky Endpoint Agent policy
- Configuring Kaspersky Endpoint Agent security settings
- Configuring proxy server connection settings
- Configuring the usage of Kaspersky Security Network
- Configuring the integration of Kaspersky Endpoint Agent with Kaspersky Sandbox
- Configuring Threat Response actions of Kaspersky Endpoint Agent to respond to threats detected by Kaspersky Sandbox
- Enabling and disabling Threat Response actions
- Adding Threat Response actions to the action list of the current policy
- Authentication for Threat Response group tasks at the Administration Server
- Protection of workstations from legitimate applications that can be exploited by adversaries
- Configuring the running of IOC scanning tasks
- Configuring Quarantine settings and restoration of objects from Quarantine
- Configuring data synchronization with the Administration Server
- Managing Kaspersky Endpoint Agent tasks
- Managing the Kaspersky Endpoint Agent application using the command line interface
- Configuring tracing
- Configuring dump creation
- Viewing information about Quarantine options and quarantined objects
- Actions with quarantined objects
- Managing Kaspersky Sandbox integration options
- Running Kaspersky Endpoint Agent database update
- Running, stopping, and viewing the current state of the application
- Password protecting the application
- Securing services of the application using the PPL technology
- Interaction with external systems using the API
- Contacting the Technical Support Service
- Glossary
- Basic concepts of Kaspersky Security Center relevant to managing the solution using KSC
- Information about third-party code
- Trademark notices
Kaspersky Sandbox
Kaspersky Sandbox
Kaspersky Sandbox solution detects and automatically blocks advanced threats on workstations and servers of an organization.
The solution is developed for corporate users.
The Kaspersky Sandbox solution consists of:
- The Kaspersky Sandbox application – the server part of the solution. Kaspersky Sandbox is installed on one or more servers in your corporate LAN. Servers can be combined into a cluster. On Kaspersky Sandbox servers, virtual images of Microsoft Windows operating systems are deployed for running the objects that need to be scanned. Kaspersky Sandbox analyzes the behavior of the objects to detect malicious activity and advanced threats in the corporate IT infrastructure.
- Workstation protection applications (Endpoint Protection Platform; hereinafter also referred to as "EPP"): Kaspersky Endpoint Security for Windows, Kaspersky Security for Windows Server, and Kaspersky Security for Virtualization Light Agent. The applications are installed on workstations on your corporate LAN and provide comprehensive protection of workstations from various threats, network and fraud attacks.
- Kaspersky Endpoint Agent for Windows (hereinafter also referred to as “KEA”) applications. Kaspersky Endpoint Agent is installed on workstations and servers of your corporate LAN and provides communication between EPP and Kaspersky Sandbox, as well as automatic execution of Threat Response actions configured in Kaspersky Security Center policies.
Article ID: 187409, Last review: Jan 19, 2022