Kaspersky Sandbox
- Kaspersky Sandbox Online Help
- About the Kaspersky Sandbox solution
- About the Kaspersky Sandbox application
- What's New
- Distribution kit
- Hardware and software requirements
- Limitations of the current version
- Application licensing
- About the license
- About the End User License Agreement
- About the license certificate
- About the subscription
- About the key
- About the key file
- About the activation code
- Viewing license information in the web interface
- Viewing the text of the End User License Agreement and the Privacy Policy in the web interface
- Activating the application using the web interface
- Activating the application using Kaspersky Security Center Web Console
- Application modes based on the license
- About data provision
- Installing and performing initial configuration of the solution
- Preparing the IT infrastructure for Kaspersky Sandbox installation
- Setting up Kaspersky Sandbox for virtual infrastructure
- Installing and configuring applications of the solution when using EPP applications with built-in Kaspersky Sandbox support
- Installing and configuring applications of the solution when using EPP applications without built-in Kaspersky Sandbox support
- Installing the Kaspersky Sandbox application
- Verifying the digital signature
- Step 1. Starting installation of the Kaspersky Sandbox application and selecting the language for viewing End User License Agreements
- Step 2. Viewing the Kaspersky Sandbox End User License Agreement and the Privacy Policy
- Step 3. Viewing the Microsoft End User License Agreement
- Step 4. Viewing the Adobe End User License Agreement
- Step 5. Basic setup of Kaspersky Sandbox
- Step 6. Completing the installation of Kaspersky Sandbox.
- Scaling Kaspersky Sandbox
- Getting started with Kaspersky Sandbox
- Managing the Kaspersky Sandbox application using the web interface
- Initial configuration of the application
- Monitoring of application operation
- Information about self diagnostics of the application in Kaspersky Sandbox web interface
- Information about database update state in Kaspersky Sandbox web interface
- Information about the application activation state and the license validity period in the Kaspersky Sandbox web interface
- Configuring the data display period on the widget in the Kaspersky Sandbox web interface
- Monitoring the processing of objects received from Kaspersky Endpoint Security in the Kaspersky Sandbox web interface
- Database update
- Configuring network interfaces
- Configuring integration with Kaspersky Security Center
- Creating a TLS certificate of Kaspersky Sandbox web interface
- Setting the date and time
- Installing and configuring images of operating systems and software required for the operation of Kaspersky Sandbox
- Managing the cluster
- Creating a new cluster
- Limitations that apply when adding servers to the cluster
- Viewing the server table of the cluster
- Monitoring the status of servers in the cluster
- Adding a server to the cluster
- Removing a server from a cluster
- Deleting the cluster
- Modifying the IP address of a server that is part of a cluster
- Downloading Kaspersky Sandbox system log to the hard drive
- Restarting Kaspersky Sandbox server
- Shutdown of Kaspersky Sandbox server
- Changing Kaspersky Sandbox administrator account password
- Managing Kaspersky Sandbox using Kaspersky Security Center Web Console
- Installing the Kaspersky Sandbox management web plug-in
- Configuring Kaspersky Sandbox device status display
- Kaspersky Sandbox event configuration
- Getting started with Kaspersky Sandbox in Kaspersky Security Center Web Console
- Viewing information about Kaspersky Sandbox and the database update status
- Going to the Kaspersky Sandbox web interface
- Viewing Kaspersky Sandbox license information
- Displaying information about the Kaspersky Sandbox management web plug-in
- Viewing the threat report
- Monitoring the processing of objects received from Kaspersky Endpoint Security
- Managing Kaspersky Endpoint Security for Windows
- Getting started with Kaspersky Endpoint Security
- Configuring the proxy server connection
- Configuring the integration of Kaspersky Endpoint Security with Kaspersky Sandbox
- Managing stand-alone IOC scanning tasks
- Configuring Threat Response actions of Kaspersky Endpoint Security to respond to threats detected by Kaspersky Sandbox
- Configuring Quarantine settings
- Configuring data synchronization with the Administration Server
- Monitoring the results of sending objects for scanning by Kaspersky Sandbox and running IOC scanning tasks
- Managing Kaspersky Endpoint Agent for Windows
- Getting started with Kaspersky Endpoint Agent
- Configuring Kaspersky Endpoint Agent security settings
- Configuring the proxy server connection
- Configuring the usage of Kaspersky Security Network
- Configuring the integration of Kaspersky Endpoint Agent with Kaspersky Sandbox
- Configuring Threat Response actions of Kaspersky Endpoint Agent to respond to threats detected by Kaspersky Sandbox
- Enabling and disabling Threat Response actions for threats detected by Kaspersky Sandbox
- Adding Threat Response actions to the action list of the current policy
- Authentication for Threat Response group tasks at the Administration Server
- Enabling detection of legitimate applications that can be used by cybercriminals
- Configuring the running of IOC scanning tasks
- Configuring Quarantine settings and restoration of objects from Quarantine
- Configuring data synchronization with the Administration Server
- Managing Kaspersky Endpoint Agent tasks
- Interaction with external systems using the API
- Multitenancy
- Contacting the Technical Support Service
- Glossary
- Basic concepts of Kaspersky Security Center relevant to managing the solution using KSC
- Information about third-party code
- Trademark notices
Managing Kaspersky Endpoint Agent for Windows > Configuring Kaspersky Endpoint Agent security settings > Enabling and disabling Self-Defense
Enabling and disabling Self-Defense
Enabling and disabling Self-Defense
The Self-Defense mechanism of Kaspersky Endpoint Agent provides protection from malware that tries to lock the application or delete it. The Self-Defense mechanism prevents alteration or deletion of application files on the hard drive, memory processes, and entries in the system registry.
To enable or disable Self-Defense:
- Open the Kaspersky Security Center Administration Console.
- In the console tree, select the Policies folder.
- Select Kaspersky Endpoint Agent policy and open its properties window in one of the following ways:
- Double-click the policy name.
- Select Properties in the policy context menu.
- Select the Configure policy settings item in the right part of the window.
- In the Application settings section select the Security settings subsection.
- In the Self-defense group of settings, enable or disable the Enable self-defense for application modules in memory setting.
The setting is enabled by default.
- In the upper right corner of the settings group, change the switch from Unaffected by policy to Under policy.
- Click OK.
The Self-Defense mechanism is enabled or disabled.
See also |
Article ID: 189434, Last review: Aug 12, 2022