Kaspersky Sandbox
- Kaspersky Sandbox Online Help
- About the Kaspersky Sandbox solution
- About the Kaspersky Sandbox application
- What's New
- Distribution kit
- Hardware and software requirements
- Limitations of the current version
- Application licensing
- About the license
- About the End User License Agreement
- About the license certificate
- About the subscription
- About the key
- About the key file
- About the activation code
- Viewing license information in the web interface
- Viewing the text of the End User License Agreement and the Privacy Policy in the web interface
- Activating the application using the web interface
- Activating the application using Kaspersky Security Center Web Console
- Application modes based on the license
- About data provision
- Installing and performing initial configuration of the solution
- Preparing the IT infrastructure for Kaspersky Sandbox installation
- Setting up Kaspersky Sandbox for virtual infrastructure
- Installing and configuring applications of the solution when using EPP applications with built-in Kaspersky Sandbox support
- Installing and configuring applications of the solution when using EPP applications without built-in Kaspersky Sandbox support
- Installing the Kaspersky Sandbox application
- Verifying the digital signature
- Step 1. Starting installation of the Kaspersky Sandbox application and selecting the language for viewing End User License Agreements
- Step 2. Viewing the Kaspersky Sandbox End User License Agreement and the Privacy Policy
- Step 3. Viewing the Microsoft End User License Agreement
- Step 4. Viewing the Adobe End User License Agreement
- Step 5. Basic setup of Kaspersky Sandbox
- Step 6. Completing the installation of Kaspersky Sandbox.
- Scaling Kaspersky Sandbox
- Getting started with Kaspersky Sandbox
- Managing the Kaspersky Sandbox application using the web interface
- Initial configuration of the application
- Monitoring of application operation
- Information about self diagnostics of the application in Kaspersky Sandbox web interface
- Information about database update state in Kaspersky Sandbox web interface
- Information about the application activation state and the license validity period in the Kaspersky Sandbox web interface
- Configuring the data display period on the widget in the Kaspersky Sandbox web interface
- Monitoring the processing of objects received from Kaspersky Endpoint Security in the Kaspersky Sandbox web interface
- Database update
- Configuring network interfaces
- Configuring integration with Kaspersky Security Center
- Creating a TLS certificate of Kaspersky Sandbox web interface
- Setting the date and time
- Installing and configuring images of operating systems and software required for the operation of Kaspersky Sandbox
- Managing the cluster
- Creating a new cluster
- Limitations that apply when adding servers to the cluster
- Viewing the server table of the cluster
- Monitoring the status of servers in the cluster
- Adding a server to the cluster
- Removing a server from a cluster
- Deleting the cluster
- Modifying the IP address of a server that is part of a cluster
- Downloading Kaspersky Sandbox system log to the hard drive
- Restarting Kaspersky Sandbox server
- Shutdown of Kaspersky Sandbox server
- Changing Kaspersky Sandbox administrator account password
- Managing Kaspersky Sandbox using Kaspersky Security Center Web Console
- Installing the Kaspersky Sandbox management web plug-in
- Configuring Kaspersky Sandbox device status display
- Kaspersky Sandbox event configuration
- Getting started with Kaspersky Sandbox in Kaspersky Security Center Web Console
- Viewing information about Kaspersky Sandbox and the database update status
- Going to the Kaspersky Sandbox web interface
- Viewing Kaspersky Sandbox license information
- Displaying information about the Kaspersky Sandbox management web plug-in
- Viewing the threat report
- Monitoring the processing of objects received from Kaspersky Endpoint Security
- Managing Kaspersky Endpoint Security for Windows
- Getting started with Kaspersky Endpoint Security
- Configuring the proxy server connection
- Configuring the integration of Kaspersky Endpoint Security with Kaspersky Sandbox
- Managing stand-alone IOC scanning tasks
- Configuring Threat Response actions of Kaspersky Endpoint Security to respond to threats detected by Kaspersky Sandbox
- Configuring Quarantine settings
- Configuring data synchronization with the Administration Server
- Monitoring the results of sending objects for scanning by Kaspersky Sandbox and running IOC scanning tasks
- Managing Kaspersky Endpoint Agent for Windows
- Getting started with Kaspersky Endpoint Agent
- Configuring Kaspersky Endpoint Agent security settings
- Configuring the proxy server connection
- Configuring the usage of Kaspersky Security Network
- Configuring the integration of Kaspersky Endpoint Agent with Kaspersky Sandbox
- Configuring Threat Response actions of Kaspersky Endpoint Agent to respond to threats detected by Kaspersky Sandbox
- Enabling and disabling Threat Response actions for threats detected by Kaspersky Sandbox
- Adding Threat Response actions to the action list of the current policy
- Authentication for Threat Response group tasks at the Administration Server
- Enabling detection of legitimate applications that can be used by cybercriminals
- Configuring the running of IOC scanning tasks
- Configuring Quarantine settings and restoration of objects from Quarantine
- Configuring data synchronization with the Administration Server
- Managing Kaspersky Endpoint Agent tasks
- Interaction with external systems using the API
- Multitenancy
- Contacting the Technical Support Service
- Glossary
- Basic concepts of Kaspersky Security Center relevant to managing the solution using KSC
- Information about third-party code
- Trademark notices
Policy profile
You may need to create several copies of a policy for different administration groups; you may also need to modify settings of these policies in a centralized way. These copies can differ by one or two settings. For example, all accountants in the organization are governed by the same policy, but senior accountants are allowed to use USB drives, and junior accountants are not allowed to. In this case, applying policies to devices solely through the administration group hierarchy might prove inconvenient.
To avoid creating several copies of the same policy, Kaspersky Security Center allows to create policy profiles. Policy profiles are necessary for devices within a single administration group to run under different policy settings.
A policy profile is a named subset of policy settings. This subset of settings is applied to devices with the policy and supplements the policy if a certain condition is fulfilled; this condition is called the profile activation condition. Profiles only contain settings that differ from the "basic" policy, which is active on the managed device. When the profile is activated, the settings of the "basic" policy governing the device are amended. Those settings take values that have been specified in the profile.
See also |