Installing Kaspersky Security Center 13.2 Web Console
This section describes how to install Kaspersky Security Center 13.2 Web Console Server (also referred to as Kaspersky Security Center 13.2 Web Console) separately. Before installation, you must install a database management system and the Kaspersky Security Center Administration Server. You can install Kaspersky Security Center 13.2 Web Console either on the same device where Kaspersky Security Center is installed, or on a different one.
To install Kaspersky Security Center 13.2 Web Console:
Under an account with administrative privileges, run the ksc-web-console-<version number>.<build number>.exe installation file.
This starts the Setup Wizard.
Select a language for the Setup Wizard.
In the welcome window, click Next.
In the License Agreement window, read and accept the terms of the End User License Agreement. The installation continues after you accept the EULA, otherwise, the Next button is unavailable.
In the Destination folder window, select a folder where Kaspersky Security Center 13.2 Web Console will be installed (by default, %ProgramFiles%\Kaspersky Lab\Kaspersky Security Center Web Console). If such a folder does not exist, it is created automatically during the installation.
You can change the destination folder by using the Browse button.
In the Kaspersky Security Center 13.2 Web Console connection settings window, specify the following information:
The address of Kaspersky Security Center 13.2 Web Console (by default, 127.0.0.1).
The port that Kaspersky Security Center 13.2 Web Console will use for incoming connections, that is, the port that gives access to Kaspersky Security Center 13.2 Web Console from a browser (by default, 8080).
We recommend that you leave the address and the port number as they are.
If you want, you can click Test to make sure that the selected port is available.
In the Account settings window, specify the account names and passwords.
We recommend that you use default accounts.
In the Client certificate window, select one of the following:
Generate new certificate. This option is recommended if you do not have a browser certificate.
Choose existing. You can select this option if you already have a browser certificate; in this case, specify the path to it.
If you choose to generate a new certificate, when you open Kaspersky Security Center 13.2 Web Console, the browser may inform you that the connection to Kaspersky Security Center 13.2 Web Console is not private and the Kaspersky Security Center 13.2 Web Console certificate is invalid. This warning appears because the Kaspersky Security Center 13.2 Web Console certificate is self-signed and automatically generated by Kaspersky Security Center. To remove this warning, you can do one of the following:
Create a certificate that is trusted in your infrastructure and that meets the requirements for custom certificates. Next, select the Choose existing option in the Client certificate window, and then specify the path to your custom certificate.
Keep the Generate new certificate option, and then add the Kaspersky Security Center 13.2 Web Console certificate to the list of trusted browser certificates after you install Kaspersky Security Center 13.2 Web Console. We recommend that you use this option only if you cannot create a custom certificate.
Certificates in the PFX format are not supported by Kaspersky Security Center 13.2 Web Console. To use such a certificate, you must first convert it to the supported PEM format by using an OpenSSL-based cross-platform utility, such as OpenSSL for Windows.
In the Trusted Administration Servers window, make sure that your Administration Server is on the list and click Next to proceed to the last window of the installer.
If you need to add a new Administration Server to the list, click the Add button. In the opened window, specify the properties of a new trusted Administration Server:
Administration Server name
The Administration Server name that will be displayed in the login window of Kaspersky Security Center 13.2 Web Console.
Administration Server address
The IP address of the device where you install Administration Server.
Administration Server port
The OpenAPI port that Kaspersky Security Center 13.2 Web Console uses to connect to Administration Server (default value is 13299).
Administration Server certificate
The certificate file is stored on the device where Administration Server is installed. The default path to the Administration Server certificate:
For Windows—%ALLUSERSPROFILE%\Application Data\KasperskyLab\adminkit\1093\cert
For Linux—/var/opt/kaspersky/klnagent_srv/1093/cert/
If you install Kaspersky Security Center 13.2 Web Console on the same device where Administration Server is installed, use one of the paths given above. Otherwise, copy the certificate file from device where Administration Server is installed to the device where you install Kaspersky Security Center 13.2 Web Console, and then specify the local path to the certificate.
In the Identity and Access Manager (IAM) window, specify whether you want to install Identity and Access Manager (also referred to as IAM). If you choose to install Identity and Access Manager, specify the following port numbers:
KAS administrator port. By default, port 4445 is used to receive configuration from the Kaspersky Security Center 13.2 Web Console for OAuth2.0 authorization endpoint port.
Facade administrator port. By default, port 2444 is used for the configuration of Identity and Access Manager.
Facade interaction port. By default, port 2445 is used for the connection of Kaspersky OSMP KAS Service to Kaspersky OSMP Facade Service.
If you want, you can change the default port numbers. You will not be able to change them in the future via Kaspersky Security Center 13.2 Web Console.
In the last window of the installer, click Install to begin the installation.
After the installation successfully completes, a shortcut appears on your desktop, and you can log in to Kaspersky Security Center 13.2 Web Console.
If Kaspersky Security Center 13.2 Web Console is not displayed in your browser at the URL you typed, try the following:
Check that you specified the correct host name or IP address of the device on which Kaspersky Security Center 13.2 Web Console is installed.
Check that the device that you want to operate has access to the device on which Kaspersky Security Center 13.2 Web Console is installed.
Check that firewall settings on the device on which Kaspersky Security Center 13.2 Web Console is installed allow incoming connections through port 8080 and for application node.exe.
In Windows, open Services. Check that the Kaspersky Security Center 13.2 Web Console service is running.
Check that you can access Kaspersky Security Center by using Administration Console.
In Windows, open Event Viewer, and then select Applications and Services Logs → Kaspersky Event Log. Make sure that the log does not contain errors.