Select the length of the encryption key: 1024 bit or 2048 bit.
A 1024-bit encryption key places a smaller load on the CPU, but it is considered obsolete because it cannot provide reliable encryption due to its technical specifications. Also, the existing hardware probably will turn out to be incompatible with SSL certificates featuring 1024-bit keys.
A 2048-bit encryption key meets all state-of-the-art encryption standards. However, use of a 2048-bit encryption key may add to the load on a CPU.
By default, 2048 bit (best security) is selected.
If Administration Server is installed on a device running Microsoft Windows XP Service Pack 2, the built-in system Firewall blocks TCP ports 13000 and 14000. Therefore, to allow access to Administration Server on the device after installation, these ports must be opened manually.
You can also change the parameters for connecting to Administration Server later as follows:
You can change port and SSL port numbers in the Connection ports section of the Administration Server properties. For more information about Administration Server connection ports, see Ports used by Kaspersky Security Center.
You can change the encryption key length when replacing the Administration Server certificate with the klsetsrvcert utility by using the -o RsaKeyLen:<key length> parameter.