To view the settings of a managed device:
The list of managed devices is displayed.
The properties window of the selected device is displayed.
The following tabs are displayed in the upper part of the properties window representing the main groups of the settings:
This tab comprises the following sections:
In this field, you can view and modify the client device name in the administration group.
In this field, you can enter an additional description for the client device.
Status of the client device assigned on the basis of the criteria defined by the administrator for the status of anti-virus protection on the device and the activity of the device on the network.
Date the anti-virus databases or applications were last updated on the device.
Date and time Network Agent installed on the client device last connected to the Administration Server.
Date and time the device was last visible on the network.
If this option is enabled, continuous connectivity between the managed device and the Administration Server is maintained. You may want to use this option if you are not using push servers, which provide such connectivity.
If this option is disabled and push servers are not in use, the managed device only connects to the Administration Server to synchronize data or to transmit information.
The maximum total number of devices with the Do not disconnect from the Administration Server option selected is 300.
This option is disabled by default on managed devices. This option is enabled by default on the device where the Administration Server is installed and stays enabled even if you try to disable it.
Device IP address.
Windows domain or workgroup, which contains the device.
Name of the DNS domain of the client device.
Windows network name of the client device.
Status of the client device assigned on the basis of the criteria defined by the administrator for the status of anti-virus protection on the device and the activity of the device on the network.
This field shows the current status of real-time protection on the client device.
When the status changes on the device, the new status is displayed in the device properties window only after the client device is synchronized with the Administration Server.
Date and time the last virus scan was performed on the client device.
Total number of threats detected on the client device since installation of the anti-virus application (first scan), or since the last reset of the threat counter.
Number of unprocessed files on the client device.
This field ignores the number of unprocessed files on mobile devices.
The current status of file encryption on the local drives of the device.
This tab lists all Kaspersky applications installed on the client device. You can click the application name to view general information about the application, a list of events that have occurred on the device, and the application settings.
This tab lists the policies and policy profiles which are currently active on the managed device.
In the Tasks tab, you can manage client device tasks: view the list of existing tasks, create new ones, remove, start, and stop tasks, modify their settings, and view execution results. The list of tasks is provided based on data received during the last session of client synchronization with the Administration Server. The Administration Server requests the task status details from the client device. If connection is not established, the status is not displayed.
The Events tab displays events logged on the Administration Server for the selected client device.
In the Incidents tab, you can view, edit, and create incidents for the client device. Incidents can be created either automatically, through managed Kaspersky applications installed on the client device, or manually by the administrator. For example, if some users regularly move malware from their removable drives to devices, the administrator can create an incident. The administrator can provide a brief description of the case and recommended actions (such as disciplinary actions to be taken against a user) in the text of the incident, and can add a link to the user or users.
An incident for which all of the required actions have been taken is called processed. The presence of unprocessed incidents can be chosen as the condition for a change of the device status to Critical or Warning.
This section contains a list of incidents that have been created for the device. Incidents are classified by severity level and type. The type of an incident is defined by the Kaspersky application, which creates the incident. You can highlight processed incidents in the list by selecting the check box in the Processed column.
In the Tags tab, you can manage the list of keywords that are used for finding client devices: view the list of existing tags, assign tags from the list, configure auto-tagging rules, add new tags and rename old tags, and remove tags.
This tab comprises the following sections:
Information about installed applications is provided if Network Agent installed on the client device sends required information to the Administration Server. You can configure sending of information to the Administration Server in the properties window of Network Agent or its policy, in the Repositories section. Information about installed applications is provided only for devices running Windows.
Network Agent provides information about the applications based on data received from the system registry.
Clicking an application name opens a window that contains the application details and a list of the update packages installed for the application.
Click the Export to file button to save to a file a list of distribution points with which the device interacts. By default, the application exports the list of devices to a CSV file.
Click the Properties button to view and configure the distribution point with which the device interacts.
To save the vulnerabilities to a file, select the check boxes next to the vulnerabilities that you want to save, and then click the Export rows to CSV file button or Export rows to TXT file button.
The section contains the following settings:
If this option is enabled, the section displays vulnerabilities that can be fixed by using a patch.
If this option is disabled, the section displays both vulnerabilities that can be fixed by using a patch, and vulnerabilities for which no patch has been released.
By default, this option is enabled.
Click a software vulnerability name in the list to view the properties of the selected software vulnerability in a separate window. In the window, you can do the following:
See also: |