Settings of a managed device
Expand all | Collapse all
To view the settings of a managed device:
- In the console tree, select the Managed devices folder.
- In the workspace of the folder, select a device.
- In the context menu of the device, select Properties.
The properties window of the selected device opens, with the General section selected.
General
The General section displays general information about the client device. Information is provided on the basis of data received during the last synchronization of the client device with the Administration Server:
- Name
In this field, you can view and modify the client device name in the administration group.
- Description
In this field, you can enter an additional description for the client device.
- Windows domain
Windows domain or workgroup, which contains the device.
- NetBIOS name
Windows network name of the client device.
- DNS name
Name of the DNS domain of the client device.
- IP address
- Group
Administration group, which includes the client device.
- Last updated
Date the anti-virus databases or applications were last updated on the device.
- Last visible
Date and time the device was last visible on the network.
- Connected to Administration Server
Date and time Network Agent installed on the client device last connected to the Administration Server.
- Do not disconnect from the Administration Server
If this option is enabled, continuous connectivity between the managed device and the Administration Server is maintained. You may want to use this option if you are not using push servers, which provide such connectivity.
If this option is disabled and push servers are not in use, the managed device only connects to the Administration Server to synchronize data or to transmit information.
The maximum total number of devices with the Do not disconnect from the Administration Server option selected is 300.
This option is disabled by default on managed devices. This option is enabled by default on the device where the Administration Server is installed and stays enabled even if you try to disable it.
Protection
The Protection section provides information about the current status of anti-virus protection on the client device:
- Device status
Status of the client device assigned on the basis of the criteria defined by the administrator for the status of anti-virus protection on the device and the activity of the device on the network.
- All problems
This table contains a complete list of problems detected by the managed applications installed on the client device. Each problem is accompanied by a status, which the application suggests you assign to the device for this problem.
- Real-time protection
This field shows the current status of real-time protection on the client device.
When the status changes on the device, the new status is displayed in the device properties window only after the client device is synchronized with the Administration Server.
- Last on-demand scan
Date and time the last malware scan was performed on the client device.
- Total number of threats detected
Total number of threats detected on the client device since installation of the security application (first scan), or since the last reset of the threat counter.
- Active threats
Number of unprocessed files on the client device.
This field ignores the number of unprocessed files on mobile devices.
- Disk encryption status
Applications
The Applications section lists all Kaspersky applications installed on the client device. This section contains the start button () and stop button () that allow you to start and stop the selected Kaspersky application (excluding Network Agent). These buttons are enabled if port 15000 UDP is available on the managed device for receipt push-notifications from Administration Server. If the managed device is unavailable for push-notifications, but the mode of continuous connection to Administration Server is enabled (the Do not disconnect from the Administration Server option in the General section is enabled), the start and stop buttons are available too. Also the Applications section contains the following buttons:
- Events
Click the button to view a list of events that have occurred on the client device when the application has been running, and to view the task results for this application.
- Statistics
Click this button to view current statistical information about the application.
- Properties
Click the button to receive information about the application and to configure the application.
Tasks
In the Tasks tab, you can manage client device tasks: view the list of existing tasks, create new ones, remove, start, and stop tasks, modify their settings, and view execution results. The list of tasks is provided based on data received during the last session of client synchronization with the Administration Server. The Administration Server requests the task status details from the client device.
The start (), stop (), and remove () buttons are enabled if port 15000 UDP is available on the managed device for receipt push-notifications from Administration Server. If the managed device is unavailable for push-notifications, but the mode of continuous connection to Administration Server is enabled (the Do not disconnect from the Administration Server option in the General section is enabled), the start, stop, and remove buttons are available too.
If connection is not established, the task status is not displayed and buttons are disabled.
Events
The Events tab displays events logged on the Administration Server for the selected client device.
Tags
In the Tags tab, you can manage the list of keywords that are used for finding client devices: view the list of existing tags, assign tags from the list, configure auto-tagging rules, add new tags and rename old tags, and remove tags.
System Info
The General system info section provides information about the application installed on the client device.
Applications registry
In the Applications registry section, you can view the registry of applications installed on the client device and their updates; you can also set up the display of the applications registry.
Information about installed applications is provided if Network Agent installed on the client device sends required information to the Administration Server. You can configure sending of information to the Administration Server in the properties window of Network Agent or its policy, in the Repositories section.
- Display incompatible security applications only
If this option is enabled, the applications list contains only those security applications that are incompatible with Kaspersky applications.
By default, this option is disabled.
- Show updates
If this option is enabled, the applications list contains not only applications, but also the update packages installed for them.
To show the list of updates, 100 KB of traffic are needed. If you close the list and reopen it, you will have to spend 100 KB of traffic again.
By default, this option is disabled.
- Export to file
Click this button to export the list of applications installed on the device to a CSV file or TXT file.
- History
Click this button to view events concerning installation of applications on the device. The following information is displayed:
- Date and time when the application was installed on the device
- Application name
- Application version
- Properties
Click this button to view the properties of the application selected in the list of applications installed on the device. The following information is displayed:
- Application name
- Application version
- Application vendor
Executable files
The Executable files section displays executable files found on the client device.
Hardware registry
In the Hardware registry section, you can view information about hardware installed on the client device. You can view this information for Windows devices and Linux devices.
Ensure that the lshw utility is installed on Linux devices from which you want to fetch hardware details. Hardware details fetched from virtual machines may be incomplete depending on the hypervisor used.
Sessions
The Sessions section displays only for the Windows devices and contains information about the client device owner, as well as accounts of users who have worked on the selected client device.
Information about domain users is generated based on Active Directory data. The details of local users are provided by Windows Security Account Manager installed on the client device.
- Device owner
The Device owner field displays the name of the user whom the administrator can contact when the need arises to perform certain operations on the client device.
Use the Assign and Properties buttons to select the device owner and view information about the user who has been appointed the device owner.
Use the button with the red cross to delete the current device owner.
The list displays accounts of users that work on the client device.
- Name
Name of the device in the Windows network.
- Participant's name
Name (domain or local) of the user who logged on to the system on that device.
- Account
Account of the user who has logged on to that device.
- Email
- Phone
Security issues
In the Security issues tab, you can view, edit, and create security issues for the client device. Security issues can be created either automatically, through managed Kaspersky applications installed on the client device, or manually by the administrator. For example, if some users regularly move malware from their removable drives to devices, the administrator can create a security issue. The administrator can provide a brief description of the case and recommended actions (such as disciplinary actions to be taken against a user) in the text of the security issue, and can add a link to the user or users.
A security issue for which all of the required actions have been taken is called processed. The presence of unprocessed security issues can be chosen as the condition for a change of the device status to Critical or Warning.
This section contains a list of security issues that have been created for the device. Security issues are classified by severity level and type. The type of a security issue is defined by the Kaspersky application, which creates the security issue. You can highlight processed security issues in the list by selecting the check box in the Processed column.
Software vulnerabilities
The Software vulnerabilities section provides information about vulnerabilities in third-party applications installed on client devices. You can use the search field above the list to look for vulnerabilities by name.
- Export to file
Click the Export to file button to save the list of vulnerabilities to file. By default, the application exports the list of vulnerabilities to a CSV file.
- Show only vulnerabilities that can be fixed
If this option is enabled, the section displays vulnerabilities that can be fixed by using a patch.
If this option is disabled, the section displays both vulnerabilities that can be fixed by using a patch, and vulnerabilities for which no patch has been released.
By default, this option is enabled.
- Properties
Select a software vulnerability in the list and click the Properties button to view the properties of the selected software vulnerability in a separate window. In the window, you can do the following:
Available updates
This section displays a list of software updates found on this device but not installed yet.
- Show installed updates
If this option is enabled, the list displays both updates that have not been installed and those already installed on the client device.
By default, this option is disabled.
Active policies
This section displays a list of Kaspersky application policies currently assigned to this device.
- Export to file
You can click the Export to file button to save the list of active policies to a file. By default, the application exports the list of policies to a CSV file.
Active policy profiles
- Active policy profiles
The list allows you to view information about the existing policy profiles, which are active on client devices. You can use the search bar above the list to find active policy profiles on the list by entering a policy name or a policy profile name.
- Export to file
You can click the Export to file button to save the list of active policy profiles to a file. By default, the application exports the list of policy profiles to a CSV file.
Distribution points
This section provides a list of distribution points with which the device interacts.
- Export to file
Click the Export to file button to save to a file a list of distribution points with which the device interacts. By default, the application exports the list of devices to a CSV file.
- Properties
Click the Properties button to view and configure the distribution point with which the device interacts.
Page top