Administration Server warning events

The table below shows the events of Kaspersky Security Center Cloud Console Administration Server that have the Warning importance level.

For each event that can be generated by an application, you can specify notification settings and storage settings on the Event configuration tab in the application policy. For Administration Server, you can additionally view and configure the event list in the Administration Server properties. If you want to configure notification settings for all the events at once, configure general notification settings in the Administration Server properties.

Event type display name	Event type ID	Event type	Description	Default storage term
License limit has been exceeded	4098	KLSRV_EV_LICENSE_CHECK_100_110	Once a day Kaspersky Security Center Cloud Console checks whether a licensing restriction is exceeded. Events of this type occur when Administration Server detects that some licensing limits are exceeded by Kaspersky applications installed on client devices and if the number of currently used licensing units covered by a single license constitute 100% to 110% of the total number of units covered by the license. Even when this event occurs, client devices are protected. You can respond to the event in the following ways: Look through the managed devices list. Delete devices that are not in use. Provide a license for more devices (add a valid activation code or a key file to Administration Server). Kaspersky Security Center Cloud Console determines the rules to generate events when a licensing restriction is exceeded.	90 days
Device has remained inactive on the network for a long time	4103	KLSRV_EVENT_HOSTS_NOT_VISIBLE	Information to be added soon.	90 days
Conflict of device names	4102	KLSRV_EVENT_HOSTS_CONFLICT	Information to be added soon.	90 days
Device status is Warning	4114	KLSRV_HOST_STATUS_WARNING	Events of this type occur when a managed device is assigned the Warning status. You can configure the conditions under which the device status is changed to Warning.	90 days
Limit of installations will soon be reached for one of the licensed applications groups	4127	KLSRV_INVLICPROD_FILLED	Information to be added soon.	90 days
Certificate has been requested	4133	KLSRV_CERTIFICATE_REQUESTED	Information to be added soon.	90 days
Certificate has been removed	4134	KLSRV_CERTIFICATE_REMOVED	Information to be added soon.	90 days
APNs certificate has expired	4135	KLSRV_APN_CERTIFICATE_EXPIRED	Information to be added soon.	90 days
APNs certificate expires soon	4136	KLSRV_APN_CERTIFICATE_EXPIRES_SOON	Information to be added soon.	90 days
Failed to send the FCM message to the mobile device	4138	KLSRV_GCM_DEVICE_ERROR	Information to be added soon.	90 days
HTTP error sending the FCM message to the FCM server	4139	KLSRV_GCM_HTTP_ERROR	Information to be added soon.	90 days
Failed to send the FCM message to the FCM server	4140	KLSRV_GCM_GENERAL_ERROR	Information to be added soon.	90 days
Connection to the secondary Administration Server has been interrupted	4116	KLSRV_EV_SLAVE_SRV_DISCONNECTED	Information to be added soon.	90 days
Connection to the primary Administration Server has been interrupted	4118	KLSRV_EV_MASTER_SRV_DISCONNECTED	Information to be added soon.	90 days
KSN Proxy has started. Failed to check KSN for availability	7719	KSNPROXY_STARTED_CON_CHK_FAILED	Information to be added soon.	90 days
New updates for Kaspersky software modules have been registered	4141	KLSRV_SEAMLESS_UPDATE_REGISTERED	Information to be added soon.	90 days
The limit on the number of events in the database is exceeded, deletion of events has started	4145	KLSRV_EVP_DB_TRUNCATING	Events of this type occur when deletion of old events from the Administration Server database has started after the Administration Server database capacity is reached. You can respond to the event in the following ways: Change the maximum number of events stored in the Administration Server database. Reduce the list of events to store in the Administration Server database.	90 days
The limit on the number of events in the database is exceeded, the events have been deleted	4146	KLSRV_EVP_DB_TRUNCATED	Events of this type occur when old events have been deleted from the Administration Server database after the Administration Server database capacity is reached. You can respond to the event in the following ways: Change the allowed maximum number of events to be stored in the Administration Server database. Reduce the list of events to store in the Administration Server database.	90 days
License expires soon	4128	KLSRV_INVLICPROD_EXPIRED_SOON	Information to be added soon.	90 days
Audit: Test of connection to SIEM server failed	5120	KLAUD_EV_SIEM_TEST_FAILED	Events of this type occur when an automatic connection test to the SIEM server failed.	90 days