Kaspersky Security Center 14 Linux
- Kaspersky Security Center 14 Linux Help
- What's new
- About Kaspersky Security Center Linux
- Basic concepts
- Administration Server
- Hierarchy of Administration Servers
- Virtual Administration Server
- Web Server
- Network Agent
- Administration groups
- Managed device
- Unassigned device
- Administrator's workstation
- Management web plug-in
- Policies
- Policy profiles
- Tasks
- Task scope
- How local application settings relate to policies
- Distribution point
- Connection gateway
- Licensing
- Architecture
- Deployment diagram of Kaspersky Security Center Administration Server and Kaspersky Security Center 14 Web Console
- Ports used by Kaspersky Security Center Linux
- Ports used by Kaspersky Security Center 14 Web Console
- Installation
- Main installation scenario
- Configuring the MariaDB x64 server for working with Kaspersky Security Center 14 Linux
- Configuring the MySQL x64 server for working with Kaspersky Security Center 14 Linux
- Installing Kaspersky Security Center
- Installing Kaspersky Security Center in silent mode
- Installing Kaspersky Security Center on Astra Linux in the closed software environment mode
- Installing Kaspersky Security Center 14 Web Console
- Kaspersky Security Center 14 Web Console installation parameters
- Installing Kaspersky Security Center 14 Web Console connected to Administration Server installed on Kaspersky Security Center Linux failover cluster nodes
- Installing Network Agent for Linux in silent mode (with an answer file)
- Installing Network Agent on Astra Linux in the closed software environment mode
- Account for working with the DBMS
- Deployment of the Kaspersky Security Center Linux failover cluster
- Scenario: Deployment of Kaspersky Security Center Linux failover cluster
- About Kaspersky Security Center Linux failover cluster
- Preparing a file server for a Kaspersky Security Center Linux failover cluster
- Preparing nodes for a Kaspersky Security Center Linux failover cluster
- Installing Kaspersky Security Center on the Kaspersky Security Center failover cluster nodes
- Starting and stopping cluster nodes manually
- Certificates for work with Kaspersky Security Center
- About Kaspersky Security Center certificates
- Requirements for custom certificates used in Kaspersky Security Center
- Reissuing the certificate for Kaspersky Security Center 14 Web Console
- Replacing certificate for Kaspersky Security Center 14 Web Console
- Converting a PFX certificate to the PEM format
- Scenario: Specifying the custom Administration Server certificate
- Replacing the Administration Server certificate by using the klsetsrvcert utility
- Connecting Network Agents to Administration Server by using the klmover utility
- Defining a shared folder
- Upgrading Kaspersky Security Center Linux
- Signing in to Kaspersky Security Center 14 Web Console and signing out
- Quick Start Wizard
- Protection Deployment Wizard
- Starting Protection Deployment Wizard
- Selecting the installation package
- Selecting a method for distribution of key file or activation code
- Selecting Network Agent version
- Selecting devices
- Step 5. Specifying the remote installation task settings
- Step 6. Removing incompatible applications before installation
- Step 7. Moving devices to Managed devices
- Step 8. Selecting accounts to access devices
- Step 9. Starting installation
- Configuring Administration Server
- Configuring the connection of Kaspersky Security Center 14 Web Console to Administration Server
- Configuring an allowlist of IP addresses to connect to Kaspersky Security Center
- Configuring Administration Server connection events logging
- Setting the maximum number of events in the event repository
- Backup copying and restoration of Administration Server data
- Moving Administration Server to another device
- Creating a virtual Administration Server
- A hierarchy of Administration Servers
- Creating a hierarchy of Administration Servers: adding a secondary Administration Server
- Viewing the list of secondary Administration Servers
- Enabling account protection from unauthorized modification
- Two-step verification
- About two-step verification for an account
- Scenario: Configuring two-step verification for all users
- Enabling two-step verification for your own account
- Enabling required two-step verification for all users
- Disabling two-step verification for a user account
- Disabling required two-step verification for all users
- Excluding accounts from two-step verification
- Generating a new secret key
- Editing the name of a security code issuer
- Changing the number of allowed password entry attempts
- Changing DBMS credentials
- Deleting a hierarchy of Administration Servers
- Configuring the interface
- Discovering networked devices
- Scenario: Discovering networked devices
- IP range polling
- Adding and modifying an IP range
- Zeroconf polling
- Device tags
- About device tags
- Creating a device tag
- Renaming a device tag
- Deleting a device tag
- Viewing devices to which a tag is assigned
- Viewing tags assigned to a device
- Tagging a device manually
- Removing an assigned tag from a device
- Viewing rules for tagging devices automatically
- Editing a rule for tagging devices automatically
- Creating a rule for tagging devices automatically
- Running rules for auto-tagging devices
- Deleting a rule for tagging devices automatically
- Managing device tags by using the klscflag utility
- Application tags
- Deploying Kaspersky applications
- Scenario: Kaspersky applications deployment
- Adding management plug-ins for Kaspersky applications
- Creating installation packages from a file
- Creating stand-alone installation packages
- Viewing the list of stand-alone installation packages
- Preparing a Linux device and installing Network Agent on a Linux device remotely
- Installing applications using a remote installation task
- Specifying settings for remote installation on Unix devices
- Starting and stopping Kaspersky applications
- Replacing third-party security applications
- Removing applications or software updates remotely
- Preparing a device running SUSE Linux Enterprise Server 15 for installation of Network Agent
- Kaspersky applications: licensing and activation
- Licensing of managed applications
- Adding a license key to the Administration Server repository
- Deploying a license key to client devices
- Automatic distribution of a license key
- Viewing information about license keys in use
- Deleting a license key from the repository
- Revoking consent with an End User License Agreement
- Renewing licenses for Kaspersky applications
- Using Kaspersky Marketplace to choose Kaspersky business solutions
- Configuring network protection
- Scenario: Configuring network protection
- About device-centric and user-centric security management approaches
- Policy setup and propagation: Device-centric approach
- Policy setup and propagation: User-centric approach
- Manual setup of the group update task for Kaspersky Endpoint Security
- Network Agent policy settings
- Tasks
- Managing client devices
- Settings of a managed device
- Creating administration groups
- Device moving rules
- Adding devices to an administration group manually
- Moving devices or clusters to an administration group manually
- Changing the Administration Server for client devices
- Moving devices connected to Administration Server through connection gateways to another Administration Server
- Viewing and configuring the actions when devices show inactivity
- About device statuses
- Configuring the switching of device statuses
- Policies and policy profiles
- Users and user roles
- About user roles
- Configuring access rights to application features. Role-based access control
- Adding an account of an internal user
- Creating a security group
- Editing an account of an internal user
- Editing a security group
- Adding user accounts to an internal group
- Assigning a user as a device owner
- Deleting a user or a security group
- Creating a user role
- Editing a user role
- Editing the scope of a user role
- Deleting a user role
- Associating policy profiles with roles
- Managing object revisions
- Rolling back an object to a previous revision
- Deletion of objects
- Using the klscflag utility to open port 13291
- Using the klscflag utility to open the OpenAPI port
- Updating Kaspersky databases and applications
- Scenario: Regular updating Kaspersky databases and applications
- About updating Kaspersky databases, software modules, and applications
- Creating the Download updates to the Administration Server repository task
- Viewing downloaded updates
- Verifying downloaded updates
- Adjustment of distribution points and connection gateways
- About distribution points
- Standard configuration of distribution points: Single office
- Standard configuration of distribution points: Multiple small remote offices
- Calculating the number and configuration of distribution points
- Assigning distribution points automatically
- Assigning distribution points manually
- Modifying the list of distribution points for an administration group
- Enabling a push server
- Increasing the limit of file descriptors for the klnagent service
- Creating the task for downloading updates to the repositories of distribution points
- Downloading updates by distribution points
- Adding sources of updates for the Download updates to the Administration Server repository task
- About using diff files for updating Kaspersky databases and software modules
- Enabling the Downloading diff files feature
- Updating Kaspersky databases and software modules on offline devices
- Backing up and restoring web plug-ins
- Managing third-party applications and executable files on client devices
- Monitoring and reporting
- Scenario: Monitoring and reporting
- About types of monitoring and reporting
- Dashboard and widgets
- Reports
- Events and event selections
- About events in Kaspersky Security Center Linux
- Events of Kaspersky Security Center Linux components
- Using event selections
- Creating an event selection
- Editing an event selection
- Viewing a list of an event selection
- Viewing details of an event
- Exporting events to a file
- Viewing an object history from an event
- Deleting events
- Deleting event selections
- Setting the storage term for an event
- Blocking frequent events
- Event processing and storage on the Administration Server
- Notifications and device statuses
- Kaspersky announcements
- Exporting events to SIEM systems
- Configuring event export to SIEM systems
- Before you begin
- About event export
- About configuring event export in a SIEM system
- Marking of events for export to SIEM systems in Syslog format
- About exporting events using Syslog format
- Configuring Kaspersky Security Center Linux for export of events to a SIEM system
- Exporting events directly from the database
- Viewing export results
- Device selections
- Changing the language of the Kaspersky Security Center 14 Web Console interface
- API Reference Guide
- Best Practices for Service Providers
- Planning Kaspersky Security Center Linux deployment
- Deployment and initial setup
- Recommendations on Administration Server installation
- Deploying Network Agent and security applications
- Configuring protection on a client organization's network
- Manual setup of the Kaspersky Endpoint Security policy
- Manual setup of the group update task for Kaspersky Endpoint Security
- Manual setup of the group task for scanning a device with Kaspersky Endpoint Security
- Scheduling the Find vulnerabilities and required updates task
- Manual setup of the group task for updates installation and vulnerabilities fix
- Building a structure of administration groups and assigning distribution points
- Hierarchy of policies, using policy profiles
- Tasks
- Device moving rules
- Software categorization
- Backup and restoration of Administration Server settings
- About connection profiles for out-of-office users
- Remote access to managed devices
- Integration between Kaspersky Security Center 14 Web Console and other Kaspersky solutions
- Contact Technical Support
- Sources of information about the application
- Known issues
- Glossary
- Active key
- Additional (or reserve) license key
- Administration Console
- Administration group
- Administration Server
- Administration Server certificate
- Administration Server client (Client device)
- Administration Server data backup
- Administrator rights
- Administrator's workstation
- Anti-virus databases
- Anti-virus protection service provider
- Application Shop
- Authentication Agent
- Available update
- Backup folder
- Broadcast domain
- Centralized application management
- Client administrator
- Configuration profile
- Connection gateway
- Demilitarized zone (DMZ)
- Device owner
- Direct application management
- Distribution point
- Event repository
- Event severity
- Group task
- Home Administration Server
- HTTPS
- Incompatible application
- Installation package
- Internal users
- JavaScript
- Kaspersky Private Security Network (KPSN)
- Kaspersky Security Center Administrator
- Kaspersky Security Center Operator
- Kaspersky Security Center System Health Validator (SHV)
- Kaspersky Security Center Web Server
- Kaspersky update servers
- Key file
- License term
- Local installation
- Local task
- Managed devices
- Manual installation
- Network Agent
- Network anti-virus protection
- Network protection status
- Policy
- Profile
- Program settings
- Protection status
- Provisioning profile
- Remote installation
- Restoration
- Restoration of Administration Server data
- Role group
- Service provider's administrator
- Shared certificate
- SSL
- Task
- Task for specific devices
- Task settings
- Update
- Virtual Administration Server
- Information about third-party code
- Trademark notices
What's new
What's new
Kaspersky Security Center 14 Linux
Kaspersky Security Center 14 Linux has several new features and improvements:
- Besides the Download updates to the Administration Server repository task, anti-virus databases for Kaspersky security applications can now be downloaded through the Download updates to the repositories of distribution points task.
- Anti-virus databases and application modules on the managed devices can be propagated and updated through Administration Server or distribution points. You can choose an update scheme optimal for your organization, to reduce the load on Administration Server and optimize data traffic on the corporate network.
- Kaspersky Security Center downloads from Kaspersky update servers only those updates that are requested by the Kaspersky security applications. This reduces the size of the downloaded data.
- You can now use the diff files feature to download anti-virus databases and software modules. A diff file describes the differences between two versions of a file of a database or software module. The usage of diff files saves traffic inside your company's network because diff files occupy less space than entire files of databases and software modules.
- The Update verification task was added. By using this task, you can automatically check the downloaded updates for operability and errors before you install the updates on the managed devices.
- Kaspersky Security Center now supports Kaspersky Industrial CyberSecurity for Linux Nodes 1.3.
Article ID: 12521, Last review: Mar 31, 2025