Kaspersky Security Center 15.1 Linux
- Kaspersky Security Center Linux Help
- What's new
- About Kaspersky Security Center Linux
- Distribution kit
- Hardware and software requirements
- Compatible Kaspersky applications and solutions
- About compatibility of Administration Server and Kaspersky Security Center Web Console
- Comparison of Kaspersky Security Center: Windows-based vs. Linux-based
- About Kaspersky Security Center Cloud Console
- Architecture and basic concepts
- Architecture
- Deployment diagram of Kaspersky Security Center Linux Administration Server and Kaspersky Security Center Web Console
- Ports used by Kaspersky Security Center Linux
- Ports used by Kaspersky Security Center Web Console
- Basic concepts
- Administration Server
- Hierarchy of Administration Servers
- Virtual Administration Server
- Web Server
- Network Agent
- Administration groups
- Managed device
- Unassigned device
- Administrator's workstation
- Management web plug-in
- Policies
- Policy profiles
- Tasks
- Task scope
- How local application settings relate to policies
- Distribution point
- Connection gateway
- Schemas for data traffic and port usage
- Administration Server and managed devices on LAN
- Primary Administration Server on LAN and two secondary Administration Servers
- Administration Server on LAN, managed devices on internet, reverse proxy in use
- Administration Server on LAN, managed devices on internet, connection gateway in use
- Administration Server in DMZ, managed devices on internet
- Interaction of Kaspersky Security Center Linux components and security applications: more information
- Conventions used in interaction schemas
- Administration Server and DBMS
- Administration Server and client device: Managing the security application
- Upgrading software on a client device through a distribution point
- Hierarchy of Administration Servers: primary Administration Server and secondary Administration Server
- Hierarchy of Administration Servers with a secondary Administration Server in DMZ
- Administration Server, a connection gateway in a network segment, and a client device
- Administration Server and two devices in DMZ: a connection gateway and a client device
- Administration Server and Kaspersky Security Center Web Console
- Getting started
- Installation
- Configuring the MariaDB x64 server for working with Kaspersky Security Center Linux
- Configuring the PostgreSQL or Postgres Pro server for working with Kaspersky Security Center Linux
- Configuring the MySQL x64 server for working with Kaspersky Security Center Linux
- Installing Kaspersky Security Center Linux
- Installing Kaspersky Security Center Web Console
- Deployment of the Kaspersky Security Center Linux failover cluster
- Scenario: Deployment of Kaspersky Security Center Linux failover cluster
- About Kaspersky Security Center Linux failover cluster
- Preparing a file server for a Kaspersky Security Center Linux failover cluster
- Preparing nodes for a Kaspersky Security Center Linux failover cluster
- Installing Kaspersky Security Center Linux on the Kaspersky Security Center Linux failover cluster nodes
- Installing Kaspersky Security Center Web Console connected to Administration Server installed on Kaspersky Security Center Linux failover cluster nodes
- Starting and stopping cluster nodes manually
- Accounts for working with the DBMS
- Certificates for work with Kaspersky Security Center Linux
- About Kaspersky Security Center certificates
- Requirements for custom certificates used in Kaspersky Security Center Linux
- Reissuing the certificate for Kaspersky Security Center Web Console
- Replacing certificate for Kaspersky Security Center Web Console
- Converting a PFX certificate to the PEM format
- Scenario: Specifying the custom Administration Server certificate
- Replacing the Administration Server certificate by using the klsetsrvcert utility
- Connecting Network Agents to Administration Server by using the klmover utility
- Reissuing the Web Server certificate
- Defining a shared folder
- Signing in to Kaspersky Security Center Web Console and signing out
- Kaspersky Security Center Web Console interface
- Quick start wizard
- Step 1. Specifying the internet connection settings
- Step 2. Downloading required updates
- Step 3. Selecting the assets to secure
- Step 4. Selecting encryption in solutions
- Step 5. Configuring installation of plug-ins for managed applications
- Step 6. Downloading distribution packages and creating installation packages
- Step 7. Configuring Kaspersky Security Network
- Step 8. Selecting the application activation method
- Step 9. Specifying the third-party update management settings
- Step 10. Creating a basic network protection configuration
- Step 11. Configuring email notifications
- Step 12. Closing the quick start wizard
- Protection deployment wizard
- Starting Protection deployment wizard
- Selecting the installation package
- Selecting a method for distribution of key file or activation code
- Selecting Network Agent version
- Selecting devices
- Specifying the remote installation task settings
- Step 6. Restart management
- Removing incompatible applications before installation
- Moving devices to Managed devices
- Selecting accounts to access devices
- Starting installation
- Installation
- Upgrading Kaspersky Security Center Linux
- Upgrading Kaspersky Security Center Linux by using the installation file
- Upgrading Kaspersky Security Center Linux through backup
- Upgrading Kaspersky Security Center Linux on the Kaspersky Security Center Linux failover cluster nodes
- Upgrading Kaspersky Security Center Web Console
- Upgrading Kaspersky Security Center Web Console on Astra Linux in the closed software environment mode
- Migration to Kaspersky Security Center Linux
- Configuring Administration Server
- Configuring the connection of Kaspersky Security Center Web Console to Administration Server
- Configuring an allowlist of IP addresses to connect to Kaspersky Security Center Linux
- Configuring internet access settings for Administration Server
- Hierarchy of Administration Servers
- Creating a hierarchy of Administration Servers: adding a secondary Administration Server
- Viewing the list of secondary Administration Servers
- Managing virtual Administration Servers
- Configuring Administration Server connection events logging
- Setting the maximum number of events in the event repository
- Moving Administration Server to another device
- Changing DBMS credentials
- Backup copying and restoration of Administration Server data
- Administration Server maintenance
- Deleting a hierarchy of Administration Servers
- Access to public DNS servers
- Configuring the interface
- Encrypt communication with TLS
- Discovering networked devices
- Deployment best practices
- Hardening Guide
- Administration Server deployment
- Connection safety
- Accounts and authentication
- Managing protection of Administration Server
- Managing protection of client devices
- Configuring protection for managed applications
- Administration Server maintenance
- Event transfer to third-party systems
- Security recommendations for third-party information systems
- Recommendations for using Kaspersky security applications
- Scenario: Authenticating MySQL Server
- Scenario: Authenticating PostgreSQL Server
- Preparation for deployment
- Planning Kaspersky Security Center Linux deployment
- Typical schemes of protection system deployment
- About planning Kaspersky Security Center Linux deployment in an organization's network
- Selecting a structure for protection of an enterprise
- Standard configurations of Kaspersky Security Center Linux
- Selecting a DBMS
- Providing internet access to Administration Server
- About distribution points
- Increasing the limit of file descriptors for the klnagent service
- Calculating the number and configuration of distribution points
- Virtual Administration Servers
- Network settings for interaction with external services
- Planning Kaspersky Security Center Linux deployment
- Deploying Network Agent and the security application
- Initial deployment
- Configuring installers
- Installation packages
- About remote installation tasks in Kaspersky Security Center Linux
- Deployment by capturing and copying the image of a device
- Network Agent disk cloning mode
- Forced deployment through the remote installation task of Kaspersky Security Center Linux
- Running stand-alone packages created by Kaspersky Security Center Linux
- Remote installation of applications on devices with Network Agent installed
- Managing device restarts in the remote installation task
- Suitability of databases updating in an installation package of a security application
- Monitoring the deployment
- Configuring installers
- Virtual infrastructure
- Support of file system rollback for devices with Network Agent
- Local installation of applications
- Installing Network Agent for Linux in interactive mode
- Installing Network Agent for Windows in interactive mode
- Installing Network Agent for Windows in silent mode
- Installing applications in silent mode
- Installing applications by using stand-alone packages
- Network Agent installation package settings
- Initial deployment
- Kaspersky Security Center Linux Web Server
- Manual setup of the group task for scanning a device with Kaspersky Endpoint Security
- Hardening Guide
- Managing client devices
- Settings of a managed device
- Device moving rules
- Adding devices to an administration group manually
- Moving devices or clusters to an administration group manually
- About clusters and server arrays
- Properties of a cluster or server array
- Adjustment of distribution points and connection gateways
- Standard configuration of distribution points: Single office
- Standard configuration of distribution points: Multiple small remote offices
- Calculating the number and configuration of distribution points
- Assigning distribution points automatically
- Assigning distribution points manually
- Modifying the list of distribution points for an administration group
- Enabling a push server
- About device statuses
- Configuring the switching of device statuses
- Device selections
- Device tags
- Creating a device tag
- Renaming a device tag
- Deleting a device tag
- Viewing devices to which a tag is assigned
- Viewing tags assigned to a device
- Tagging a device manually
- Removing an assigned tag from a device
- Viewing rules for tagging devices automatically
- Editing a rule for tagging devices automatically
- Creating a rule for tagging devices automatically
- Running rules for auto-tagging devices
- Deleting a rule for tagging devices automatically
- Managing device tags by using the klscflag utility
- Data encryption and protection
- Changing the Administration Server for client devices
- Moving devices connected to Administration Server through connection gateways to another Administration Server
- Viewing and configuring the actions when devices show inactivity
- Sending messages to device users
- Turning on, turning off, and restarting client devices remotely
- Managing mobile devices
- Managing administration groups
- Deploying Kaspersky applications
- Scenario: Kaspersky applications deployment
- Adding management plug-ins for Kaspersky applications
- Downloading and creating installation packages for Kaspersky applications
- Creating installation packages from a file
- Creating stand-alone installation packages
- Changing the limit on the size of custom installation package data
- Installing Network Agent for Linux in silent mode (with an answer file)
- Preparing a device running Astra Linux in the closed software environment mode for installation of Network Agent
- Viewing the list of stand-alone installation packages
- Distributing installation packages to secondary Administration Servers
- Preparing a Linux device and installing Network Agent on a Linux device remotely
- Installing applications using a remote installation task
- Specifying settings for remote installation on Unix devices
- Starting and stopping Kaspersky applications
- Replacing third-party security applications
- Removing applications or software updates remotely
- Preparing a device running SUSE Linux Enterprise Server 15 for installation of Network Agent
- Preparing a Windows device for remote installation
- Creating Execute scripts remotely task
- Licensing
- Licensing of Kaspersky Security Center Linux
- Licensing of managed Kaspersky applications
- Licensing of managed applications
- Adding a license key to the Administration Server repository
- Deploying a license key to client devices
- Automatic distribution of a license key
- Viewing information about license keys in use
- Events of the licensing limit exceeded
- Deleting a license key from the repository
- Revoking consent with an End User License Agreement
- Renewing licenses for Kaspersky applications
- Using Kaspersky Marketplace to choose Kaspersky business solutions
- Configuring Kaspersky applications
- Scenario: Configuring network protection
- About device-centric and user-centric security management approaches
- Policy setup and propagation: Device-centric approach
- Policy setup and propagation: User-centric approach
- Policies and policy profiles
- About policies and policy profiles
- About lock and locked settings
- Inheritance of policies and policy profiles
- Managing policies
- Viewing the list of policies
- Creating a policy
- General policy settings
- Modifying a policy
- Enabling and disabling a policy inheritance option
- Copying a policy
- Moving a policy
- Exporting a policy
- Importing a policy
- Forced synchronization
- Viewing the policy distribution status chart
- Activating a policy automatically at the Virus outbreak event
- Deleting a policy
- Managing policy profiles
- Network Agent policy settings
- Usage of Network Agent for Windows, Linux, and macOS: Comparison
- Comparison of Network Agent settings by operating systems
- Enabling and disabling the low resource consumption mode for Network Agent
- Manual setup of the Kaspersky Endpoint Security policy
- Configuring Kaspersky Security Network
- Checking the list of the networks protected by Firewall
- Disabling the scan of network drives
- Excluding software details from the Administration Server memory
- Configuring access to the Kaspersky Endpoint Security for Windows interface on workstations
- Saving important policy events in the Administration Server database
- Manual setup of the group update task for Kaspersky Endpoint Security
- Kaspersky Security Network (KSN)
- Managing tasks
- Application tags
- Granting offline access to the external device blocked by Device Control
- Using the klscflag utility to open port 13291
- Registering Kaspersky Industrial CyberSecurity for Networks application in Kaspersky Security Center Web Console
- Managing users and user roles
- About user accounts
- About user roles
- Configuring access rights to application features. Role-based access control
- Adding an account of an internal user
- Creating a security group
- Editing an account of an internal user
- Editing a security group
- Assigning a role to a user or a security group
- Adding user accounts to an internal security group
- Assigning a user as a device owner
- Enabling account protection from unauthorized modification
- Two-step verification
- Scenario: Configuring two-step verification for all users
- About two-step verification for an account
- Enabling two-step verification for your own account
- Enabling required two-step verification for all users
- Disabling two-step verification for a user account
- Disabling required two-step verification for all users
- Excluding accounts from two-step verification
- Configuring two-step verification for your own account
- Prohibit new users from setting up two-step verification for themselves
- Generating a new secret key
- Editing the name of a security code issuer
- Changing the number of allowed password entry attempts
- Deleting a user or a security group
- Creating a user role
- Editing a user role
- Editing the scope of a user role
- Deleting a user role
- Associating policy profiles with roles
- Changing account password
- Revoking local administrator rights
- Updating Kaspersky databases and applications
- Scenario: Regular updating Kaspersky databases and applications
- About updating Kaspersky databases, software modules, and applications
- Creating the Download updates to the Administration Server repository task
- Verifying downloaded updates
- Creating the task for downloading updates to the repositories of distribution points
- Adding sources of updates for the Download updates to the Administration Server repository task
- Approving and declining software updates
- Automatic installation of updates for Kaspersky Endpoint Security for Windows
- About using diff files for updating Kaspersky databases and software modules
- Enabling the Downloading diff files feature
- Downloading updates by distribution points
- Updating Kaspersky databases and software modules on offline devices
- Backing up and restoring web plug-ins
- Monitoring, reporting, and audit
- Scenario: Monitoring and reporting
- About types of monitoring and reporting
- Triggering of rules in Smart Training mode
- Dashboard and widgets
- Reports
- Events and event selections
- About events in Kaspersky Security Center Linux
- Events of Kaspersky Security Center Linux components
- Using event selections
- Creating an event selection
- Editing an event selection
- Viewing a list of an event selection
- Exporting an event selection
- Importing an event selection
- Viewing details of an event
- Exporting events to a file
- Viewing an object history from an event
- Deleting events
- Deleting event selections
- Setting the storage term for an event
- Blocking frequent events
- Event processing and storage on the Administration Server
- Notifications and device statuses
- Kaspersky announcements
- Viewing information about the detects of threats
- Cloud Discovery
- Exporting events to SIEM systems
- Configuring event export to SIEM systems
- Before you begin
- About event export
- About configuring event export in a SIEM system
- Marking of events for export to SIEM systems in Syslog format
- About exporting events using Syslog format
- Configuring Kaspersky Security Center Linux for export of events to a SIEM system
- Exporting events directly from the database
- Viewing export results
- Managing object revisions
- Deletion of objects
- Downloading and deleting files from Quarantine and Backup
- Integration between Kaspersky Security Center Web Console and other Kaspersky solutions
- Remote diagnostics of client devices
- Opening the remote diagnostics window
- Enabling and disabling tracing for applications
- Downloading trace files of an application
- Deleting trace files
- Downloading application settings
- Downloading system information from a client device
- Downloading event logs
- Starting, stopping, restarting the application
- Running the remote diagnostics of Kaspersky Security Center Linux Network Agent and downloading the results
- Running an application on a client device
- Running remote diagnostics on a Linux-based client device
- Managing third-party applications and executable files on client devices
- Using Application Control to manage executable files
- Obtaining and viewing a list of executable files stored on client devices
- Creating an application category with content added manually
- Creating an application category that includes executable files from selected devices
- Creating an application category that includes executable files from selected folder
- Viewing the list of application categories
- Adding event-related executable files to the application category
- Configuring Application Control in the Kaspersky Endpoint Security for Windows policy
- Obtaining and viewing a list of applications installed on client devices
- Installing third-party software updates
- Scenario: Updating third-party software
- Third-party software updates installation options
- Find vulnerabilities and required updates task settings
- Creating the Find vulnerabilities and required updates task
- Viewing information about available third-party software updates
- Exporting the list of available software updates to a file
- Approving and declining third-party software updates
- Creating the Install required updates and fix vulnerabilities task
- Adding rules for update installation
- Settings of the Install required updates and fix vulnerabilities task specified after task creation
- Updating third-party applications automatically
- Fixing third-party software vulnerabilities
- About finding and fixing software vulnerabilities
- Scenario: Finding and fixing third-party software vulnerabilities
- Fixing third-party software vulnerabilities
- Creating the Fix vulnerabilities task
- Selecting user fixes for vulnerabilities in third-party software
- Viewing information about software vulnerabilities detected on all managed devices
- Viewing information about software vulnerabilities detected on the selected managed device
- Viewing statistics of vulnerabilities on managed devices
- Exporting the list of software vulnerabilities to a file
- Ignoring software vulnerabilities
- Creating an installation package of a third-party application from the Kaspersky database
- Viewing and modifying the settings of an installation package of a third-party application from the Kaspersky database
- Settings of an installation package of a third-party application from the Kaspersky database
- Fixing vulnerabilities in an isolated network
- Scenario: Fixing third-party software vulnerabilities in an isolated network
- About fixing third-party software vulnerabilities in an isolated network
- Configuring the Administration Server with internet access to fix vulnerabilities in an isolated network
- Configuring isolated Administration Servers to fix vulnerabilities in an isolated network
- Transmitting patches and installing updates in an isolated network
- Disabling transmission of patches and installation of updates in an isolated network
- Using Application Control to manage executable files
- API Reference Guide
- Best Practices for Service Providers
- Planning Kaspersky Security Center Linux deployment
- Deployment and initial setup
- Recommendations on Administration Server installation
- Deploying Network Agent and security applications
- Configuring protection on a client organization's network
- Manual setup of the Kaspersky Endpoint Security policy
- Manual setup of the group update task for Kaspersky Endpoint Security
- Manual setup of the group task for scanning a device with Kaspersky Endpoint Security
- Scheduling the Find vulnerabilities and required updates task
- Manual setup of the group task for updates installation and vulnerabilities fix
- Building a structure of administration groups and assigning distribution points
- Hierarchy of policies, using policy profiles
- Tasks
- Device moving rules
- Software categorization
- Backup and restoration of Administration Server settings
- About connection profiles for out-of-office users
- Remote access to managed devices
- Sizing Guide
- About this Guide
- Calculations for Administration Servers
- Calculations for distribution points and connection gateways
- Logging of information about events for tasks and policies
- Best practices for an Administration Server that manages a large number of devices
- Specific considerations and optimal settings of certain tasks
- Details of network load spread among Administration Server and protected devices
- Known issues
- Contact Technical Support
- Sources of information about the application
- Glossary
- Active key
- Additional (or reserve) license key
- Administration Console
- Administration group
- Administration Server
- Administration Server certificate
- Administration Server client (Client device)
- Administration Server data backup
- Administrator rights
- Administrator's workstation
- Anti-virus databases
- Anti-virus protection service provider
- Application Shop
- Authentication Agent
- Available update
- Backup folder
- Broadcast domain
- Centralized application management
- Client administrator
- Cloud Discovery
- Configuration profile
- Connection gateway
- Demilitarized zone (DMZ)
- Device owner
- Direct application management
- Distribution point
- Event repository
- Event severity
- Group task
- Home Administration Server
- HTTPS
- Incompatible application
- Installation package
- Internal users
- iOS MDM device
- iOS MDM Server
- JavaScript
- Kaspersky Private Security Network (KPSN)
- Kaspersky Security Center Linux Administrator
- Kaspersky Security Center Linux Web Server
- Kaspersky Security Center Operator
- Kaspersky Security Center System Health Validator (SHV)
- Kaspersky update servers
- Key file
- License term
- Local installation
- Local task
- Managed devices
- Manual installation
- Network Agent
- Network anti-virus protection
- Network protection status
- Patch importance level
- Policy
- Profile
- Program settings
- Protection status
- Provisioning profile
- Remote installation
- Restoration
- Restoration of Administration Server data
- Role group
- Service provider's administrator
- Shared certificate
- SSL
- Task
- Task for specific devices
- Task settings
- Update
- Virtual Administration Server
- Virus outbreak
- Vulnerability
- Information about third-party code
- Trademark notices
Getting started > Installation > Certificates for work with Kaspersky Security Center Linux > Connecting Network Agents to Administration Server by using the klmover utility
Connecting Network Agents to Administration Server by using the klmover utility
Connecting Network Agents to Administration Server by using the klmover utility
You can use the klmover utility to restore connection from uncontrolled devices to Administration Server, for example, after an Administration Server failure, if it is not possible to restore it from a backup.
To restore the connection, run the klmover utility from the command line:
- For Linux:
- for 32-bit systems:
/opt/kaspersky/klnagent/bin/klmover [-address <server address>] [-pn <port number>] [-ps <SSL port number>] [-nossl] [-cert <path to certificate file>] - for 64-bit systems:
/opt/kaspersky/klnagent64/bin/klmover [-address <server address>] [-pn <port number>] [-ps <SSL port number>] [-nossl] [-cert <path to certificate file>]
- for 32-bit systems:
- For Windows:
- for 32-bit systems:
<path>\klmover.exe [-address <server address>] [-pn <port number>] [-ps <SSL port number>] [-nossl] [-cert <path to certificate file>] - for 64-bit systems:
<path>\klmover.exe [-address <server address>] [-pn <port number>] [-ps <SSL port number>] [-nossl] [-cert <path to certificate file>]
- for 32-bit systems:
where <path> is the default installation path for Network Agent or the installation path specified by you in the settings of the Network Agent installation package.
To prevent intruders from moving devices out of your Administration Server's control, we strongly recommend enabling password protection for running the klmover utility. To enable password protection, select the Use uninstallation password option in the Network Agent policy settings.
If you lose or forget the password for the klmover utility, you will not be able to run it. In this case, you have to reinstall the operating system and the application on the device.
The klmover utility requires local administrator rights.
Enabling the Use uninstallation password on Windows devices also enables password protection for the Cleaner tool (cleaner.exe).
You cannot use the klmover utility for client devices connected to Administration Server through connection gateways. For such devices you have to either reconfigure Network Agent or reinstall Network Agent and specify connection gateway.
The description of the klmover utility parameters is presented in the table below.
Values of the klmover utility parameters
Parameter |
Value |
|---|---|
|
Address of the Administration Server for connection. You can specify an IP address or the DNS name. |
|
Number of the port through which non-encrypted connection to the Administration Server is established. The default port number is 14000. |
|
Number of the SSL port through which encrypted connection to the Administration Server is established by using SSL. The default port number is 13000. |
|
Use non-encrypted connection to the Administration Server. If the key is not in use, Network Agent is connected to the Administration Server by using encrypted SSL protocol. |
|
Use the specified certificate file for authentication of access to Administration Server. |
|
See also: Scenario: Specifying the custom Administration Server certificate |
Article ID: 227839, Last review: Mar 31, 2025