Kaspersky Security Center 15 Linux
- Kaspersky Security Center Linux Help
- What's new
- About Kaspersky Security Center Linux
- Architecture and basic concepts
- Architecture
- Deployment diagram of Kaspersky Security Center Linux Administration Server and Kaspersky Security Center Web Console
- Ports used by Kaspersky Security Center Linux
- Ports used by Kaspersky Security Center Web Console
- Basic concepts
- Administration Server
- Hierarchy of Administration Servers
- Virtual Administration Server
- Web Server
- Network Agent
- Administration groups
- Managed device
- Unassigned device
- Administrator's workstation
- Management web plug-in
- Policies
- Policy profiles
- Tasks
- Task scope
- How local application settings relate to policies
- Distribution point
- Connection gateway
- Schemas for data traffic and port usage
- Administration Server and managed devices on LAN
- Primary Administration Server on LAN and two secondary Administration Servers
- Administration Server on LAN, managed devices on internet, reverse proxy in use
- Administration Server on LAN, managed devices on internet, connection gateway in use
- Administration Server in DMZ, managed devices on internet
- Interaction of Kaspersky Security Center Linux components and security applications: more information
- Conventions used in interaction schemas
- Administration Server and DBMS
- Administration Server and client device: Managing the security application
- Upgrading software on a client device through a distribution point
- Hierarchy of Administration Servers: primary Administration Server and secondary Administration Server
- Hierarchy of Administration Servers with a secondary Administration Server in DMZ
- Administration Server, a connection gateway in a network segment, and a client device
- Administration Server and two devices in DMZ: a connection gateway and a client device
- Administration Server and Kaspersky Security Center Web Console
- Getting started
- Installation
- Configuring the MariaDB x64 server for working with Kaspersky Security Center Linux
- Configuring the PostgreSQL or Postgres Pro server for working with Kaspersky Security Center Linux
- Installing Kaspersky Security Center Linux
- Installing Kaspersky Security Center Linux in silent mode
- Installing Kaspersky Security Center Linux on Astra Linux in the closed software environment mode
- Installing Kaspersky Security Center Web Console
- Kaspersky Security Center Web Console installation parameters
- Installing Kaspersky Security Center Web Console on Astra Linux in the closed software environment mode
- Installing Kaspersky Security Center Web Console connected to Administration Server installed on Kaspersky Security Center Linux failover cluster nodes
- Deployment of the Kaspersky Security Center Linux failover cluster
- Scenario: Deployment of Kaspersky Security Center Linux failover cluster
- About Kaspersky Security Center Linux failover cluster
- Preparing a file server for a Kaspersky Security Center Linux failover cluster
- Preparing nodes for a Kaspersky Security Center Linux failover cluster
- Installing Kaspersky Security Center Linux on the Kaspersky Security Center Linux failover cluster nodes
- Starting and stopping cluster nodes manually
- Accounts for working with the DBMS
- Certificates for work with Kaspersky Security Center Linux
- About Kaspersky Security Center certificates
- Requirements for custom certificates used in Kaspersky Security Center Linux
- Reissuing the certificate for Kaspersky Security Center Web Console
- Replacing certificate for Kaspersky Security Center Web Console
- Converting a PFX certificate to the PEM format
- Scenario: Specifying the custom Administration Server certificate
- Replacing the Administration Server certificate by using the klsetsrvcert utility
- Connecting Network Agents to Administration Server by using the klmover utility
- Defining a shared folder
- Signing in to Kaspersky Security Center Web Console and signing out
- Changing the language of the Kaspersky Security Center Web Console interface
- Configuring the MySQL x64 server for working with Kaspersky Security Center Linux
- Quick start wizard
- Step 1. Specifying the internet connection settings
- Step 2. Downloading required updates
- Step 3. Selecting the assets to secure
- Step 4. Selecting encryption in solutions
- Step 5. Configuring installation of plug-ins for managed applications
- Step 6. Downloading distribution packages and creating installation packages
- Step 7. Configuring Kaspersky Security Network
- Step 8. Selecting the application activation method
- Step 9. Creating a basic network protection configuration
- Step 10. Configuring email notifications
- Step 11. Closing the quick start wizard
- Protection deployment wizard
- Starting Protection deployment wizard
- Selecting the installation package
- Selecting a method for distribution of key file or activation code
- Selecting Network Agent version
- Selecting devices
- Step 5. Specifying the remote installation task settings
- Step 6. Removing incompatible applications before installation
- Step 7. Moving devices to Managed devices
- Step 8. Selecting accounts to access devices
- Step 9. Starting installation
- Installation
- Upgrading Kaspersky Security Center Linux
- Upgrading Kaspersky Security Center Linux by using the installation file
- Upgrading Kaspersky Security Center Linux through backup
- Upgrading Kaspersky Security Center Linux on the Kaspersky Security Center Linux failover cluster nodes
- Upgrading Kaspersky Security Center Web Console
- Upgrading Kaspersky Security Center Web Console on Astra Linux in the closed software environment mode
- Migration to Kaspersky Security Center Linux
- Configuring Administration Server
- Configuring the connection of Kaspersky Security Center Web Console to Administration Server
- Configuring an allowlist of IP addresses to connect to Kaspersky Security Center Linux
- Configuring internet access settings for Administration Server
- Hierarchy of Administration Servers
- Creating a hierarchy of Administration Servers: adding a secondary Administration Server
- Viewing the list of secondary Administration Servers
- Managing virtual Administration Servers
- Configuring Administration Server connection events logging
- Setting the maximum number of events in the event repository
- Moving Administration Server to another device
- Changing DBMS credentials
- Backup copying and restoration of Administration Server data
- Administration Server maintenance
- Deleting a hierarchy of Administration Servers
- Access to public DNS servers
- Configuring the interface
- Encrypt communication with TLS
- Discovering networked devices
- Deployment best practices
- Hardening Guide
- Administration Server deployment
- Connection safety
- Accounts and authentication
- Managing protection of Administration Server
- Managing protection of client devices
- Configuring protection for managed applications
- Administration Server maintenance
- Event transfer to third-party systems
- Scenario: Authenticating MySQL Server
- Scenario: Authenticating PostgreSQL Server
- Preparation for deployment
- Planning Kaspersky Security Center Linux deployment
- Typical schemes of protection system deployment
- About planning Kaspersky Security Center Linux deployment in an organization's network
- Selecting a structure for protection of an enterprise
- Standard configurations of Kaspersky Security Center Linux
- Selecting a DBMS
- Providing internet access to Administration Server
- About distribution points
- Increasing the limit of file descriptors for the klnagent service
- Calculating the number and configuration of distribution points
- Virtual Administration Servers
- Network settings for interaction with external services
- Planning Kaspersky Security Center Linux deployment
- Deploying Network Agent and the security application
- Initial deployment
- Configuring installers
- Installation packages
- About remote installation tasks in Kaspersky Security Center Linux
- Deployment by capturing and copying the image of a device
- Network Agent disk cloning mode
- Forced deployment through the remote installation task of Kaspersky Security Center Linux
- Running stand-alone packages created by Kaspersky Security Center Linux
- Remote installation of applications on devices with Network Agent installed
- Managing device restarts in the remote installation task
- Suitability of databases updating in an installation package of a security application
- Monitoring the deployment
- Configuring installers
- Virtual infrastructure
- Support of file system rollback for devices with Network Agent
- Local installation of applications
- Installing Network Agent for Linux in interactive mode
- Installing Network Agent for Windows in interactive mode
- Installing Network Agent for Windows in silent mode
- Installing applications in silent mode
- Installing applications by using stand-alone packages
- Network Agent installation package settings
- Initial deployment
- Manual setup of the group task for scanning a device with Kaspersky Endpoint Security
- Hardening Guide
- Managing client devices
- Settings of a managed device
- Device moving rules
- Adding devices to an administration group manually
- Moving devices or clusters to an administration group manually
- About clusters and server arrays
- Properties of a cluster or server array
- Adjustment of distribution points and connection gateways
- Standard configuration of distribution points: Single office
- Standard configuration of distribution points: Multiple small remote offices
- Calculating the number and configuration of distribution points
- Assigning distribution points automatically
- Assigning distribution points manually
- Modifying the list of distribution points for an administration group
- Enabling a push server
- About device statuses
- Configuring the switching of device statuses
- Device selections
- Device tags
- Creating a device tag
- Renaming a device tag
- Deleting a device tag
- Viewing devices to which a tag is assigned
- Viewing tags assigned to a device
- Tagging a device manually
- Removing an assigned tag from a device
- Viewing rules for tagging devices automatically
- Editing a rule for tagging devices automatically
- Creating a rule for tagging devices automatically
- Running rules for auto-tagging devices
- Deleting a rule for tagging devices automatically
- Managing device tags by using the klscflag utility
- Data encryption and protection
- Changing the Administration Server for client devices
- Moving devices connected to Administration Server through connection gateways to another Administration Server
- Viewing and configuring the actions when devices show inactivity
- Sending messages to device users
- Turning on, turning off, and restarting client devices remotely
- Managing administration groups
- Deploying Kaspersky applications
- Scenario: Kaspersky applications deployment
- Adding management plug-ins for Kaspersky applications
- Downloading and creating installation packages for Kaspersky applications
- Creating installation packages from a file
- Creating stand-alone installation packages
- Changing the limit on the size of custom installation package data
- Installing Network Agent for Linux in silent mode (with an answer file)
- Preparing a device running Astra Linux in the closed software environment mode for installation of Network Agent
- Viewing the list of stand-alone installation packages
- Distributing installation packages to secondary Administration Servers
- Preparing a Linux device and installing Network Agent on a Linux device remotely
- Installing applications using a remote installation task
- Specifying settings for remote installation on Unix devices
- Starting and stopping Kaspersky applications
- Replacing third-party security applications
- Removing applications or software updates remotely
- Preparing a device running SUSE Linux Enterprise Server 15 for installation of Network Agent
- Preparing a Windows device for remote installation
- Licensing
- Licensing of Kaspersky Security Center Linux
- Licensing of managed Kaspersky applications
- Licensing of managed applications
- Adding a license key to the Administration Server repository
- Deploying a license key to client devices
- Automatic distribution of a license key
- Viewing information about license keys in use
- Events of the licensing limit exceeded
- Deleting a license key from the repository
- Revoking consent with an End User License Agreement
- Renewing licenses for Kaspersky applications
- Using Kaspersky Marketplace to choose Kaspersky business solutions
- Configuring Kaspersky applications
- Scenario: Configuring network protection
- About device-centric and user-centric security management approaches
- Policy setup and propagation: Device-centric approach
- Policy setup and propagation: User-centric approach
- Policies and policy profiles
- Network Agent policy settings
- Usage of Network Agent for Windows, Linux, and macOS: Comparison
- Comparison of Network Agent settings by operating systems
- Manual setup of the Kaspersky Endpoint Security policy
- Configuring Kaspersky Security Network
- Checking the list of the networks protected by Firewall
- Disabling the scan of network drives
- Excluding software details from the Administration Server memory
- Configuring access to the Kaspersky Endpoint Security for Windows interface on workstations
- Saving important policy events in the Administration Server database
- Manual setup of the group update task for Kaspersky Endpoint Security
- Kaspersky Security Network (KSN)
- Managing tasks
- Application tags
- Granting offline access to the external device blocked by Device Control
- Using the klscflag utility to open port 13291
- Registering Kaspersky Industrial CyberSecurity for Networks application in Kaspersky Security Center Web Console
- Managing users and user roles
- About user accounts
- About user roles
- Configuring access rights to application features. Role-based access control
- Adding an account of an internal user
- Creating a security group
- Editing an account of an internal user
- Editing a security group
- Assigning a role to a user or a security group
- Adding user accounts to an internal security group
- Assigning a user as a device owner
- Enabling account protection from unauthorized modification
- Two-step verification
- Scenario: Configuring two-step verification for all users
- About two-step verification for an account
- Enabling two-step verification for your own account
- Enabling required two-step verification for all users
- Disabling two-step verification for a user account
- Disabling required two-step verification for all users
- Excluding accounts from two-step verification
- Configuring two-step verification for your own account
- Prohibit new users from setting up two-step verification for themselves
- Generating a new secret key
- Editing the name of a security code issuer
- Changing the number of allowed password entry attempts
- Deleting a user or a security group
- Creating a user role
- Editing a user role
- Editing the scope of a user role
- Deleting a user role
- Associating policy profiles with roles
- Propagating user roles to secondary Administration Servers
- Updating Kaspersky databases and applications
- Scenario: Regular updating Kaspersky databases and applications
- About updating Kaspersky databases, software modules, and applications
- Creating the Download updates to the Administration Server repository task
- Verifying downloaded updates
- Creating the task for downloading updates to the repositories of distribution points
- Adding sources of updates for the Download updates to the Administration Server repository task
- Automatic installation of updates for Kaspersky Endpoint Security for Windows
- About using diff files for updating Kaspersky databases and software modules
- Enabling the Downloading diff files feature
- Downloading updates by distribution points
- Updating Kaspersky databases and software modules on offline devices
- Backing up and restoring web plug-ins
- Monitoring, reporting, and audit
- Scenario: Monitoring and reporting
- About types of monitoring and reporting
- Dashboard and widgets
- Reports
- Events and event selections
- About events in Kaspersky Security Center Linux
- Events of Kaspersky Security Center Linux components
- Using event selections
- Creating an event selection
- Editing an event selection
- Viewing a list of an event selection
- Exporting an event selection
- Importing an event selection
- Viewing details of an event
- Exporting events to a file
- Viewing an object history from an event
- Deleting events
- Deleting event selections
- Setting the storage term for an event
- Blocking frequent events
- Event processing and storage on the Administration Server
- Notifications and device statuses
- Kaspersky announcements
- Exporting events to SIEM systems
- Configuring event export to SIEM systems
- Before you begin
- About event export
- About configuring event export in a SIEM system
- Marking of events for export to SIEM systems in Syslog format
- About exporting events using Syslog format
- Configuring Kaspersky Security Center Linux for export of events to a SIEM system
- Exporting events directly from the database
- Viewing export results
- Managing object revisions
- Rolling back an object to a previous revision
- Deletion of objects
- Downloading and deleting files from Quarantine and Backup
- Remote diagnostics of client devices
- Opening the remote diagnostics window
- Enabling and disabling tracing for applications
- Downloading trace files of an application
- Deleting trace files
- Downloading application settings
- Downloading system information from a client device
- Downloading event logs
- Starting, stopping, restarting the application
- Running the remote diagnostics of Kaspersky Security Center Linux Network Agent and downloading the results
- Running an application on a client device
- Generating a dump file for an application
- Running remote diagnostics on a Linux-based client device
- Managing third-party applications and executable files on client devices
- Using Application Control to manage executable files
- Application Control modes and categories
- Obtaining and viewing a list of applications installed on client devices
- Obtaining and viewing a list of executable files stored on client devices
- Creating an application category with content added manually
- Creating an application category that includes executable files from selected devices
- Creating an application category that includes executable files from selected folder
- Viewing the list of application categories
- Configuring Application Control in the Kaspersky Endpoint Security for Windows policy
- Adding event-related executable files to the application category
- API Reference Guide
- Best Practices for Service Providers
- Planning Kaspersky Security Center Linux deployment
- Deployment and initial setup
- Recommendations on Administration Server installation
- Deploying Network Agent and security applications
- Configuring protection on a client organization's network
- Manual setup of the Kaspersky Endpoint Security policy
- Manual setup of the group update task for Kaspersky Endpoint Security
- Manual setup of the group task for scanning a device with Kaspersky Endpoint Security
- Scheduling the Find vulnerabilities and required updates task
- Manual setup of the group task for updates installation and vulnerabilities fix
- Building a structure of administration groups and assigning distribution points
- Hierarchy of policies, using policy profiles
- Tasks
- Device moving rules
- Software categorization
- Backup and restoration of Administration Server settings
- About connection profiles for out-of-office users
- Remote access to managed devices
- Sizing Guide
- About this Guide
- Calculations for Administration Servers
- Calculations for distribution points and connection gateways
- Logging of information about events for tasks and policies
- Best practices for an Administration Server that manages a large number of devices
- Specific considerations and optimal settings of certain tasks
- Details of network load spread among Administration Server and protected devices
- Contact Technical Support
- Sources of information about the application
- Known issues
- Glossary
- Active key
- Additional (or reserve) license key
- Administration Console
- Administration group
- Administration Server
- Administration Server certificate
- Administration Server client (Client device)
- Administration Server data backup
- Administrator rights
- Administrator's workstation
- Anti-virus databases
- Anti-virus protection service provider
- Application Shop
- Authentication Agent
- Available update
- Backup folder
- Broadcast domain
- Centralized application management
- Client administrator
- Configuration profile
- Connection gateway
- Demilitarized zone (DMZ)
- Device owner
- Direct application management
- Distribution point
- Event repository
- Event severity
- Group task
- Home Administration Server
- HTTPS
- Incompatible application
- Installation package
- Internal users
- JavaScript
- Kaspersky Private Security Network (KPSN)
- Kaspersky Security Center Linux Administrator
- Kaspersky Security Center Linux Web Server
- Kaspersky Security Center Operator
- Kaspersky Security Center System Health Validator (SHV)
- Kaspersky update servers
- Key file
- License term
- Local installation
- Local task
- Managed devices
- Manual installation
- Network Agent
- Network anti-virus protection
- Network protection status
- Policy
- Profile
- Program settings
- Protection status
- Provisioning profile
- Remote installation
- Restoration
- Restoration of Administration Server data
- Role group
- Service provider's administrator
- Shared certificate
- SSL
- Task
- Task for specific devices
- Task settings
- Update
- Virtual Administration Server
- Information about third-party code
- Trademark notices
Configuring Administration Server > Backup copying and restoration of Administration Server data
Backup copying and restoration of Administration Server data
Backup copying and restoration of Administration Server data
Data backup allows you to move Administration Server from one device to another without data loss. Through backup, you can restore data when moving the Administration Server database to another device, or when upgrading to a newer version of Kaspersky Security Center Linux (moving the Administration Server data to be under management of Kaspersky Security Center Windows is not supported).
Note that the installed management plug-ins are not backed up. After you restore Administration Server data from a backup copy, you need to download and reinstall plug-ins for managed applications.
Before you back up the Administration Server data, check whether a virtual Administration Server is added to the administration group. If a virtual Administration Server is added, make sure that an administrator is assigned to this virtual Administration Server before the backup. You cannot grant the administrator access rights to the virtual Administration Server after the backup. Note that if the administrator account credentials are lost, you will not be able to assign a new administrator to the virtual Administrator Server.
You can create a backup copy of Administration Server data in one of the following ways:
- By creating and running a data backup task through Kaspersky Security Center Web Console.
- By running the klbackup utility on the device that has Administration Server installed. This utility is included in the Kaspersky Security Center distribution kit. After the installation of Administration Server, the utility is located in the root of the destination folder specified at the application installation (usually, /opt/kaspersky/ksc64/sbin/klbackup).
The following data is saved in the backup copy of Administration Server:
- Database of Administration Server (policies, tasks, application settings, events saved on the Administration Server).
- Configuration details of the structure of administration groups and client devices.
- Repository of distribution packages of applications for remote installation.
- Administration Server certificate.
Recovery of Administration Server data is only possible using the klbackup utility.
|
In this section |
See also: |
Article ID: 3667, Last review: Apr 5, 2025