Integration with multiple KATA servers

Only applicable when integrating with KATA 5.0 or a later version.

Configuring the integration of KSMG with multiple KATA servers involves the following steps.

1. Preparing a configuration file for the local balancer
2. Configuring and running a local balancer on each node of the KSMG cluster
3. Adding a KATA server

   Specify 127.0.0.1:8000 as the address of the KATA server.

   When adding a KATA server, you must compare the certificate fingerprints displayed in the web interfaces of KSMG and KATA. If the fingerprints match, the administrator confirms addition of the KATA server. Then the Control node sends the address and certificate of the KATA server to all cluster nodes without waiting for authorization confirmation.

4. Configuring KATA protection settings

   You can configure the following settings:

   • Sending all messages to be scanned by KATA or only those messages in which nothing was detected after scans by all application modules.
   • Timeout for a response from the KATA server.
   • KATA Quarantine settings.
5. KSMG authorization in the web interface of the KATA application

   When adding a KATA server, a request is sent for authorization of the external system. In the KATA web interface, the KATA administrator must confirm this request for authorization from each cluster node. For details about processing requests from external systems, please refer to the Kaspersky Anti Targeted Attack Platform Help Guide.

6. Checking the KATA server connection

Page top