Configuring the settings for connecting Light Agents to the Integration Server
To configure connection of Light Agents to the Integration Server in the Administration Console:
Open Kaspersky Security Center Administration Console.
In the Managed devices folder of the console tree, open the folder with the name of the administration group to which the relevant protected virtual machines belong.
In the workspace, select the Policies tab.
In the list of policies, select Light Agent for Windows policy to configure Light Agent for Windows settings, or Light Agent for Linux policy to configure Light Agent for Linux settings, and open the Settings: <Policy name> window by double-clicking it.
In the policy properties window, select the Integration Server connection settings section in the list on the left.
In the right part of the window, specify the address and port for the connection:
By default, the Address field shows the domain name of the device hosting the Administration Console of Kaspersky Security Center. If this device does not belong to a domain or if the Integration Server is installed on a different device and the field shows the wrong address, specify the IP address in IPv4 format or the fully qualified domain name (FQDN) of the device on which the Integration Server is installed.
If the address is specified as a NetBIOS name, localhost or 127.0.0.1, connection to the Integration Server completes with an error.
If the port for connecting to the Integration Server differs from the default port (7271), specify the port number in the Port field.
Click Apply in the policy properties window.
If the device hosting the Kaspersky Security Center Administration Console does not belong to a domain or your account does not belong to the KLAdmins local or domain group or to the group of local administrators, the Connection to the Integration Server window opens. Specify the password of the Integration Server administrator (password of the admin account). After a connection has been established to the Integration Server under the administrator account, the account password is automatically relayed to the policy in order to connect Light Agents to the Integration Server.
Click OK in the Connection to the Integration Server window.
Kaspersky Security MMC plug-in verifies the SSL certificate received from the Integration Server. If the certificate contains an error or is not trusted, the Verify Integration Server certificate window opens. You can view information about the received certificate. If there are problems with the SSL certificate, it is recommended to make sure that the utilized data transfer channel is secure. To continue connecting to the Integration Server, click the Ignore button. The received certificate will be installed as a trusted certificate on the device where the Kaspersky Security Center Administration Console is installed.
The capability to connect to the Integration Server is tested. If the connection test failed or a connection to the Integration Server could not be established, an error is displayed in the policy properties window. Check the connection settings you have specified. Information about Integration Server connection errors may be saved in the Integration Server trace file (if you enabled the logging of information).
To configure connection of Light Agent for Windows to the Integration Server in the local interface:
In the left part of the window, in the Connection to SVM section, select the Settings for connecting to the Integration Server section.
If the settings in the local interface are not available, this means that the values of settings defined by the policy are used for all protected virtual machines of the administration group.
Specify the address and port for the connection:
By default, the Address field shows the domain name of the device hosting the Administration Console of Kaspersky Security Center. If this device does not belong to a domain or if the Integration Server is installed on a different device and the field shows the wrong address, specify the IP address in IPv4 format or the fully qualified domain name (FQDN) of the device on which the Integration Server is installed.
If the address is specified as a NetBIOS name, localhost or 127.0.0.1, connection to the Integration Server completes with an error.
If the port for connecting to the Integration Server differs from the default port (7271), specify the port number in the Port field.
Click the Save button.
If the protected virtual machine does not belong to a domain or if your account does not belong to the KLAdmins local or domain group or to the group of local administrators on the device where the Integration Server is installed, the Connection to the Integration Server window opens. Specify the password of the Integration Server administrator (password of the admin account).
Click OK in the Connection to the Integration Server window.
The SSL certificate received from the Integration Server is checked. If the certificate contains an error or is not trusted, the Integration Server certificate verification window opens. You can click the button in the window to view the details of the received certificate. If there are problems with the SSL certificate, it is recommended to make sure that the utilized data transfer channel is secure. To continue connecting to the Integration Server, click the Ignore button. The received certificate will be installed as a trusted certificate on the protected virtual machine.
The capability to connect to the Integration Server is tested. If the connection test failed or a connection to the Integration Server could not be established, an error message window opens. Check the connection settings you have specified. Information about Integration Server connection errors may be saved in the Integration Server trace file (if you enabled the logging of information).