You can install the Kaspersky Security management MMC plug-ins, Integration Server, and Integration Server Console in one of the following ways:
The MMC plug-ins, Integration Server, and Integration Server Console must be installed with the permissions of the account that belongs to the group of local administrators.
Installation requires at least 4 GB of free space on the drive containing the %ProgramData% folder.
Microsoft .NET Framework 4.6 or later is required for installation of the MMC plug-ins, Integration Server and Integration Server Console. You can install the Microsoft .NET Framework platform in advance or the Kaspersky Security components installation Wizard will suggest installing it during the installation of Kaspersky Security application components. Internet access is required to install Microsoft .NET Framework. If there are any problems with the installation of Microsoft .NET Framework, make sure that Windows updates KB2919442 and KB2919355 have been installed on the device.
Before starting installation of MMC plug-ins, Integration Server, and Integration Server Console, it is recommended to close Kaspersky Security Center Administration Console.
Depending on the availability of Kaspersky Security Center components installed on the device, the following operations are performed once installation is started:
where 5.2.X.X is the application version number.
For successful installation of the Integration Server, in the settings of network equipment or traffic monitoring software you need to allow connections through the port that will be used by SVMs and Light Agents to connect to the Integration Server. By default, port number 7271 (TCP) is used.
A secure SSL connection is used for interaction between the Integration Server and the Integration Server Console, SVMs, Light Agents, and VMware vCenter Server. To eliminate known vulnerabilities in the operating system for the SSL protocol, changes described in the Microsoft technical support website are made to the operating system registry during installation of the Integration Server. These changes disable the following encryption ciphers and protocols:
While the Integration Server is being installed, the Integration Server's self-signed SSL certificate used for establishing a secure connection with the Integration Server and for encrypting the communication channel between SVMs and Light Agent is installed in the operating system registry. After installing the Integration Server, it is recommended to replace this self-signed certificate with a more secure certificate. The procedure for replacing a certificate is described in the Knowledge Base.
If an Integration Server was previously installed in your virtual infrastructure and was used to work with Kaspersky Security 5.1 or higher (including Kaspersky Security updates 5.1.1, 5.1.2, and 5.1.3 ), and if you save the data used in the Integration Server operation when uninstalling the Integration Server, this data is automatically used when installing the Integration Server.