This section describes how to configure the settings using the Administration Console and in Light Agent for Windows local interface.
To enable or disable connection protection on Light Agents in the Administration Console:
Open Kaspersky Security Center Administration Console.
In the Managed devices folder of the console tree, open the folder with the name of the administration group to which the relevant protected virtual machines belong.
In the workspace, select the Policies tab.
In the list of policies, select Light Agent for Windows policy to configure Light Agent for Windows settings, or Light Agent for Linux policy to configure Light Agent for Linux settings, and open the Settings: <Policy name> window by double-clicking it.
In the policy properties window, select the Connection protection section in the list on the left.
In the right part of the window, do one of the following:
If you want to enable encryption of the connection between Light Agents and SVMs, select the Encrypt data channel between Light Agent and SVMs check box. A Light Agent for which connection encryption is enabled can connect only to those SVMs on which the connection is encrypted. By default, connection encryption is disabled on Light Agents and SVMs.
If you want to disable encryption of the connection between Light Agents and SVMs, clear the Encrypt data channel between Light Agent and SVMs checkbox. A Light Agent whose connection encryption is disabled can connect to SVMs on which the connection is not encrypted or a non-secure connection is allowed.
Click the Apply button.
To enable or disable connection protection on Light Agent for Windows in the local interface:
In the left part of the window, in the Connection to SVM section, select the Connection protection section.
If the settings in the local interface are not available, this means that the values of settings defined by the policy are used for all protected virtual machines of the administration group.