Managing the solution using Kaspersky Security Center policies

You can use the Kaspersky Security Center Administration Console or Kaspersky Security Center Web Console to work with policies.

You can perform the following policy management operations:

• Create a policy.
• Edit policy settings.
• Delete a policy.
• Change policy status.
• Copy and move a policy (only in Kaspersky Security Center Web Console).
• Export and import a policy.

The policy settings and groups of settings have a lock attribute, which shows whether a setting or group of settings can be changed in task settings or in policies of the nested hierarchy level (for nested administration groups and virtual and secondary Administration Servers).

The following Kaspersky Security Center policies are used to manage Kaspersky Security solution settings:

• A Protection Server policy (Kaspersky Security <version number> Light Agent – Protection Server policy) is applied to SVMs. The policy defines the operating settings of Protection Servers on all SVMs included in the administration group for which the policy is configured.

  The Kaspersky Security Center quick start wizard lets you automatically create a default policy for the Protection Server. A default policy is created for the Managed devices administration group with the name Kaspersky Security for Virtualization 6.0 Light Agent – Protection Server and is applied on all SVMs placed in the Managed devices administration group or to any nested administration group.

  You can change the default values of this policy settings.

• A Light Agent policy (Kaspersky Endpoint Security <version number> for Linux policy) is applied to virtual machines with Linux guest operating systems. The policy defines the settings for the operation of Kaspersky Endpoint Security for Linux, which is used in Light Agent mode on virtual machines. The policy is applied on all protected virtual machines belonging to the administration group for which the policy is configured.

  With the Light Agent policy, you can configure:

  • general settings for the operating of Kaspersky Endpoint Security for Linux in Light Agent mode;
  • security settings for devices on which the application is installed;
  • settings for connecting Light Agent to an SVM and to the Integration Server, which are necessary for running Kaspersky Endpoint Security for Linux in Light Agent mode to protect the virtual infrastructure.

  For detailed information about Kaspersky Endpoint Security for Linux policy settings, see the Kaspersky Endpoint Security for Linux Help.

  You can create policy profiles in the Kaspersky Endpoint Security for Linux policy. Using policy profiles allows more flexibility in configuring the Light Agent settings on different virtual machines. A policy profile may contain settings that differ from the settings of a basic policy and that are applied to protected virtual machines when your own defined conditions (activation rules) are met.

  You can create and configure policy profiles in the policy properties in the Policy profiles section.

For more information about working with policies and policy profiles, see the Kaspersky Security Center Help.

In this section: Policy settings for the Protection Server Creating a Protection Server policy Editing settings of the Protection Server policy

Page top