Configuring the settings for connecting SVMs to the Integration Server
You can use the Web Console or the Administration Console to configure the connection of SVMs to the Integration Server in a Protection Server policy, for example, when creating the default policy for the Protection Server.
In the main window of Kaspersky Security Center Web Console, select Assets (Devices) → Policies and policy profiles.
A list of policies opens.
Select the administration group containing the SVM with the Protection Server whose settings you want to configure. To do so, click the link in the Current path field located above the list of policies and policy profiles, and select an administration group in the window that opens.
The list displays only the policies configured for the selected administration group.
Click on the name of the desired policy in the list.
In the policy properties window that opens, select the Application settings tab and go to the Settings for connecting SVMs to the Integration Server section.
In the right part of the window, click the Edit button. In the Connection to the Integration Server window that opens, specify the address and port for connection:
Specify the IP address in IPv4 format or fully qualified domain name (FQDN) of the device on which the Integration Server is installed.
If the address is specified as a NetBIOS name, localhost or 127.0.0.1, connection to the Integration Server completes with an error.
If the port for connecting to the Integration Server differs from the default port (7271), specify the port number in the Port field.
Click Test in the Connection to the Integration Server window.
Kaspersky Security web plug-in verifies the SSL certificate received from the Integration Server. If the certificate contains an error or is not trusted, a corresponding message is displayed in the Connection to the Integration Server window. You can view information about the received certificate. If there are problems with the SSL certificate, it is recommended to make sure that the utilized data transfer channel is secure. To continue connecting to the Integration Server, select the Ignore option.
Specify the password of the Integration Server administrator (password of the admin account) and click the Test button in the Connection to the Integration Server window.
The capability to connect to the Integration Server is tested. If the connection test succeeds and the connection to the Integration Server is established, the Connection to the Integration Server window closes. After a connection has been established to the Integration Server under the administrator account, the account password is automatically relayed to the policy in order to connect SVM to the Integration Server.
If the connection test failed or a connection to the Integration Server could not be established, an error is displayed in the policy properties window. Check the connection settings you have specified.
Information about Integration Server connection errors may be saved in the Integration Server trace file (if you enabled the logging of information).
In the Kaspersky Security Center Administration Console tree, in the Managed devices folder, select the administration group containing the SVM with the Protection Server whose settings you want to configure.
In the workspace, select the Policies tab.
Select a Protection Server policy in the list of policies and right-click to open the Properties: <Policy name> window.
In the policy properties window, select the Settings for connecting SVMs to the Integration Server section in the list on the left.
In the right part of the window, specify the address and port for the connection:
By default, the Address field shows the domain name of the device hosting the Administration Console of Kaspersky Security Center. If this device does not belong to a domain or if the Integration Server is installed on a different device and the field shows the wrong address, specify the IP address in IPv4 format or the fully qualified domain name (FQDN) of the device on which the Integration Server is installed.
If the address is specified as a NetBIOS name, localhost or 127.0.0.1, connection to the Integration Server completes with an error.
If the port for connecting to the Integration Server differs from the default port (7271), specify the port number in the Port field.
Click Apply in the policy properties window.
If the device hosting the Kaspersky Security Center Administration Console does not belong to a domain or your account does not belong to the KLAdmins local or domain group or to the group of local administrators, the Connection to the Integration Server window opens. Specify the password of the Integration Server administrator (password of the admin account). After a connection has been established to the Integration Server under the administrator account, the account password is automatically relayed to the policy in order to connect SVM to the Integration Server.
Click OK in the Connection to the Integration Server window.
Kaspersky Security MMC plug-in verifies the SSL certificate received from the Integration Server. If the certificate contains an error or is not trusted, the Verify Integration Server certificate window opens. You can view information about the received certificate. If there are problems with the SSL certificate, it is recommended to make sure that the utilized data transfer channel is secure. To continue connecting to the Integration Server, click the Ignore button. The received certificate will be installed as a trusted certificate on the device where the Kaspersky Security Center Administration Console is installed.
The capability to connect to the Integration Server is tested. If the connection test failed or a connection to the Integration Server could not be established, an error is displayed in the policy properties window. Check the connection settings you have specified.
Information about Integration Server connection errors may be saved in the Integration Server trace file (if you enabled the logging of information).