Tenants registered in the Integration Server database may have the "Active" or "Inactive" status. By default, the tenant status is "Inactive".
For a complete tenant, the tenant status determines the protection status of tenant virtual machines:
To enable protection of the virtual machines for a complete tenant, you must activate the tenant. If you want to disable protection of the virtual machines for a complete tenant (stop providing protection services to the tenant), you can deactivate the tenant.
After the tenant is deactivated, events from the Light Agents installed on the tenant virtual machines are logged to the Kaspersky Security Center Administration Server. An event that there are no SVMs available for connection is logged once, and events indicating that the update task could not be run on the protected virtual machine are logged every 2 hours.
To avoid unauthorized use of the application, after a tenant is deactivated, it is recommended to block network connections from the deactivated tenant's subnet to the following TCP ports of the SVM subnet: 80, 9876, 9877, 11111, 11112.
For a simple tenant, the status does not affect the virtual machine protection status.
The tenant activation and deactivation procedures are automated using the Integration Server REST API.
Page top