Contents
- Kaspersky Security Integrations for MSP
- What's new
- Kaspersky Security Plug-in for ConnectWise Automate
- Kaspersky Security Plug-in for ConnectWise Automate
- Deployment schemas of Kaspersky Security Plug-in for ConnectWise Automate
- Installing and removing Kaspersky Security Plug-in for ConnectWise Automate
- Getting started with Kaspersky Security Plug-in for ConnectWise Automate
- Connecting to Kaspersky Lab solutions
- Viewing information on Kaspersky dashboard
- Running Kaspersky Lab management commands
- Monitoring and alerting
- Deploying Kaspersky Lab security applications from the Control Center
- Plug-in modifications to ConnectWise Automate configuration
- Enabling and disabling tracing
- Glossary
- Contact Technical Support
- AO Kaspersky Lab
- Information about third-party code
- Trademark notices
- Kaspersky Security Integration with ConnectWise Manage
- Kaspersky Security Integration with ConnectWise Manage
- Deployment schemas of Kaspersky Security Integration with ConnectWise Manage
- Integration scenario
- Installing and removing Kaspersky Security Integration with ConnectWise Manage
- Updating Kaspersky Security Integration with ConnectWise Manage
- Interface of Kaspersky Security Integration with ConnectWise Manage
- Getting started
- Managing integrations
- Configuring integration in Kaspersky Security Integration with ConnectWise Manage
- Configuring integration by using the registry
- Managing administrators
- Enabling and disabling tracing
- Reporting
- Custom fields in ConnectWise Manage
- Glossary
- Contact Technical Support
- AO Kaspersky Lab
- Information about third-party code
- Trademark notices
- Kaspersky Security Integration with Autotask
- Kaspersky Security Integration with Autotask
- Deployment schemas of Kaspersky Security Integration with Autotask
- Integration scenario
- Installing and removing Kaspersky Security Integration with Autotask
- Updating Kaspersky Security Integration with Autotask
- Interface of Kaspersky Security Integration with Autotask
- Getting started
- Managing integrations
- Configuring integration in Kaspersky Security Integration with Autotask
- Configuring integration by using the registry
- Managing administrators
- Enabling and disabling tracing
- Reporting
- User-defined fields in Autotask
- Glossary
- Contact Technical Support
- AO Kaspersky Lab
- Information about third-party code
- Trademark notices
- Kaspersky Security Integration with Tigerpaw
- Kaspersky Security Integration with Tigerpaw
- Integration scenario
- Installing and removing Kaspersky Security Integration with Tigerpaw
- Interface of Kaspersky Security Integration with Tigerpaw
- Getting started
- Managing integrations
- Configuring integration in Kaspersky Security Integration with Tigerpaw
- Mapping accounts and enabling automatic billing
- Setting up service order creation
- Mapping Tigerpaw price book items to security applications
- Viewing accounts not integrated with Kaspersky Lab security applications
- Configuring integration by using the registry
- Managing administrators
- Enabling and disabling tracing
- Custom fields in Tigerpaw
- Glossary
- Contact Technical Support
- AO Kaspersky Lab
- Information about third-party code
- Trademark notices
- Kaspersky Security Integration with SolarWinds N-central
- Kaspersky Security Integration with SolarWinds N-central
- Prerequisites
- Integration scenario
- Deploying Kaspersky Security Integration with SolarWinds N-central
- Running an automation policy
- Viewing the anti-virus protection status of a device
- Adding a dashboard
- Deploying Kaspersky Lab security applications from SolarWinds N-central
- Glossary
- Contact Technical Support
- AO Kaspersky Lab
- Kaspersky Lab End User License Agreement
- Trademark notices
Kaspersky Security Integrations for MSP
Kaspersky Security Plug-in for ConnectWise Automate
Kaspersky Security Integration with ConnectWise Manage
Kaspersky Security Integration with Autotask
Kaspersky Security Integration with Tigerpaw
Kaspersky Security Integration with SolarWinds N-central
Page top
What's new
The following new features are implemented in Kaspersky Security Integrations for MSP.
Version 1 Maintenance Release 5:
- Integration of Kaspersky Lab security applications with SolarWinds N-central. In particular:
- Deploying Kaspersky Lab security applications from SolarWinds N-central.
- Viewing the anti-virus protection status of devices.
- Running a virus scan on devices.
- Performing an anti-virus database update on devices.
- Adding dashboards for viewing Kaspersky Lab-related information about the devices in your network.
Version 1 Maintenance Release 4:
- Integration of Kaspersky Security for Microsoft Office 365 with professional services automation (PSA) systems ConnectWise Manage, Autotask, and Tigerpaw. In particular:
- Creating a ticket or a service order in the PSA system when Kaspersky Security for Microsoft Office 365 notifies that a certain issue occurs in its operation.
- Closing a ticket or a service order in the PSA system when Kaspersky Security for Microsoft Office 365 notifies that a previously occurred issue is resolved.
- Providing the PSA system with the information about the number of mailboxes that Kaspersky Security for Microsoft Office 365 protects for each customer workspace. This data is required for automatic generation of invoices for your customers.
Version 1 Maintenance Release 3:
- Integration with Tigerpaw.
- Improved ConnectWise Automate dashboards:
- The new Licensing dashboard is implemented.
- Drill-down capability for the Protection dashboards is implemented.
- Capability to generate reports on Kaspersky Security Center virtual servers / Kaspersky Endpoint Security Cloud workspaces and license reports directly from ConnectWise Automate and Autotask.
- Improved billing functionality: capability to separate the usage of licenses for Kaspersky Lab products by servers and workstations managed by Kaspersky Security Center / Kaspersky Endpoint Security Cloud (the number of computers that use a certain license).
- Additional interface and usability improvements.
Version 1 Maintenance Release 2:
- Integration with Autotask.
Kaspersky Security Plug-in for ConnectWise Automate
This section describes Kaspersky Security Plug-in for ConnectWise Automate. It contains a general description of the software and provides instructions for working with it.
Kaspersky Security Plug-in for ConnectWise Automate
This section describes the purpose, functions, and distribution kit of Kaspersky Security Plug-in for ConnectWise Automate, and provides hardware and software requirements for Kaspersky Security Plug-in for ConnectWise Automate.
About Kaspersky Security Plug-in for ConnectWise Automate
Kaspersky Security Plug-in for ConnectWise Automate is used to integrate Kaspersky Lab security applications into your ConnectWise Automate Control Center to provide a combination of monitoring and management tools, and protection technologies. The Plug-in allows you to monitor and manage the state of all Kaspersky Lab security applications installed at your clients’ locations, by means of one tool—so multiple software products are not needed.
Kaspersky Endpoint Security applications provide enterprise-class protection services and, when integrated with ConnectWise Automate Control Center by means of Kaspersky Security Plug-in for ConnectWise Automate, help to boost the efficiency of your protection monitoring and management.
ConnectWise Automate administrators can use Kaspersky Security Plug-in for ConnectWise Automate to install Kaspersky Endpoint Security and Kaspersky Security Center Network Agent remotely, monitor and manage different security aspects of computers in the client's corporate network, and initiate virus scan and anti-virus database update tasks on client computers. Security incident data is received and can be used to generate tickets and alerts or perform specific actions.
Page top
About data provision
Kaspersky Security Plug-in for ConnectWise Automate is designed for the integration of Kaspersky Lab solutions for administration of security applications with ConnectWise Automate within the framework of the functionality described in this Help document.
To use Kaspersky Security Plug-in for ConnectWise Automate, you must install the integration components and connect them to the Kaspersky Lab solution you use, create an integration with ConnectWise Automate, specify connection parameters and integration settings and select your customers’ virtual servers / workspaces for the integration.
By using the product, you agree that said product may receive data from ConnectWise Automate and the connected virtual servers / workspaces, as well as store, process, and display information that is intended for ensuring the product functionality.
By creating an integration and connecting ConnectWise Automate and virtual servers / workspaces to the product, you thus confirm that you are the sole owner of any data you provide or that you are entitled to provide any data.
Any information provided is protected and processed in accordance with the Kaspersky Lab Privacy Policy.
For the purpose of integration of Kaspersky Security Center / Kaspersky Endpoint Security Cloud and ConnectWise Automate, Kaspersky Security Plug-in for ConnectWise Automate may receive, store, and process the following types of data:
- Data required to connect to the integrated software:
- Parameters for connecting to Kaspersky Security Center Administration Server, including an account.
- Account for connecting to Kaspersky Endpoint Security Cloud.
- Data about Kaspersky Security Center / Kaspersky Endpoint Security Cloud events and about assigning the Critical and Warning statuses to computers managed by Kaspersky Security Center / Kaspersky Endpoint Security Cloud. This data is required for automatic creation of tickets or similar entities.
- Data about licenses used at Kaspersky Security Center virtual servers / Kaspersky Endpoint Security Cloud workspaces and about attributes of these licenses. This data is displayed in reports and on dashboards in ConnectWise Automate.
- Data about the protection status of computers managed by Kaspersky Security Center / Kaspersky Endpoint Security Cloud (the computer name, the protection status, the detailed description of the status, the number of viruses found, the last scan date and time, and the last anti-virus database update date and time) and data about events. This data is displayed on dashboards in ConnectWise Automate.
- Integration settings:
- Type of integrated platform (ConnectWise Automate).
- Integration name.
- Integration ID (for integrations with Kaspersky Endpoint Security Cloud).
- Date and time of integration creation.
- Set of integrated virtual servers / workspaces.
- List of Kaspersky Endpoint Security Cloud administrators (their aliases and email addresses) who are also granted administrative privileges in the integration.
For integrations with Kaspersky Endpoint Security Cloud, the received data may be stored and processed within the Kaspersky Endpoint Security Cloud infrastructure according to the Kaspersky Endpoint Security Cloud data provision. For details, refer to section "About data provision" in Kaspersky Endpoint Security Cloud Online Help.
All received data is used by the MSP administrators and technicians. Kaspersky Lab Technical Support specialists may also use the above data when an MSP administrator contacts Technical Support.
Page top
Features of Kaspersky Security Plug-in for ConnectWise Automate
Kaspersky Security Plug-in for ConnectWise Automate provides the following features.
Protection monitoring
Kaspersky Lab monitors for ConnectWise Automate are designed specifically to react to any security issues that may occur on protected computers. The monitors perform appropriate actions depending on the issue type: raise alerts, create tickets, and automatically run virus scans and update commands for the anti-virus database. The monitoring feature of Kaspersky Security Plug-in for ConnectWise Automate automates most routine tasks, allowing you to focus on activities that are most critical and valuable for your business.
Ticketing
With the help of Kaspersky Security Plug-in for ConnectWise Automate, Kaspersky Lab solutions can be integrated directly into the ConnectWise Automate ticketing system to create tickets on the basis of the security issues.
Simplified protection management
Integration with Kaspersky Lab solutions allows you to manage everyday tasks through a single, easy-to-use dashboard embedded in ConnectWise Automate. Management features include on-demand endpoint scans and virus signature database updates.
Remote deployment
Integration with Kaspersky Lab solutions includes a script that easily enables silent and remote installation of Kaspersky Security Center Network Agents and Kaspersky Endpoint Security directly from ConnectWise Automate.
Centralized dashboard
Kaspersky Lab's powerful and easy-to-use dashboard, integrated into ConnectWise Automate, gives managed service providers (MSPs) an overview of all aspects of their clients’ security. You can briefly view the protection status in high-level diagrams, where important issues are highlighted, and then proceed to more detailed views of events and full information about protected computers. Thus, you can start solving problems immediately. Also, the dashboard provides the information about all keys added to Kaspersky Security Center Administration Servers or Kaspersky Endpoint Security Cloud workspaces.
Compatibility
Kaspersky Lab solutions can be integrated with both installed and cloud versions of ConnectWise Automate. Kaspersky Security Plug-in for ConnectWise Automate also supports Multivendor Antivirus Dashboard, so that you are able to use this convenient tool to monitor and manage the state of Kaspersky Lab security applications installed on your client companies’ workstations or Windows servers.
Distribution kit
Kaspersky Security Plug-in for ConnectWise Automate is delivered as a free plug-in, which you can unpack and install on the computer that has ConnectWise Automate Control Center installed.
You can download the plug-in from the Kaspersky Lab website or from ConnectWise Automate Solution Center.
Page top
Hardware and software requirements
Recommended hardware:
- The recommended minimum screen resolution for work with Kaspersky Security Plug-in for ConnectWise Automate is 1280x1024 or 1366x768, as the minimum window size is 1240x700.
Software requirements:
- Kaspersky Security Center Administration Server 10 Service Pack 2 Maintenance Release 1 and later or Kaspersky Endpoint Security Cloud
- ConnectWise Automate 10.5, 11, and 12.
Kaspersky Security Plug-in for ConnectWise Automate Maintenance Release 2.1 (build 1.0.2.227) or later is required for successful integration with ConnectWise Automate 12. Earlier versions of Kaspersky Security Plug-in are not compatible with ConnectWise Automate 12.
- Supported operating systems are the same as those supported by ConnectWise Automate Agent. Refer to ConnectWise Automate documentation for details.
Deployment schemas of Kaspersky Security Plug-in for ConnectWise Automate
Kaspersky Security Plug-in for ConnectWise Automate is used to integrate Kaspersky Lab solutions with ConnectWise Automate Control Center. The Plug-in allows you to monitor and manage the state of all Kaspersky Lab security applications installed at your clients’ locations by means of one convenient tool—so multiple software products are not needed.
The deployment schema that suits your integration depends on the Kaspersky Lab solution you use and on your integration model. There are three deployment schemas:
- For an on-premises version of a Kaspersky Lab solution—Kaspersky Security Center.
- For an on-premises version of a Kaspersky Lab solution—Kaspersky Security Center with slave Administration Servers.
- For a cloud-based version of a Kaspersky Lab solution—Kaspersky Endpoint Security Cloud.
This section describes the deployment schemas in detail.
Deployment schema for on-premises solution
Deploy Kaspersky Security Plug-in for ConnectWise Automate based on this schema if you use an on-premises version of a Kaspersky Lab solution—Kaspersky Security Center—and if you do not have slave Administration Servers in your managed company infrastructure.
The components of Kaspersky Security Plug-in for ConnectWise Automate are shown as orange rectangles in the following figure.
Deployment schema for on-premises solution
The following list describes deployment sequence and data flow:
- First, Kaspersky Security Plug-in for ConnectWise Automate is installed on the computer where ConnectWise Automate Server is installed.
- Then the computers managed by ConnectWise Automate, and with Kaspersky Security Center Administration Server installed, are detected and Kaspersky Security Plug-in for ConnectWise Automate is installed on those computers.
- ConnectWise Automate Server exchanges data with the computers that have ConnectWise Automate Agents installed.
- Kaspersky Security Center Administration Server exchanges data with client computers that have Kaspersky Lab programs installed. These computers are considered managed if they have only Network Agent installed, or protected if they have Kaspersky Endpoint Security installed.
Deployment schema for on-premises solution and slave servers
Deploy Kaspersky Security Plug-in for ConnectWise Automate based on this schema if you use an on-premises version of a Kaspersky Lab solution—Kaspersky Security Center—and if you use slave Administration Servers in your managed company infrastructure.
The components of Kaspersky Security Plug-in for ConnectWise Automate are shown as orange rectangles in the following figure.
Deployment schema for on-premises solution and slave servers
The following list describes deployment prerequisites, deployment sequence, and data flow:
- One or more Administration Servers are used in the client's infrastructure. These Administration Servers are slave Administration Servers relative to the Administration Server that is installed in the MSP infrastructure. The Administration Server that is installed in the MSP infrastructure is the master Administration Server. You can use this type of deployment to decrease load on your master Administration Server.
- First, Kaspersky Security Plug-in for ConnectWise Automate is installed on the computer where ConnectWise Automate Server is installed.
- Then the computers managed by ConnectWise Automate, and with Kaspersky Security Center Administration Server installed, are detected and Kaspersky Security Plug-in for ConnectWise Automate is installed on those computers.
- ConnectWise Automate Server exchanges data with the computers that have ConnectWise Automate Agents installed.
- Kaspersky Security Center Administration Server exchanges data with client computers that have Kaspersky Lab programs installed. These computers are considered managed if they have only Network Agent installed, or protected if they have Kaspersky Endpoint Security installed.
Deployment schema for cloud-based solution
Deploy Kaspersky Security Plug-in for ConnectWise Automate based on this schema if you use the cloud-based version of a Kaspersky Lab solution—Kaspersky Endpoint Security Cloud.
The components of Kaspersky Security Plug-in for ConnectWise Automate are shown as orange rectangles in the following figure.
Deployment schema for cloud-based solution
The following list describes deployment prerequisites, deployment sequence, and data flow:
- First, Kaspersky Security Plug-in for ConnectWise Automate is installed on the computer, where ConnectWise Automate Server is installed.
- Kaspersky Security Plug-in for ConnectWise Automate is installed on a computer that has ConnectWise Automate Server installed and the "Cloud Bridge" role assigned. The "Cloud Bridge" role indicates that this computer interacts with Kaspersky Endpoint Security Cloud and connects ConnectWise Automate and Kaspersky Endpoint Security Cloud like a bridge.
- ConnectWise Automate Server exchanges data with the computers that have ConnectWise Automate Agents installed.
- Data from Kaspersky Endpoint Security Cloud workspaces is transferred to Kaspersky Security Plug-in for ConnectWise Automate and ConnectWise Automate through the "Cloud Bridge" computer.
Installing and removing Kaspersky Security Plug-in for ConnectWise Automate
Kaspersky Security Plug-in for ConnectWise Automate is delivered as a plug-in, which you unpack and install on the computer that has ConnectWise Automate Control Center installed.
This section contains step-by-step instructions for Kaspersky Security Plug-in for ConnectWise Automate installation, update, and removal.
Installing Kaspersky Security Plug-in for ConnectWise Automate
To successfully install Kaspersky Security Plug-in for ConnectWise Automate, download and save the latest version of Kaspersky Security Plug-in for ConnectWise Automate from the Kaspersky Lab website.
Before you install Kaspersky Security Plug-in for ConnectWise Automate, it is strongly recommended to check its digital signature, to make sure that the Plug-in is issued by Kaspersky Lab.
To check the Kaspersky Security Plug-in for ConnectWise Automate digital signature:
- Locate the KasperskyPlugin.dll file, which you downloaded from the Kaspersky Lab website.
- Right-click the KasperskyPlugin.dll file and select Properties.
- In the properties window that opens, click the Digital Signatures tab and check that the KasperskyPlugin.dll file has Kaspersky Lab signatures.
- Close the properties window.
After you download and check the digital signature of Kaspersky Security Plug-in for ConnectWise Automate, use ConnectWise Automate Plugin Manager to install Kaspersky Security Plug-in for ConnectWise Automate.
To install Kaspersky Security Plug-in for ConnectWise Automate:
- Open ConnectWise Automate Control Center.
- On the main menu, do either of the following:
- Select Help → Plugin Manager (if you use ConnectWise Automate 10.5 or 11).
- Select System → Solutions → Plugin Manager (if you use ConnectWise Automate 12).
- In the Plugin Manager window that opens, select Advanced → Manage Plugins → Add Plugin.
- In the window that opens, locate the Plug-in file and click Open.
- In the Add a Plugin dialog box, do the following:
- Specify the Plug-in settings.
- Make sure that the Remote Agent check box is cleared.
If the Remote Agent check box is selected, the Plug-in is installed on all the computers on the network, including those on which Kaspersky Lab security applications are not installed. This causes an additional load on ConnectWise Automate.
- Click the Save and Close button.
The Plug-in is added to the Disabled Plugins list in ConnectWise Automate Plugin Manager.
- In the Plugin Manager window, click the Refresh button.
The list of installed plug-ins is updated and now contains Kaspersky Security Plug-in for ConnectWise Automate.
- Enable Kaspersky Security Plug-in for ConnectWise Automate:
- In the list of plug-ins, right-click Kaspersky Security Plug-in for ConnectWise Automate and select Enable.
- From the Advanced drop-down list, select Reload Plugins → Reload DBAgent Plugins.
- Close the Plugin Manager window. If you are prompted, click OK.
- Restart ConnectWise Automate Control Center. The new Plug-in is downloaded.
The Kaspersky icon is displayed on the ConnectWise Automate Control Center toolbar. Click this icon to open the Kaspersky Security Plug-in for ConnectWise Automate dashboard.
Updating Kaspersky Security Plug-in for ConnectWise Automate
If an earlier version of Kaspersky Security Plug-in for ConnectWise Automate is already installed, you can upgrade it to the latest version. For this purpose, download and save the latest version of Kaspersky Security Plug-in for ConnectWise Automate from the Kaspersky Lab website, and then use ConnectWise Automate Plugin Manager to update to the latest version.
Before you use the new version of Kaspersky Security Plug-in for ConnectWise Automate, it is strongly recommended to check its digital signature, to make sure that the Plug-in is issued by Kaspersky Lab.
To check the Kaspersky Security Plug-in for ConnectWise Automate digital signature:
- Locate the KasperskyPlugin.dll file, which you downloaded from the Kaspersky Lab website.
- Right-click the KasperskyPlugin.dll file and select Properties.
- In the properties window that opens, click the Digital Signatures tab and check that the KasperskyPlugin.dll file has Kaspersky Lab signatures.
- Close the properties window.
After you download and check the digital signature of Kaspersky Security Plug-in for ConnectWise Automate, use ConnectWise Automate Plugin Manager to update Kaspersky Security Plug-in for ConnectWise Automate.
To update Kaspersky Security Plug-in for ConnectWise Automate:
- Open ConnectWise Automate Control Center.
- On the main menu, do either of the following:
- Select Help → Plugin Manager (if you use ConnectWise Automate 10.5 or 11).
- Select System → Solutions → Plugin Manager (if you use ConnectWise Automate 12).
- In the Plugin Manager window that opens, in the list of plug-ins select Kaspersky Security Plug-in for ConnectWise Automate.
- In the Plugin Manager window, on the menu bar select Advanced → Manage Plugins → Update Plugin.
- In the window that opens, locate the Plug-in file and click Open.
The Plug-in update starts automatically. After the Plug-in is updated, you are notified that the process is complete.
Page top
Removing Kaspersky Security Plug-in for ConnectWise Automate
You can remove Kaspersky Security Plug-in for ConnectWise Automate by means of ConnectWise Automate Plugin Manager.
To remove Kaspersky Security Plug-in for ConnectWise Automate:
- Open ConnectWise Automate Control Center.
- On the main menu, do either of the following:
- Select Help → Plugin Manager (if you use ConnectWise Automate 10.5 or 11).
- Select System → Solutions → Plugin Manager (if you use ConnectWise Automate 12).
- In the Plugin Manager window that opens, in the list of plug-ins select Kaspersky Security Plug-in for ConnectWise Automate.
- In the Plugin Manager window, on the menu bar select Advanced → Manage Plugins → Remove Plugin.
- A message appears, confirming removal of the Plug-in.
Kaspersky Security Plug-in for ConnectWise Automate is removed.
After Kaspersky Security Plug-in for ConnectWise Automate is removed, all modifications that the Plug-in made to the initial ConnectWise Automate configuration remain in the system. That is, all the scripts, roles, monitors, and other items are still available, as well as any database tables added by the Plug-in. The process of complete removal of the Plug-in and all its items is described in the Knowledge Base. The SQL scripts for removing all Plug-in components are provided as well.
If tracing is enabled, the trace files are not removed from the temporary folders on the ConnectWise Automate server, computers that have ConnectWise Automate Control Center installed, or Automate Agents. You can manually remove them later from the following folder: %windir%\temp\KasperskyPluginLogs\.
Getting started with Kaspersky Security Plug-in for ConnectWise Automate
After you install Kaspersky Security Plug-in for ConnectWise Automate, you must perform additional configuration in ConnectWise Automate Control Center to be able to use the Plug-in with your Kaspersky Lab solution.
This section describes the actions that you must perform when getting started with Kaspersky Security Plug-in for ConnectWise Automate. The actions depend on the Kaspersky Lab solution you use. Refer to one of the following sections to get started with Kaspersky Security Plug-in for ConnectWise Automate.
Prerequisites
When configuring integration, you must specify the parameters of the Kaspersky Lab solution you integrate with (Kaspersky Security Center / Kaspersky Endpoint Security Cloud). It is recommended that you check these parameters in advance in order to prepare for setting up integration.
Kaspersky Security Center parameters
Check the following parameters:
- Address of the computer on which Kaspersky Security Center Administration Server is installed.
- Credentials: user name and password for the computer on which Administration Server is installed.
- If you establish connection to the Administration Server through a proxy server, check the proxy server parameters: network address or domain name and credentials for the proxy server.
Kaspersky Endpoint Security Cloud parameters
Check the credentials of your Kaspersky Business Hub account: email address and password.
Additional prerequisites
During the integration process, it is required to add Kaspersky Endpoint Security Cloud workspaces to your integration. Prior to integration, you must create workspaces and distribute computers of client companies between these workspaces.
If you use Kaspersky Security Center, creation of virtual servers is optional.
Page top
Getting started if Kaspersky Security Center Administration Server is used
After you install Kaspersky Security Plug-in for ConnectWise Automate, deploy it on the computers where Kaspersky Security Center Administration Server is installed.
Kaspersky Security Plug-in for ConnectWise Automate adds new role detection rules to the ConnectWise Automate database. The new roles are Kaspersky Security Administration Server and Kaspersky Security Network Agent. These roles are used by the Plug-in to automatically detect the Administration Server computers, and the client computers, managed by the Administration Server. The Plug-in is then deployed on computers that have Administration Server installed. However, role detection and Plug-in deployment occur not immediately but instead during the scheduled synchronization procedure. You can force the process of role detection and Plug-in deployment manually using the tools provided by ConnectWise Automate.
You can perform the Plug-in deployment procedure at any level: for a client, a location, or an individual computer. When you deploy the Plug-in for a higher level, it is deployed for all sublevels as well. For example, when you deploy the Plug-in for a location, it is deployed for all the computers at this location that have Kaspersky Security Center installed.
To get started using the Plug-in:
- In the ConnectWise Automate navigation tree, use the context menu to execute the Commands → Inventory → Update Config command for all Kaspersky Security Center Administration Servers and computers, managed by the Administration Servers, or for the computers' parent client or location.
When you execute the command for a client or location, the command is applied to all the computers under this client or location. As a result, the configuration of the selected computers is updated and includes new Plug-in role definitions.
- Also in the ConnectWise Automate navigation tree, use the context menu to execute the Commands → Inventory → Resend System Info command for all Administration Servers and computers, managed by the Administration Servers, or for the computers' parent client or location.
As a result, the Automate Agents on the selected computers send the updated system information, including information on the detected roles, to the ConnectWise Automate server.
Getting started if Kaspersky Endpoint Security Cloud is used
After you install Kaspersky Security Plug-in for ConnectWise Automate, it must be integrated with Kaspersky Endpoint Security Cloud.
The integration process consists of the following phases:
- Creating a new integration or editing an existing one. At this phase, you create an integration and add workspaces and administrators to this integration, or edit the list of workspaces and administrators of an existing integration. Adding workspaces to an integration is required to get information on computers and events from these workspaces. Adding administrators is required to allow these administrators to manage the workspaces and integration itself.
- Assigning the "bridge" role to the computer. This role indicates that this computer interacts with Kaspersky Endpoint Security Cloud and connects ConnectWise Automate and Kaspersky Endpoint Security Cloud like a bridge.
- Providing the connection settings for the bridge. At this step, you specify the credentials to be used by the bridge to connect to Kaspersky Endpoint Security Cloud.
Managing integrations
This section describes how to edit or delete an existing integration and how to create a new integration.
Creating a new integration
When you use Kaspersky Security Plug-in for ConnectWise Automate for the first time, you must create an integration between Kaspersky Endpoint Security Cloud and ConnectWise Automate.
Later, you can edit an existing integration, as described in Editing an integration, or create another integration. You may have to create several integrations for load balancing purposes by selecting different workspaces in different integrations, and then assigning the "bridge" role to several computers and connecting each of these computers to different integrations. As a result, the load of interacting with Kaspersky Endpoint Security Cloud is distributed between several computers.
To create an integration:
- Open ConnectWise Automate Control Center.
- Select Dashboard on the toolbar (if you use ConnectWise Automate 10.5 or 11) or select System → Configuration → Dashboard (if you use ConnectWise Automate 12).
- In the System Dashboard window that opens, click the following sequence of tabs: Config → Integration → Kaspersky.
- On the Kaspersky tab, specify the user name and password that you use to connect to Kaspersky Endpoint Security Cloud:
Connecting to Kaspersky Endpoint Security Cloud
- User name—Email address used for your Kaspersky Endpoint Security Cloud account. This field cannot be blank.
- Password—Password to connect to Kaspersky Endpoint Security Cloud. This field cannot be blank.
- Click the Sign in button.
After you connect to Kaspersky Endpoint Security Cloud, the Integration settings section appears.
Specifying integration settings
- Click the Create new link.
- Provide the integration name in the dialog box that opens. The Integration name field cannot be blank. By default, the integration name is Integration with ConnectWise Automate.
For an integration with Kaspersky Endpoint Security Cloud, click the View integration ID link under the integration name to view the identifier of the integration. You may have to provide this ID to Kaspersky Lab Technical Support for diagnostics and troubleshooting.
- Specify the following integration settings:
- Workspaces. Select workspaces for your integration. For details, refer to Editing the list of integration workspaces.
- Administrators. Select administrators for your integration. For details, refer to Editing the list of integration administrators.
- To save changes, close the System Dashboard window when you have finished specifying the integration settings.
Kaspersky Endpoint Security Cloud is now integrated with ConnectWise Automate.
Editing an integration
Editing an integration means renaming it or editing the list of workspaces and administrators that are related to the integration, that is, adding or removing workspaces and administrators to / from the integration.
To edit an integration:
- On the Kaspersky tab of ConnectWise Automate Control Center, go to the Integration settings section. For details, refer to Creating a new integration, steps 1–5.
- In the Select integration drop-down list, select the integration that you want to edit.
- If you want to rename the integration, click the Rename link and provide the new integration name in the dialog box that opens. The Integration name field cannot be blank.
For an integration with Kaspersky Endpoint Security Cloud, click the View integration ID link under the integration name to view the identifier of the integration. You may have to provide this ID to Kaspersky Lab Technical Support for diagnostics and troubleshooting.
- If you want to edit the list of workspaces for your integration, refer to Editing the list of integration workspaces.
- If you want to edit the list of administrators for your integration, refer to Editing the list of integration administrators.
- To save changes, close the System Dashboard window when you have finished editing the integration settings.
Kaspersky Endpoint Security Cloud integration with ConnectWise Automate is now updated.
Page top
Editing the list of integration workspaces
When you create or edit an integration with ConnectWise Automate, edit the list of Kaspersky Endpoint Security Cloud workspaces associated with your integration.
When you add workspaces to the integration, information from these workspaces is synchronized between Kaspersky Endpoint Security Cloud and ConnectWise Automate, and ConnectWise Automate gains access to these workspaces. You may also have to remove a client’s workspace from the integration, for example, if your company no longer provides services to this client. After you remove a workspace, information from this workspace is no longer synchronized with ConnectWise Automate, but all integration administrators are able to continue administering this workspace in Kaspersky Endpoint Security Cloud.
Adding workspaces to the integration is required when you create a new integration.
To edit the list of integration workspaces:
- In the Integration settings window that opens after you connect to Kaspersky Endpoint Security Cloud, click the Edit link next to Workspaces.
- In the Select workspaces dialog box, the list of workspaces is displayed. Do one of the following:
- Select the check boxes next to the workspaces that you want to add to the integration.
- Clear the check boxes next to the workspaces that you want to remove from the integration.
- Click OK when you have selected the required workspaces.
The list of workspaces associated with the selected integration is now saved.
Editing the list of integration administrators
When you create or edit an integration with ConnectWise Automate, edit the list of administrators of your integration. You can add integration administrators as well.
When you add administrators to the integration, they have the same rights as existing administrators: they can administer all Kaspersky Endpoint Security Cloud workspaces bound to this integration and manage the integration settings.
When you remove administrators from the integration, they can no longer manage this integration and cannot administer its workspaces. You may have to remove administrators, for example, if they stop working for your company or move to new positions within the company and are no longer allowed to manage integrations.
Adding administrators to the integration is required when you create a new integration.
To add integration administrators:
- In the Integration settings window that opens after you connect to Kaspersky Endpoint Security Cloud, click the Add new link next to Administrators.
- In the Add administrators dialog box that opens, specify the email addresses and aliases associated with the Kaspersky Lab accounts of the users that you want to add as new administrators. You can add several administrators at a time.
- Use a semicolon to separate the email address and alias of an administrator.
- Type the data for each administrator in a new line.
Only users registered in Kaspersky Endpoint Security Cloud can be added to the integration.
- Click Next and check the data that you provided. If everything is correct, click Finish to add the administrators to the integration. If you want to change the information you provided, click Back.
- After you perform all the actions with administrators' accounts, click OK.
- The new administrators are added to the list of administrators of the selected integration.
To remove integration administrators:
- In the Integration settings window that opens after you connect to Kaspersky Endpoint Security Cloud, click the Edit link next to Administrators.
The Select administrators dialog box opens, and names of all the administrators of the selected integration are displayed. The check boxes are selected next to all administrators of the integration.
- To remove one or more administrators from the integration, clear the check boxes next to these administrator names.
- Click OK.
The list of administrators associated with the selected integration is now saved. The removed administrators can no longer administer the workspaces of this integration.
Deleting an existing integration
You can delete an existing integration in the Integration settings section.
When you delete an integration, all workspaces linked to the integration are unbound from the integration and continue to exist in Kaspersky Endpoint Security Cloud. All administrators of the deleted integration receive notifications that the integration was deleted, but they can continue to administer workspaces that were linked to this integration. All workspaces that are unbound from the deleted integration can be added to other integrations.
To delete an integration:
- On the Kaspersky tab of ConnectWise Automate Control Center, go to the Integration settings section. For details, refer to Creating a new integration, steps 1–5.
- In the Select integration drop-down list, select the integration that you want to delete.
- Click Delete.
- Confirm integration deletion in the dialog box.
The integration is deleted.
Page top
Supplementary parameter
The parameter that indicates the type of Kaspersky Endpoint Security Cloud server to which Kaspersky Security Plug-in for ConnectWise Automate connects may be included in the .config file of ConnectWise Automate.
The parameter name is KESCloudServer; its possible values are:
- production—Kaspersky Security Plug-in for ConnectWise Automate works with the Production server.
- beta—Kaspersky Security Plug-in for ConnectWise Automate works with the Beta server.
- test—Kaspersky Security Plug-in for ConnectWise Automate works with the Test server.
You are strongly urged not to modify the KESCloudServer parameter unless you receive clear instructions from Kaspersky Lab.
By default, the KESCloudServer parameter is not displayed in the .config file of ConnectWise Automate.
The KESCloudServer parameter can be specified as follows:
<appSettings>
<add key="KESCloudServer" value="production" />
</appSettings>
Managing the "bridge" role of a computer
When you install Kaspersky Security Plug-in for ConnectWise Automate, a new role definition is added to the ConnectWise Automate configuration. This role definition is Kaspersky Endpoint Security Cloud Bridge. This role shows that a computer with such a role interacts with Kaspersky Endpoint Security Cloud, connecting it to ConnectWise Automate like a bridge.
The computer to be assigned the "bridge" role must meet the following requirements:
- Stable access to the Internet.
- ConnectWise Automate Agent installed.
- Kaspersky Security Center Administration Console installed.
The "bridge" role is assigned to a computer manually. When you assign the "bridge" role to a computer, the computer is authorized to perform requests to Kaspersky Endpoint Security Cloud and return the results to ConnectWise Automate.
You can also remove the "bridge" role from a computer, for example, if you want to assign this role to another computer.
The exact steps required to assign and remove the "bridge" role depend on the ConnectWise Automate version that you use.
If you use ConnectWise Automate 10.5 or 11
To assign the "bridge" role to a computer:
- In the ConnectWise Automate navigation tree, select the computer to which you want to assign the "bridge" role.
- Right-click the selected computer, point to Commands → LabTech, and then click Kaspersky - Assign Kaspersky Endpoint Security Cloud Bridge Role.
Configuration of the selected computer is updated and the "bridge" role is assigned to the computer.
- Double-click the selected computer. The computer management screen opens.
- Click the Detected Roles tab (if you use ConnectWise Automate 10.5), or on the Automation (
) tab click the Detected Roles tile (if you use ConnectWise Automate 11), and check that the "bridge" role is present in the list of roles for the selected computer.
To remove the "bridge" role from a computer:
- In the ConnectWise Automate navigation tree, select the computer from which you want to remove the "bridge" role.
- Right-click the selected computer, point to Commands → LabTech, and then click Kaspersky - Remove Kaspersky Endpoint Security Cloud Bridge Role.
Configuration of the selected computer is updated and the "bridge" role is removed from the computer.
- Double-click the selected computer. The computer management screen opens.
- Click the Detected Roles tab (if you use ConnectWise Automate 10.5), or on the Automation () tab click the Detected Roles tile (if you use ConnectWise Automate 11), and check that the "bridge" role is absent in the list of roles for the selected computer.
If you use ConnectWise Automate 12
To assign the "bridge" role to a computer:
- In the ConnectWise Automate 12 browser, select the computer to which you want to assign the "bridge" role.
- Double-click the selected computer. The computer management screen opens.
- On the Automation () tab, click the Detected Roles tile. Click the Add button.
- In the Role Template list, select Kaspersky Endpoint Security Cloud Bridge. Click OK to save the changes.
- In the ConnectWise Automate navigation tree, right-click the computer, point to Commands → Remote Agent, and then click Update Plug-ins.
- On the Automation () tab of the computer management screen, click the Detected Roles tile and check that the "bridge" role is present in the list of roles for the selected computer.
To remove the "bridge" role from a computer:
- In the ConnectWise Automate 12 browser, select the computer from which you want to remove the "bridge" role.
- Double-click the selected computer. The computer management screen opens.
- On the Automation () tab, click the Detected Roles tile.
- Right-click the Kaspersky Endpoint Security Cloud Bridge role, and then click Delete Role. Confirm the action.
- In the ConnectWise Automate navigation tree, right-click the computer, point to Commands → Remote Agent, and then click Update Plug-ins.
- On the Automation () tab of the computer management screen, click the Detected Roles tile and check that the "bridge" role is absent in the list of roles for the selected computer.
Connecting to Kaspersky Lab solutions
This section describes the Kaspersky tab of the Computer Management screen in ConnectWise Automate Control Center. This section also explains how to use this tab to configure connection between Kaspersky Security Plug-in for ConnectWise Automate and the Kaspersky Lab solution you use (Kaspersky Security Center or Kaspersky Endpoint Security Cloud) and how to view information about computers and events.
About the Kaspersky tab
Kaspersky Security Plug-in for ConnectWise Automate adds the Kaspersky tab to the Computer Management screen for computers that have the Kaspersky Security Center Administration Server role or Kaspersky Endpoint Security Cloud Bridge role in ConnectWise Automate. On this tab, you can view and edit connection settings for Kaspersky Security Center Administration Servers or Kaspersky Endpoint Security Cloud integrations. The Kaspersky tab also provides information about the computers managed by the selected Administration Server or retrieved from Kaspersky Endpoint Security Cloud workspaces by the selected bridge and about the events that occurred on those computers.
Click the Kaspersky tab to specify connection settings for the Kaspersky Lab solution you use:
- Kaspersky Security Center Administration Server, if you use an on-premises version of a Kaspersky Lab solution.
- Kaspersky Endpoint Security Cloud integration, if you use the Cloud version of a Kaspersky Lab solution.
The channel of data exchange between ConnectWise Automate Agent and ConnectWise Automate Server must be secure, since it is used for transferring data from Kaspersky Security Center. You may use VPN to ensure that you connection is protected.
The Kaspersky tab is displayed only for computers that have the Kaspersky Security Center Administration Server role or the Kaspersky Endpoint Security Cloud Bridge role in ConnectWise Automate.
The Kaspersky tab of the Computer Management screen has three second-level tabs. In the left vertical pane of the Kaspersky tab, you can shift between these three tabs. By default, the Settings tab is displayed.
- Settings—Click this tab to view and configure the connection settings for the Kaspersky Lab solution you use. The appearance of the Settings tab depends on the Kaspersky Lab solution that is being used.
- Computers—Click this tab to view information about computers managed by the selected Administration Server or retrieved from Kaspersky Endpoint Security Cloud workspaces by the selected bridge.
- Events—Click this tab to view information about events registered on the computers managed by the selected Administration Server or retrieved from Kaspersky Endpoint Security Cloud workspaces by the selected bridge.
Connecting to Kaspersky Security Center Administration Server
After Kaspersky Security Plug-in for ConnectWise Automate is installed, specify the connection settings for all Kaspersky Security Center Administration Servers. Connection settings can be specified in ConnectWise Automate, on the Kaspersky tab of the Computer Management screen for each of the Administration Server computers. Kaspersky Security Plug-in for ConnectWise Automate uses the specified settings to connect to the Administration Servers and receive security information from them. This security information is then displayed on the Kaspersky dashboard.
Use the Settings tab to view and specify the connection settings for Kaspersky Security Center Administration Server.
Connecting to Kaspersky Security Center Administration Server
Specify the following settings to connect to Kaspersky Security Center Administration Server:
- User name—User name to connect to Administration Server. This field cannot be blank.
- Password—Password to connect to Administration Server. This field cannot be blank.
If you changed any of the connection settings, click Save for your changes to take effect. The newly specified connection settings are then checked and saved. Usually, establishing a new connection takes several minutes.
The Administration Server connection settings you provided are stored in the ConnectWise Automate server database. The password is stored in encrypted form by Kaspersky Security Plug-in for ConnectWise Automate.
Connecting to Kaspersky Endpoint Security Cloud
After you assign the "bridge" role to the computer (see section Managing the "bridge" role of a computer for details), open the Computer Management screen of this computer and proceed to the Kaspersky tab. On the Kaspersky tab, specify your credentials to be used by the bridge to connect to Kaspersky Endpoint Security Cloud.
To connect to Kaspersky Endpoint Security Cloud:
- Click the Kaspersky tab of the Computer Management screen.
Connecting to Kaspersky Endpoint Security Cloud
- On the Settings tab, specify the following connection settings:
- User name—Email address used for your Kaspersky Endpoint Security Cloud account. This field cannot be blank.
- Password—Password to connect to Kaspersky Endpoint Security Cloud. This field cannot be blank
- Click Proceed to connect to Kaspersky Endpoint Security Cloud using the specified settings.
Selecting integration and specifying integration settings
- In the Provide integration settings section that is displayed, select the previously configured integration in the Select Integration drop-down list.
You can view the identifier of your integration by clicking the Integration ID link.
- If you cannot find the required integration in the drop-down list, make sure that the user account provided in step 2 has access to this integration. To change the user specified in step 2 and connect to the integration using other credentials, click Switch user and in the Set up connection to Kaspersky Endpoint Security Cloud section specify the user name and password as instructed in step 2.
- If you want the Kaspersky Endpoint Security Cloud Bridge computer to establish connection through the proxy server, in the Provide integration settings section select the Use proxy server check box and provide the following proxy server settings:
- Address—Network address of the proxy server. Provide the address in the following format: host:port.
- User name—User name to connect to the proxy server
- Password—Password to connect to the proxy server.
- Click Save to save the connection settings you provided.
The system validates the settings. If the settings you provided are correct, connection with Kaspersky Endpoint Security Cloud is established.
Viewing computer information
The Computers tab displays a list of computers managed by the selected Administration Server or retrieved from Kaspersky Endpoint Security Cloud workspaces by the selected bridge.
Viewing computer information
Click the Computers tab to view information, provided by the Kaspersky Lab solution, about protection of the computers in your network. You can use the left navigation tree and the set of filters to quickly find required computers, for example, those installed in a specific location or with a specific protection status.
Filters in the top pane allow convenient searching of computers. You can filter the computers by protection states, name, and status. To restrict your computer selection and to view only the computers with selected properties, apply several filters at the same time. Every time you open the Computers tab, the previously used filter settings are restored—there is no need to set up filters again.
Use the navigation tree to display the computers of a specific client or location. Do one of the following:
- Click the Clients node to display all the computers managed by the selected Administration Server or received from Kaspersky Endpoint Security Cloud workspaces by the selected "bridge".
- Click the name of a specific client to view the computers of this client that are managed by the selected Administration Server or retrieved from Kaspersky Endpoint Security Cloud workspaces by the selected bridge.
- Click the name of a specific location to view the computers at this location that are managed by the selected Administration Server or retrieved from Kaspersky Endpoint Security Cloud workspaces by the selected bridge.
Information about the computers is displayed as a table. You can sort information in the table by any of the table columns by clicking the column header. For each computer you can find the following information:
- Computer—Name of the computer. The computer name can be different in ConnectWise Automate and in the Kaspersky Lab solution. The computer name for ConnectWise Automate is displayed above and the name for Kaspersky Security Center / Kaspersky Endpoint Security Cloud is displayed below. When you click the computer name, the Computer Management screen of ConnectWise Automate Control Center is displayed for this computer.
Computer names
- Status—Current protection status of the managed computer. If the computer is not managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud, this field is blank.
- Status description—Detailed description of the problems detected on the selected computer, if the computer status differs from OK. If the computer is not managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud, this field is blank.
- Agent installed—Yes, if Kaspersky Security Center Network Agent is installed on the selected computer; otherwise, No.
- Viruses found—Number of viruses found on the selected computer. If the computer is not managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud, this field is blank.
- Last scan—Date and time when a scan of the selected computer was last performed. If the computer is not managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud, this field is blank.
- Database issued—Date and time when anti-virus databases on the selected computer were issued. If the computer is not managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud, this field is blank.
- Last information update—Date and time when information on a computer was last updated in Kaspersky Security Center or Kaspersky Endpoint Security Cloud. If more than five days passed since the date when information on a computer was last updated, this computer is deleted from the ConnectWise Automate database and is no longer displayed in the computer list.
When you select a computer or a group of computers in the table, its properties are displayed in the Statistics and commands pane on the right side of the screen. You can run a virus scan and anti-virus database update task in the Statistics and commands pane for the selected computer or group.
In addition to the properties in the table, the following computer properties and actions are displayed in the Statistics and commands pane:
- Commands—Click one of the links in this group to scan the computer for viruses or update the anti-virus databases on the computer.
- Client—Name of the ConnectWise Automate client that the computer belongs to.
- Location—Name of the ConnectWise Automate location that the computer belongs to.
You can view which problems on the computers require your attention. For this purpose, select the computers you are interested in. The problems detected on these computers are displayed in the Detected problems field in the Statistics and commands pane, accompanied by the total number of computers selected.
Viewing event information
On the Events tab, a list of events is displayed that occurred on the computers managed by the selected Administration Server or received from Kaspersky Endpoint Security Cloud workspaces by the selected bridge.
Viewing event information
Click the Events tab to view additional information, obtained from the Kaspersky Lab solution, about the security issues detected on a particular computer or group of computers.
In the top pane, you can configure filters to view only the events with selected properties. You can filter events by severity level, client, computer, or time of occurrence. To restrict your event selection and view only those events with selected properties, apply several filters at the same time. Every time you open the Events tab, the previously used filter settings are restored—there is no need to set up filters again.
Information on the events is displayed as a table. You can sort information in the table by any of the table columns by clicking the column header. For each event, you can view the following information:
- Client—Name of a ConnectWise Automate client company. The computer on which the event occurred belongs to this client. This field is applicable if you use Kaspersky Security Center; it is blank if you use Kaspersky Endpoint Security Cloud.
- Severity—Severity level of the event according to Kaspersky Security Center or Kaspersky Endpoint Security Cloud.
- Time occurred—Time when the event occurred.
- Computer—Name of the computer on which the event occurred. The computer name can be different in ConnectWise Automate and in the Kaspersky Lab solution. The computer name for ConnectWise Automate is displayed on the first line of the entry and the name for Kaspersky Security Center / Kaspersky Endpoint Security Cloud on the second line. When you click the computer name, the Computer Management screen of ConnectWise Automate Control Center is displayed for this computer.
- Event—Name and description of the event.
When you select an event in the table, its properties are displayed in the pane on the right side of the screen. In addition to those in the table, the following event properties are displayed:
- Location—Name of the ConnectWise Automate location. The computer on which the event occurred belongs to this location. This field is displayed if you use Kaspersky Security Center; it is not displayed if you use Kaspersky Endpoint Security Cloud.
- Virtual Server—Name of the Kaspersky Security Center virtual server. The computer on which the event occurred is located on this server. This field is displayed if you use Kaspersky Security Center; it is not displayed if you use Kaspersky Endpoint Security Cloud.
- Kaspersky Security Center group—Name of a Kaspersky Security Center group. The computer on which the event occurred belongs to this group. This field is displayed if you use Kaspersky Security Center; it is not displayed if you use Kaspersky Endpoint Security Cloud.
- Application—Name of the application that the event is related to.
- Version—Version the application that the event is related to.
- Task—Name of the task that the event is related to. This field is displayed if you use Kaspersky Security Center; it is not displayed if you use Kaspersky Endpoint Security Cloud.
Viewing information on Kaspersky dashboard
Kaspersky Security Plug-in for ConnectWise Automate adds the Kaspersky icon to the ConnectWise Automate Control Center toolbar. When you click this icon, the Kaspersky Security Plug-in for ConnectWise Automate window opens. This window contains a set of dashboards where you can view Kaspersky Lab-related information about the computers in your network.
When you open the Kaspersky Security Plug-in for ConnectWise Automate window, the Statistics tab is displayed, showing a set of charts with information about the protection status of the computers on the network.
In the left vertical pane of the Kaspersky Security Plug-in for ConnectWise Automate, window you can shift between the following tabs:
- Statistics—Click this tab to view high-level information about computer protection, deployment, and database status in graphical format.
- Computers—Click this tab to view detailed information about the computers.
- Events—Click this tab to view information about events registered by the Kaspersky Lab solution that is integrated with ConnectWise Automate.
- Licensing—Click this tab to view information about the Kaspersky Lab keys used by all managed devices on the network.
Viewing protection information
This section describes the Statistics tab and explains how to use it to view aggregated protection information about the computers of all your client companies.
About the Statistics tab
On the Statistics tab, you can view aggregated protection information, represented as a set of charts, about the computers of all your clients. The charts help you to manage the state of your network by allowing you to observe statistical information about the computers. You can monitor protection statuses of computers on the network by viewing information provided by Kaspersky Security Plug-in for ConnectWise Automate. For example, you can immediately detect how many computers on the network are in the critical state or have outdated anti-virus databases.
Viewing protection information
The following pie charts provide snapshots of several aspects of computer protection:
You can filter information displayed in the charts by client and location.
To filter information displayed,
In the Clients drop-down list, select a client or location you want to view.
In the Attention required section below the charts, you can also view statistics on clients that have computers requiring your attention. This section shows information on the number of computers on the network of client companies that require your attention. These are the computers with the following statuses:
- Critical protection status.
- Unmanaged and Unprotected deployment status.
- Anti-virus databases were issued more than a week ago database status.
Deployment status chart
The Deployment status chart displays the total number of computers managed by ConnectWise Automate, which have the deployment statuses below.
Deployment status chart
- Unmanaged—Kaspersky Security Center Network Agent is not installed (computers are not managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud).
- Unprotected—Kaspersky Security Center Network Agent is installed (computers are managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud) but no real-time protection solution by Kaspersky Lab is installed.
- Protected—Both Kaspersky Security Center Network Agent and a real-time protection solution by Kaspersky Lab are installed.
In the middle of the pie chart, the total number of computers is displayed. To the right of the chart, the legend shows details on how many computers, with each status, are on the network.
When you click any deployment status color icon in the chart legend or any chart sector, a window appears, showing details on the computers with the selected deployment status.
The following information is displayed for each computer:
- Computer—Name of the computer. The computer name can be different in ConnectWise Automate and in the Kaspersky Lab solution. The computer name for ConnectWise Automate is displayed above and the name for Kaspersky Security Center / Kaspersky Endpoint Security Cloud is displayed below. When you click the computer name, the Computer Management screen of ConnectWise Automate Control Center is displayed for this computer.
Computer names
- Client / Location—Name of the ConnectWise Automate client and location that the computer belongs to.
- Workspace—If you use Kaspersky Endpoint Security Cloud, this field shows the name of the workspace to which the selected computer belongs. When you click the workspace name, the corresponding Kaspersky Endpoint Security Cloud workspace opens in your browser window.
Protection status chart
Protection status chart displays the total number of computers, managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud (depending on the solution you use), which take the following protection statuses: Critical, Warning, or OK.
Protection status chart
In the middle of the chart, the total number of managed computers is displayed. To the right of the chart, the legend shows the number of computers with each status. This allows you to instantly know the number of critical or warning computers on the network.
When you click any computer status color icon in the chart legend, or any chart sector, a window appears, showing details on the computers with the selected status.
The following information is displayed for each computer:
- Computer—Name of the computer. The computer name can be different in ConnectWise Automate and in the Kaspersky Lab solution. The computer name for ConnectWise Automate is displayed above and the name for Kaspersky Security Center / Kaspersky Endpoint Security Cloud is displayed below. When you click the computer name, the Computer Management screen of ConnectWise Automate Control Center is displayed for this computer.
Computer names
- Client / Location—Name of the ConnectWise Automate client and location that the computer belongs to.
- Status description—Detailed description of the problems detected on the computer, if the computer status differs from OK.
- Workspace—If you use Kaspersky Endpoint Security Cloud, this field shows the name of the workspace to which the selected computer belongs. When you click the workspace name, the corresponding Kaspersky Endpoint Security Cloud workspace opens in your browser window.
Database status chart
The Database status chart displays the total number of computers (managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud) on which a real-time protection solution by Kaspersky Lab is installed, categorized according to the time since the anti-virus databases being used were issued.
Database status chart
In the middle of the pie chart, the total number of protected computers is displayed. To the right of the chart, the legend shows the number of computers in each group. This allows you to see the number of computers that use anti-virus databases issued a long time ago.
When you click any database status color icon in the chart legend or in any color sector of the pie chart, a window opens showing details about the computers with the selected database status.
The following information is displayed for each computer:
- Computer—Name of the computer. The computer name can be different in ConnectWise Automate and in the Kaspersky Lab solution. The computer name for ConnectWise Automate is displayed above and the name for Kaspersky Security Center / Kaspersky Endpoint Security Cloud is displayed below. When you click the computer name, the Computer Management screen of ConnectWise Automate Control Center is displayed for this computer.
Computer names
- Client / Location—Name of the ConnectWise Automate client and location that the computer belongs to.
- Workspace—If you use Kaspersky Endpoint Security Cloud, this field shows the name of the workspace to which the selected computer belongs. When you click the workspace name, the corresponding Kaspersky Endpoint Security Cloud workspace opens in your browser window.
Viewing computer information
This section describes the Computers tab and explains how to use it to view information about managed computers on your network.
About the Computers tab
The Computers tab displays a list of all computers managed by ConnectWise Automate.
Viewing computer information
Click the Computers tab to view information, provided by the Kaspersky Lab solution, about protection of the computers in your network. You can use the left navigation tree and the set of filters to quickly find required computers, for example, those installed in a specific location or with a specific protection status.
Filters in the top pane allow convenient searching of computers. You can filter the computers by management and protection states, name, and status. To restrict your computer selection and to view only the computers with selected properties, apply several filters at the same time. Every time you open the Computers tab, the previously used filter settings are restored—there is no need to set up filters again.
Use the navigation tree to display the computers of a specific client or location. Do one of the following:
- Click the Clients node to display all the computers.
- Click the name of a specific client to display the computers of this client.
- Click the name of a specific location to display the computers in this location.
Information about the computers is displayed as a table. You can sort information in the table by any of the table columns by clicking the column header. For each computer you can find the following information:
- Computer—Name of the computer. The computer name can be different in ConnectWise Automate and in the Kaspersky Lab solution. The computer name for ConnectWise Automate is displayed above and the name for Kaspersky Security Center / Kaspersky Endpoint Security Cloud is displayed below. When you click the computer name, the Computer Management screen of ConnectWise Automate Control Center is displayed for this computer.
Computer names
- Administration Server / Workspace—The content of this field depends on which Kaspersky Lab solution you use:
- If you use Kaspersky Security Center, this field shows the computer name of the Administration Server that manages the selected computer. The Administration Server computer name can be different in ConnectWise Automate and in Kaspersky Security Center. The Administration Server computer name for ConnectWise Automate is displayed on the first line of the entry and the name for Kaspersky Security Center on the second line. When you click the computer name, the Computer Management screen of ConnectWise Automate Control Center is displayed for this computer.
- If you use Kaspersky Endpoint Security Cloud, this field shows the name of the Kaspersky Endpoint Security Cloud workspace to which the selected computer belongs.
- Status—Current protection status of the managed computer. If the computer is not managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud, this field is blank.
- Status description—Detailed description of the problems detected on the selected computer, if the computer status differs from OK. If the computer is not managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud, this field is blank.
- Agent installed—Yes, if Kaspersky Security Center Network Agent is installed on the selected computer; otherwise, No.
- Viruses found—Number of viruses found on the selected computer. If the computer is not managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud, this field is blank.
- Last scan—Date and time when a scan of the selected computer was last performed. If the computer is not managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud, this field is blank.
- Database issued—Date and time when anti-virus databases on the selected computer were issued. If the computer is not managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud, this field is blank.
- Last information update—Date and time when information on a computer was last updated in Kaspersky Security Center or Kaspersky Endpoint Security Cloud. If more than five days passed since the date when information on a computer was last updated, this computer is deleted from the ConnectWise Automate database and is no longer displayed in the computer list.
When you select a computer or a group of computers in the table, its properties are displayed in the Statistics and commands pane on the right side of the screen. You can run a virus scan and anti-virus database update task in the Statistics and commands pane for the selected computer or group.
In addition to the properties in the table, the following computer properties and actions are displayed in the Statistics and commands pane:
- Commands—Click one of the links in this group to scan the computer for viruses or update the anti-virus databases on the computer.
- Client—Name of the ConnectWise Automate client that the computer belongs to.
- Location—Name of the ConnectWise Automate location that the computer belongs to.
You can view which problems on the computers require your attention. For this purpose, select the computers you are interested in. The problems detected on these computers are displayed in the Detected problems field in the Statistics and commands pane, accompanied by the total number of computers selected.
Sorting the list of computers
Sorting the list of computers is useful if you want, for example, to view computers with a specific status or computers with the most time since the last virus scan at the top of the list.
You can sort both filtered and unfiltered list of computers.
To sort the list of computers:
- Click the Computers tab.
- Click the name of the column you want to sort by. You can sort by any column of the list.
The list of computers is sorted by the columns you select.
When you click the column name for the first time, the values are sorted in ascending order. When you click the column name again, the values are sorted in descending order. The arrow next to the column name shows the sort direction.
Filtering computers by management and protection status
Filtering the list of computers by management and protection status is useful if, for example, you want to view only computers that are not managed and then move them into Kaspersky Security Center or Kaspersky Endpoint Security Cloud management or if you want to view only computers that are not protected and then install Kaspersky Anti-Virus on them.
To filter the computers by management and protection status:
- Click the Computers tab.
- Click one of the following links in the Show computers section:
Link
Action
All
Displays all the computers managed by ConnectWise Automate.
Managed
Displays the computers on which Network Agent is installed; these computers are managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud.
Unmanaged
Displays the computers on which Network Agent is not installed; these computers are not managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud.
Protected
Displays the managed computers on which Kaspersky Anti-Virus is installed.
Unprotected
Displays the managed computers on which Kaspersky Anti-Virus is not installed.
Only the selected computers are displayed.
- Click Reset filter to display all the computers.
Advanced filter of computers
Advanced filter enables you to filter the list of computers and to search for computers that match specific criteria. For example, you can view only computers with a specific name or part of a name, or with a specific protection status.
Advanced filter for computers
To apply advanced filter to the list of computers:
- Click the Computers tab.
- Click the value within the parentheses next to one of the field names in the Filter by section.
- In the Filter window specify the following criteria:
Field
How to set up a filter
Computer
To filter the list of computers by name, type any part of the computer name in this field; either the ConnectWise Automate computer name or a computer name in Kaspersky Security Center or Kaspersky Endpoint Security Cloud can be used.
Administration Server / Cloud Bridge
To filter the list of computers by Administration Server (if you use Kaspersky Security Center) or by Cloud Bridge (if you use Kaspersky Endpoint Security Cloud), select the check boxes next to the required Administration Servers or Cloud Bridges.
Workspace
To filter the list of computers by workspace (if you use Kaspersky Endpoint Security Cloud), type any part of the workspace name in this field.
Status
To filter the list of computers by protection status, click the required status. Click All to display the computers with all statuses.
Description
To filter the list of computers by protection status description, select one or more of the standard protection status descriptions.
- Click Apply.
Only the selected computers are displayed.
- On the Computers tab, click Reset filter to display all the computers.
Viewing event information
This section describes the Events tab and explains how to use it to view information about events that occur on managed computers.
About the Events tab
The Events tab displays a list of events that occurred on the managed computers.
Viewing event information
Click the Events tab to view additional information, obtained from the Kaspersky Lab solution, about the security issues detected on a particular computer or group of computers.
In the top pane, you can configure filters to view only the events with selected properties. You can filter events by severity level, client, computer, or time of occurrence. To restrict your event selection and view only those events with selected properties, apply several filters at the same time. Every time you open the Events tab, the previously used filter settings are restored—there is no need to set up filters again.
Information on the events is displayed as a table. You can sort information in the table by any of the table columns by clicking the column header. For each event, you can view the following information:
- Client—Name of a ConnectWise Automate client company. The computer on which the event occurred belongs to this client. This field is applicable if you use Kaspersky Security Center; it is blank if you use Kaspersky Endpoint Security Cloud.
- Severity—Severity level of the event according to Kaspersky Security Center or Kaspersky Endpoint Security Cloud.
- Time occurred—Time when the event occurred.
- Computer—Name of the computer on which the event occurred. The computer name can be different in ConnectWise Automate and in the Kaspersky Lab solution. The computer name for ConnectWise Automate is displayed on the first line of the entry and the name for Kaspersky Security Center / Kaspersky Endpoint Security Cloud on the second line. When you click the computer name, the Computer Management screen of ConnectWise Automate Control Center is displayed for this computer.
- Event—Name and description of the event.
- Administration Server / Workspace—The content of this field depends on the Kaspersky Lab solution you use:
- If you use Kaspersky Security Center, this field shows the computer name of the Administration Server that manages the computer on which the event occurred. The Administration Server computer name can be different in ConnectWise Automate and in Kaspersky Security Center. The Administration Server computer name for ConnectWise Automate is displayed on the first line of the entry and the name for Kaspersky Security Center on the second line. When you click the computer name, the Computer Management screen of ConnectWise Automate Control Center is displayed for this computer.
- If you use Kaspersky Endpoint Security Cloud, this field shows the name of the workspace, to which the computer on which the event occurred belongs.
When you select an event in the table, its properties are displayed in the pane on the right side of the screen. In addition to those in the table, the following event properties are displayed:
- Location—Name of the ConnectWise Automate location. The computer on which the event occurred belongs to this location. This field is displayed if you use Kaspersky Security Center; it is not displayed if you use Kaspersky Endpoint Security Cloud.
- Virtual Server—Name of the Kaspersky Security Center virtual server. The computer on which the event occurred is located on this server. This field is displayed if you use Kaspersky Security Center; it is not displayed if you use Kaspersky Endpoint Security Cloud.
- Kaspersky Security Center group—Name of a Kaspersky Security Center group. The computer on which the event occurred belongs to this group. This field is displayed if you use Kaspersky Security Center; it is not displayed if you use Kaspersky Endpoint Security Cloud.
- Application—Name of the application that the event is related to.
- Version—Version the application that the event is related to.
- Task—Name of the task that the event is related to. This field is displayed if you use Kaspersky Security Center; it is not displayed if you use Kaspersky Endpoint Security Cloud.
Sorting the list of events
Sorting the list of events is useful if, for example, you want to view events that have a specific severity level or that most recently appeared at the top of the list.
You can sort both filtered and unfiltered list of events.
To sort the list of events:
- Click the Events tab.
- Click the name of the column that you want to sort by. You can sort by any column of the list.
The list of events is sorted by the selected columns.
When you click the column name the first time, the values are sorted in ascending order. When you click the column name again, the values are sorted in descending order. The arrow next to the column name shows the sort direction.
Filtering events by severity level
Filtering the list of events by severity level is useful if, for example, you want to view only critical events in order to immediately respond to and solve a problem.
To filter the events by severity level:
- Click the Events tab.
- Click one of the following links in the Show events section:
Link
Action
Any
Displays all the events.
Info
Displays the events with Info severity level.
Warning
Displays the events with Warning severity level.
Error
Displays the events with Error severity level.
Critical
Displays the events with Critical severity level.
Only the events with the selected severity level are displayed.
- Click Reset filter to display all the events.
Advanced filter of events
Advanced filter enables you to filter the list of events and to search for events that match specific criteria. For example, you can view only events that occurred during the last day, or events that occurred on a particular computer, or that occurred at a particular client company.
Advanced filter for events
To apply advanced filter to the list of events:
- Click the Events tab.
- Click the value within the parentheses next to one of the field names in the Filter by section.
- In the Filter window specify the following criteria:
Field
How to set up a filter
Client
To filter the list of events by client, type any part of the client name in this field.
Computer
To filter the list of events by computer name, type any part of the computer name in this field; either the ConnectWise Automate computer name or a computer name in Kaspersky Security Center or Kaspersky Endpoint Security Cloud can be used.
Administration Server / Cloud Bridge
To filter the list of events by Administration Server (if you use Kaspersky Security Center), or by Cloud Bridge (if you use Kaspersky Endpoint Security Cloud), select the check boxes next to the required Administration Servers or Cloud Bridges.
Virtual server / Workspace
To filter the list of events by virtual server (if you use Kaspersky Security Center), or the workspace (if you use Kaspersky Endpoint Security Cloud), type any part of the virtual server or workspace name in this field.
Event name
To filter the list of events by name, type any part of the event name or description in this field.
Occurred
To filter the list of events by occurrence time, click one of the occurrence intervals. Click Anytime to display all the events.
- Click Apply.
Only the selected events are displayed.
- On the Events tab, click Reset filter to display all the events.
Viewing licensing information
This section describes the Licenses tab and explains how to use it to view information about keys used on devices integrated with ConnectWise Automate.
About the Licensing tab
The Licensing tab displays information on all the keys used on devices—managed by any Administration Server or connected to any Kaspersky Endpoint Security Cloud workspace—that are integrated with ConnectWise Automate.
Key usage statistics are aggregated and displayed on the chart. The chart helps you to find out which keys are used on the managed computers in your network. The chart also helps you to manage the state of licensing on your network by allowing you to check how many of the keys have exceeded limits or are used over 90%. A key exceeds limits if the number of computers that use the key divided by the number of computers to which the key can be assigned is greater than 1. A key is used over 90% if the number of computers that use the key divided by the number of computers to which the key can be assigned is greater than 0.9.
Viewing licensing information
The Key details section displays information, provided by Kaspersky Security Center or Kaspersky Endpoint Security Cloud, about the keys used on the devices in your network, or stored in the main or virtual Administration Server storage or at the workspace. You can use filters to quickly find information about the required keys, for example, those used on devices installed at a specific client company or in a specific location, or keys with a specific status. You can apply several filters at the same time. Every time you open the Licensing tab, the previously used filter settings are restored—there is no need to set up filters again.
Information about the keys is displayed as a table. You can sort information in the table by any of the table columns by clicking the column header. For each key you can find the following information:
- Key—Serial number of the key. Click the key number to view information on the devices, where this key is used as active.
- Product name—Name of the product that uses this key. This column also may show additional information on the key, such as product version and validity period.
- Key source—Source that the key was received from. Kaspersky Security Plug-in for ConnectWise Automate may receive the key from the Administration Server, from a virtual server, or from a Kaspersky Endpoint Security Cloud workspace. If several managed devises use the same key, each of them may receive this key from a different source. This column displays the first few key sources. To view all key sources for the selected key, click the Show details link.
- Active on non-mobile devices—Number of non-mobile devices on which this key is active.
- Active on mobile devices—Number of mobile devices on which this key is active.
- Active on devices (overall)—Total number of devices on which this key is active.
- Expiration date—Date when the key expires.
You can filter information displayed in the charts by client and location.
To filter information displayed,
In the All clients drop-down list, select a client or location to view only licenses that are used on the computers for this particular client or location.
Viewing key details
One key can be used by multiple managed devices. This window shows detailed information on all the devices, where the selected key is active.
- Show only devices managed by ConnectWise Automate—Select this check box to view key usage information only for devices managed by ConnectWise Automate. If this check box is cleared, all the devices that use this key are displayed, including those not managed by ConnectWise Automate.
- Client—Name of the ConnectWise Automate client that the device belongs to.
- Device—Name of the device that uses this key. When you click a device name, the Computer Management screen of ConnectWise Automate Control Center is displayed for the device.
- Application name—Name of the application that uses this key.
- Application version—Version of the application that uses this key.
Sorting the list of keys
Sorting the list of keys is useful if, for example, you want to view the keys for a specific application or keys with the nearest expiration date at the top of the list.
You can sort both filtered and unfiltered list of keys.
To sort the list of keys:
- Click the Licensing tab.
- Click the name of the column you want to sort by. You can sort by any column of the list.
The list of keys is sorted by the columns you select.
When you click a column name for the first time, the values are sorted in ascending order. When you click the column name again, the values are sorted in descending order. The arrow next to the column name shows the sort direction.
Filtering keys by status
Filtering the list of keys by status is useful if, for example, you want to view only keys that have exceeded restrictions in order to respond immediately and solve a problem.
To filter the keys by status:
- Click the Licensing tab.
- Click one of the following links in the Show keys section:
Link
Action
All
Displays all the keys.
Exceeded restrictions
Displays the keys with Exceeded restrictions status.
A key exceeds restrictions if the number of computers that use the key divided by the number of computers to which the key can be assigned is greater than 1.
More than 90% used
Displays the keys with More than 90% used status.
A key is used over 90% if the number of computers that use the key divided by the number of computers to which the key can be assigned is greater than 0.9.
OK
Displays the keys with OK status.
Only keys with the selected status are displayed.
- Click Reset filter to display all the keys.
Running Kaspersky Lab management commands
To keep a network of your clients' computers secure, run the Kaspersky Lab management commands for all computers on the network. Kaspersky Security Plug-in for ConnectWise Automate provides two commands: scan computers for viruses and update anti-virus databases.
You can run the commands directly from the Kaspersky Security Plug-in for ConnectWise Automate dashboard. This method is useful as it allows you to respond to dashboard information immediately. For example, you can run the virus scan command on a computer that has not been scanned in a long time or you can run the update command on a computer with outdated anti-virus databases.
These security commands can be run for managed computers, that is, for computers that have Network Agent installed. You can also run the security commands on a group of computers. You save time by not running commands on individual computers.
Running virus scan command
Run the virus scan command to check computers for viruses and other malware. In the Kaspersky dashboard, accessible from the ConnectWise Automate toolbar, you can view the time when the computer was last scanned for viruses. When an infected object is found during virus scan, the default actions are either to disinfect the object, or, if disinfection is impossible, to skip the object during the scan process.
The virus scan command can only be run on computers that have Kaspersky Endpoint Security or Kaspersky Security for Windows Server installed.
When you perform the virus scan command, all exclusions configured in the "Exclusions and trusted zone" section of the security policies are retained.
To scan computers:
- In the Kaspersky dashboard, select the Computers tab.
- In the list of computers displayed on the Computers tab, select one or more computers for which you want to run the virus scan command.
To select several individual computers use the Ctrl key, to select a range of computers use the Shift key, or just drag the pointer. To select all the displayed computers, click Select → Select all on the top command bar.
- Start the computer scanning process in one of the following ways:
- On the top command bar, click Run scan.
- In the right pane, in the Computer statistics and actions section, click Scan computers.
The scan command is run for the selected computers, which are protected by Kaspersky Endpoint Security for Windows or Kaspersky Security for Windows Server.
You can view the status and results of the scan command for each computer on the Computer Management screen of ConnectWise Automate.
To view the scan results:
- Open the Computer Management screen for the required computer.
- On the Computer Management screen, click the Commands tab and view the command status.
Running anti-virus database update command
Run the update command to update the anti-virus database on computers. In the Kaspersky dashboard, you can view the time when the anti-virus databases were updated.
The update command can be run only for the computers that have Kaspersky Endpoint Security or Kaspersky Security for Windows Server installed.
To enable execution of the local update command on remote agents through ConnectWise Automate Control Center, perform the following setup in Kaspersky Security Center: open the policy and in the Policy properties window select Advanced Settings → Application settings, and then select the Allow local tasks to be displayed and managed (except custom scan) check box. By default, this check box is cleared, so any local commands except virus scan are denied by policy.
To update anti-virus databases on the computers:
- In the Kaspersky dashboard, select the Computers tab.
- In the list of computers displayed on the Computers tab, select one or more computers for which you want to run the anti-virus database update procedure.
To select several individual computers use the Ctrl key, to select a range of computers use the Shift key, or just drag the pointer. To select all the displayed computers, click Select → Select all on the top command bar.
- Start the anti-virus database updating process in one of the following ways:
- On the top command bar, click Run update.
- In the right pane, in the Computer statistics and actions section, click Update virus bases.
The update command is run for the selected computers, which are protected by Kaspersky Endpoint Security for Windows or Kaspersky Security for Windows Server. After the command is successfully completed, click Refresh to update the Database issued field on the Computers tab of the Kaspersky dashboard.
You can view the status and results of the update command for each computer in the Computer Management screen of ConnectWise Automate.
To view the anti-virus database update results:
- Open the Computer Management screen for the desired computer.
- In the Computer Management screen, click the Commands tab and view the command status.
Monitoring and alerting
After you install and enable Kaspersky Security Plug-in for ConnectWise Automate, new internal monitors are created in ConnectWise Automate Control Center. Monitoring and alerting functionality is intended to manage different computer statuses in Kaspersky Security Center / Kaspersky Endpoint Security Cloud and to apply appropriate actions to draw your attention to a problem, automatically resolve an issue, or perform maintenance.
The monitors work and raise alerts only for the managed computers.
You can view the monitors by opening the Monitors tab on the ConnectWise Automate Control Center toolbar. The Kaspersky Security Center / Kaspersky Endpoint Security Cloud monitors are displayed in the list of monitors on the Internal Monitors tab.
Each monitor runs with the specified frequency. The monitors check for specific computer statuses or status descriptions and raise appropriate alerts or perform predefined actions. Depending on the computer status, a monitor can result in different actions: raising an alert, creating a ticket, or performing virus scan or anti-virus database updates. Automatic virus scan or anti-virus database updates, initiated by the monitors, help save you time.
The following Kaspersky Lab monitors are available in ConnectWise Automate Control Center:
Kaspersky Lab monitors available in ConnectWise Automate Control Center
Monitor name |
Monitor frequency |
Status / status description |
Actions |
|---|---|---|---|
Kaspersky – Critical Computers |
6 minutes |
Status: Critical |
|
Kaspersky – Warning Computers |
6 minutes |
Status: Warning |
Alert is created. |
Kaspersky – Scan |
4 hours |
Status description: Virus scan has not been performed for a long time |
Virus scan is started. |
Kaspersky – Update |
4 hours |
Status description: Databases are out of date |
Anti-virus database update is started. |
Deploying Kaspersky Lab security applications from the Control Center
With Kaspersky Security Plug-in for ConnectWise Automate, you can install Kaspersky Lab security applications on computers using a ConnectWise Automate script. The script enables you to install only Kaspersky Security Center Network Agent, or both Network Agent and Kaspersky Endpoint Security applications on the remote agents, depending on your needs. After installing these applications, the computers are considered protected and managed.
Before running the installation script, use Kaspersky Security Center or Kaspersky Endpoint Security Cloud tools to create and save a stand-alone installation package containing Kaspersky Security Center Network Agent, or both Kaspersky Security Center Network Agent and Kaspersky Endpoint Security. The script then deploys this package and installs the applications on the selected computers.
The script that installs Kaspersky Lab security applications can be run only for the Windows operating system.
The script can be run at different levels: for a client, a location or an individual computer.
This section explains how to install Kaspersky Lab security applications on computers from ConnectWise Automate Control Center.
Creating a stand-alone installation package
A stand-alone installation package is an executable file that you can save on a computer, a removable drive, or a shared resource in order to enable the script to use for stand-alone installation. The Kaspersky Install script, included in Kaspersky Security Plug-in for ConnectWise Automate, then runs the created file locally on the client's computers to install Kaspersky Lab applications.
Creation of a stand-alone installation package differs depending on the Kaspersky Lab solution you use: Kaspersky Security Center or Kaspersky Endpoint Security Cloud. Refer to one of the following sections for instructions on creating a stand-alone installation package.
Installation package in Kaspersky Security Center
Kaspersky Security Center allows you to create stand-alone installation packages for security applications. The Kaspersky Install script then runs the created file locally on the client computers to install an application, without involving Kaspersky Security Center.
To create a stand-alone installation package from Kaspersky Security Center:
- Connect to Kaspersky Security Center Administration Server.
- In the Kaspersky Security Center console tree, select Advanced → Remote installation → Installation packages.
- In the workspace, select the installation package of the required application: Kaspersky Endpoint Security or Kaspersky Security Center Network Agent.
- Start the process of creating a stand-alone installation package by using one of the following methods:
- In the context menu of the installation package, select Create stand-alone installation package.
- In the workspace of the installation package, click the Create stand-alone installation package link.
This will start the Stand-alone Installation Package Creation Wizard. Follow the Wizard instructions.
- At the final step of the Wizard, select the Open folder option to view the created stand-alone installation package in the folder.
- If necessary, copy the package to a removable drive (such as a flash drive) for subsequent usage.
- Proceed to the Running installation script procedure.
Installation package in Kaspersky Endpoint Security Cloud
Kaspersky Endpoint Security Cloud allows you to download distribution packages of security applications. The Kaspersky Install script then runs the downloaded file locally on the client computers to install an application, without involving Kaspersky Endpoint Security Cloud.
To download a distribution package in Kaspersky Endpoint Security Cloud:
- On a server or workstation, open a browser and go to Kaspersky Endpoint Security Cloud Management Console.
- Select the Distribution packages section.
The Distribution packages section contains distribution packages of security applications available for download.
- Select a distribution package and click the Download link.
If your company uses a proxy server, click Proxy server and define the proxy server settings (address, port, user name, and password). If you defined the proxy server settings when you connected the company to Kaspersky Endpoint Security Cloud at the stage of proceeding to the client company's workspace, those settings will affect the distribution package download.
The distribution package starts downloading to the computer.
- When the download is complete, open the folder containing the distribution package.
- If necessary, copy the package to a removable drive (such as a flash drive) for subsequent usage.
- Proceed to the Running installation script procedure.
Running installation script
To deploy Kaspersky Lab security applications from ConnectWise Automate Control Center:
- Locate the setup.exe file, created during the Creating stand-alone installation package procedure, in the folder where it was saved.
- Create the Kaspersky subfolder of the LTShare\Transfer\Software folder, on the ConnectWise Automate server.
- Place the generated stand-alone installation package (setup.exe file) to the LTShare\Transfer\Software\Kaspersky folder.
- Confirm that the setup.exe file can be downloaded through the browser.
Check the download link, for example, http://<yourFQDN.com>/labtech/transfer/software/kaspersky/setup.exe, where <yourFQDN.com> is the web address of your web server.
- In the ConnectWise Automate navigation tree, right-click the client, location, or group for which you want to run the installation script, and then select Scripts → Anti-Virus → Kaspersky Lab → Kaspersky Install.
The Run Script dialog box opens.
- In the Run Script dialog box, specify the script target and then select Once in the Schedule section.
- Click OK to start the script.
The script is started. The script copies and executes the setup.exe file on the client's computers. Installation is run in silent mode.
- To view the status and results of the installation script execution for an individual computer, open the Computer Management screen and proceed to the Scripts tab.
Viewing and editing installation script
You can view and if necessary edit or change the settings of the script, which installs Kaspersky Lab security applications on the computers.
Although you can use the ConnectWise Automate Script window to inspect and modify the script, doing so is not recommended, because making incorrect changes can cause the script to damage the computer system.
To view or modify the installation script:
- In the ConnectWise Automate navigation tree, click the Scripts node.
- Select Scripts → Anti-Virus → Kaspersky Lab and double-click Kaspersky Install.
The Script window opens, where you can view or edit the script.
- After editing the script, click Save to save your changes, and then Close.
Plug-in modifications to ConnectWise Automate configuration
After you install Kaspersky Security Plug-in for ConnectWise Automate, it adds its own items to the existing ConnectWise Automate entities.
The table below shows the items added by Kaspersky Security Plug-in for ConnectWise Automate.
Kaspersky Security Plug-in for ConnectWise Automate items added to ConnectWise Automate entities
ConnectWise Automate entity |
Item added by Kaspersky Security Plug-in for ConnectWise Automate |
Description |
|---|---|---|
Role definitions |
Kaspersky Security Center Administration Server Kaspersky Security Center Administration Server Kaspersky Security Center Network Agent |
These role definitions are used by ConnectWise Automate to determine whether Kaspersky Security Center Administration Server or Network Agent is installed on the computer. The computers with Administration Server installed have both roles: Kaspersky Security Center Administration Server and Kaspersky Security Center Network Agent. The computers with Network Agent installed have only one role: Kaspersky Security Center Network Agent. You can view the roles for each computer on the Detected Roles tab of the Computer Management screen. |
Kaspersky Endpoint Security Cloud Kaspersky Endpoint Security Cloud Bridge |
This role definition is used by ConnectWise Automate to determine whether the computer is used as a 'bridge' between Kaspersky Endpoint Security Cloud and ConnectWise Automate. The computer with the 'bridge' role interacts with Kaspersky Endpoint Security Cloud connecting it with ConnectWise Automate like a bridge. You can view the roles for each computer on the Detected Roles tab of the Computer Management screen. |
|
Anti-virus definitions |
Kaspersky Endpoint Security 10 Service Pack 1 for Windows Kaspersky Endpoint Security 10 Service Pack 2 for Windows Kaspersky Endpoint Security 11 for Windows Kaspersky Security 10 for Windows Server Kaspersky Security 10 Service Pack 1 for Windows Server |
The anti-virus definitions contain information on Kaspersky Lab security applications and are used by ConnectWise Automate. Anti-virus definitions enable ConnectWise Automate internal anti-virus monitors to work properly for these security applications, that is, to alert users if the anti-virus program is not running, virus definitions are out of date, or the anti-virus is not installed. You can find information about Kaspersky Lab security applications on the Antivirus Dashboard of ConnectWise Automate Control Center. |
Internal Monitors |
Kaspersky – Critical Computers Kaspersky – Warning Computers Kaspersky – Scan Kaspersky – Update |
The monitors raise appropriate alerts or perform predefined actions basing on specific computer statuses or status descriptions. You can view the monitors on the Monitors tab on the ConnectWise Automate Control Center. The Kaspersky monitors are displayed on the Internal Monitors tab. |
Scripts → Anti-Virus folder |
Kaspersky Lab |
The Kaspersky Lab subfolder is added to the Scripts → Anti-Virus folder of the ConnectWise Automate console tree. This folder stores the Kaspersky Install script. |
Scripts |
Kaspersky Install Kaspersky Scan |
Kaspersky Security Plug-in for ConnectWise Automate adds its own Kaspersky Install and Kaspersky Scan scripts to the existing ConnectWise Automate scripts. The Kaspersky Install script silently installs Kaspersky Lab security applications on the client company's computers. The Kaspersky Scan script initiates a procedure of scanning for viruses and other malware on the client company's computers. |
Extra Data Fields |
plugin_kaspersky_encryptionPublicKey plugin_kaspersky_kesCloudBridgeProxy plugin_kaspersky_kesCloudBridgeProxyPassword plugin_kaspersky_kesCloudBridgeProxyUser plugin_kaspersky_kesCloudBridgeUseProxy plugin_kaspersky_kesCloudIntegrationId plugin_kaspersky_kesCloudPassword plugin_kaspersky_kesCloudUser plugin_kaspersky_password plugin_kaspersky_user |
|
Enabling and disabling tracing
You may need to save traces of Kaspersky Security Plug-in for ConnectWise Automate, for example, if you contact Technical Support and are asked to provide the traces for diagnostics and troubleshooting. It is recommended to disable tracing when the issue is resolved, as tracing requires additional resources and additional memory to store trace files. It is also recommended to remove the trace files from your computer, when the issue, which required tracing, is resolved, because the trace files may contain personal and confidential data.
The trace files are saved to the %windir%\temp\KasperskyPluginLogs\ folder.
By default, tracing is disabled. You can enable and disable tracing by using the Microsoft Windows registry.
To enable or disable tracing:
Before editing the Microsoft Windows registry, it is recommended that you back up the registry.
- Click the Start button.
- In the Start menu, either in the Run box or the Search box, type regedit and press Enter.
The Registry Editor window opens.
If you have restricted access to the Windows computer you are logged in to, you might not be able to access the Windows registry.
- In the Registry Editor window, navigate to the Kaspersky Security Plug-in for LabTech registry key. It is available by one of the following paths:
- HKEY_LOCAL_MACHINE\SOFTWARE\KasperskyLab\Kaspersky Security Plug-in for Labtech
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\KasperskyLab\Kaspersky Security Plug-in for Labtech
- Edit the value of the EnableTraces parameter as follows:
- 1—To enable tracing.
- 0—To disable tracing.
- Click OK in the Edit window to save your changes.
- Close the Registry Editor window.
Glossary
Administration Server
A component of Kaspersky Security Center that centrally stores information about all Kaspersky Lab applications that are installed within the corporate network. Administration Server can also be used to manage these applications.
Administration Server client (Client computer)
A computer, server, or workstation on which Network Agent and managed Kaspersky Lab applications are running.
Anti-virus databases
Databases that contain information about computer security threats known to Kaspersky Lab as of when the anti-virus databases are released. Entries in anti-virus databases allow malicious code to be detected in scanned objects. Anti-virus databases are created by Kaspersky Lab specialists and updated hourly.
Kaspersky Lab update servers
HTTP servers at Kaspersky Lab from which Kaspersky Lab applications download database and application module updates.
Managed computer
Computer with Network Agent installed; this computer is managed by Kaspersky Security Center.
Network Agent
A Kaspersky Security Center component that enables interaction between the Administration Server and Kaspersky Lab applications that are installed on a specific network node (workstation or server).
Notification
A message with information about an event (or events), which is sent by the application via other notification delivery systems (for example, via email) to the specified addresses.
Protection status
Current protection status, which reflects the level of computer security.
Protocol
A clearly defined and standardized set of rules governing the interaction between a client and a server. Well-known protocols and the services associated with them include HTTP, FTP, and NNTP.
Remote installation
Installation of Kaspersky Lab applications by using the services provided by Kaspersky Security Plug-in for ConnectWise Automate.
Update
A function performed by a Kaspersky Lab application that enables it to keep computer protection up-to-date. During the update, an application downloads updates for its databases and modules from Kaspersky Lab update servers and automatically installs and applies them.
Virus
A program that infects other ones, by adding its code to them in order to gain control when infected files are run. This simple definition allows identifying the main action performed by any virus: infection.
Workspace
Virtual Administration Server by Kaspersky Lab that is designed to manage a security software suite on devices connected to Kaspersky Endpoint Security Cloud, as well as store individual settings of Kaspersky Endpoint Security Cloud and the registration data of a company using this product.
Contact Technical Support
This section describes how to get technical support and the terms on which it is available.
How to get technical support
If you cannot find a solution to your issue in the Kaspersky Security Integrations for MSP documentation or in any of the sources of information about Kaspersky Security Integrations for MSP, contact Technical Support. Technical Support specialists will answer all your questions about configuring and using Kaspersky Security Integrations for MSP.
Before contacting Technical Support, please read the support rules.
You can contact Technical Support in one of the following ways:
- By visiting the Technical Support website
- By sending a request to Technical Support from the Kaspersky CompanyAccount portal
Technical Support via Kaspersky CompanyAccount
Kaspersky CompanyAccount is a portal for companies that use Kaspersky Lab applications. The Kaspersky CompanyAccount portal is designed to facilitate interaction between users and Kaspersky Lab specialists through online requests. You can use Kaspersky CompanyAccount to track the status of your online requests and store a history of them as well.
You can register all of your organization's employees under a single account on Kaspersky CompanyAccount. A single account lets you centrally manage electronic requests from registered employees to Kaspersky Lab and also manage the privileges of these employees via Kaspersky CompanyAccount.
The Kaspersky CompanyAccount portal is available in the following languages:
- English
- Spanish
- Italian
- German
- Polish
- Portuguese
- Russian
- French
- Japanese
To learn more about Kaspersky CompanyAccount, visit the Technical Support website.
Page top
AO Kaspersky Lab
Kaspersky Lab is a world-renowned vendor of systems protecting computers against digital threats, including viruses and other malware, unsolicited email (spam), and network and hacking attacks.
In 2008, Kaspersky Lab was rated among the world’s top four leading vendors of information security software solutions for end users (IDC Worldwide Endpoint Security Revenue by Vendor). Kaspersky Lab is the preferred vendor of computer protection systems for home users in Russia (IDC Endpoint Tracker 2014).
Kaspersky Lab was founded in Russia in 1997. It has since grown into an international group of companies with 38 offices in 33 countries. The company employs more than 3,000 skilled professionals.
Products. Kaspersky Lab products provide protection for all systems, from home computers to large corporate networks.
The personal product range includes security applications for desktop, laptop, and tablet computers, smartphones and other mobile devices.
The company offers protection and control solutions and technologies for workstations and mobile devices, virtual machines, file and web servers, mail gateways, and firewalls. The company's portfolio also features specialized products providing protection against DDoS attacks, protection for industrial control systems, and prevention of financial fraud. Used in conjunction with centralized management tools, these solutions ensure effective automated protection for companies and organizations of any size against computer threats. Kaspersky Lab products are certified by major test laboratories, compatible with software from diverse vendors, and optimized to run on many hardware platforms.
Kaspersky Lab virus analysts work around the clock. Every day they uncover hundreds of thousands of new computer threats, create tools to detect and disinfect them, and include their signatures in databases used by Kaspersky Lab applications.
Technologies. Many technologies that are now part and parcel of modern anti-virus tools were originally developed by Kaspersky Lab. It is no coincidence that many other developers use the Kaspersky Anti-Virus engine in their products, including: Alcatel-Lucent, Alt-N, Asus, BAE Systems, Blue Coat, Check Point, Cisco Meraki, Clearswift, D-Link, Facebook, General Dynamics, H3C, Juniper Networks, Lenovo, Microsoft, NETGEAR, Openwave Messaging, Parallels, Qualcomm, Samsung, Stormshield, Toshiba, Trustwave, Vertu, and ZyXEL. Many of the company’s innovative technologies are patented.
Achievements. Over the years, Kaspersky Lab has won hundreds of awards for its services in combating computer threats. Following tests and research conducted by the reputed Austrian test laboratory AV-Comparatives in 2014, Kaspersky Lab ranked among the top two vendors by the number of Advanced+ certificates earned and was ultimately awarded the Top Rated certificate. But Kaspersky Lab's main achievement is the loyalty of its users worldwide. The company’s products and technologies protect more than 400 million users, and its corporate clients number more than 270,000.
Kaspersky Lab website: |
|
Virus encyclopedia: |
|
Virus Lab: |
https://virusdesk.kaspersky.com (for analyzing suspicious files and websites) |
Kaspersky Lab’s web forum: |
Page top
Information about third-party code
Information about third-party code is contained in the file legal_notices.txt.
Page top
Trademark notices
Registered trademarks and service marks are the property of their respective owners.
Microsoft, Windows, and Windows Server are registered trademarks of Microsoft Corporation in the United States and other countries.
Kaspersky Security Integration with ConnectWise Manage
This section describes Kaspersky Security Plug-in for ConnectWise Automate. It contains a general description of the software and provides instructions for working with it.
Kaspersky Security Integration with ConnectWise Manage
This section describes the purpose, functions, and distribution kit of Kaspersky Security Integration with ConnectWise Manage, and provides hardware and software requirements for Kaspersky Security Integration with ConnectWise Manage.
About Kaspersky Security Integration with ConnectWise Manage
Integration is the process of bringing together components into a single system. Kaspersky Security Integration with ConnectWise Manage integrates Kaspersky Lab solutions (Kaspersky Security Center or Kaspersky Business Hub) and ConnectWise Manage to provide a combination of monitoring and management tools, such as automated billing and ticket creation for client accounts. Kaspersky Security Integration with ConnectWise Manage integrates ConnectWise Manage with all cloud-based products managed by Kaspersky Business Hub: Kaspersky Endpoint Security Cloud and Kaspersky Security for Microsoft Office 365.
In terms of Kaspersky Security Integration with ConnectWise Manage, integration is a set of parameters and interaction rules that can be set up and configured. First, you create an integration between your Kaspersky Lab solution and ConnectWise Manage; then you can manage and configure your integrations, and view and edit integration parameters. When configuring an integration, you set up mapping between the entities of the Kaspersky Lab solution and ConnectWise Manage entities, and define rules that determine how your Kaspersky Lab solution interacts with ConnectWise Manage.
Kaspersky Security Integration with ConnectWise Manage consists of two applications: Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP (managed service providers).
- Kaspersky Security Integration Tool for MSP provides a graphical user interface (GUI) to configure integration. The tool is used to configure connection between the Kaspersky Lab solution that you use and ConnectWise Manage. The tool is also used to configure mapping between the Kaspersky Lab solution entities and ConnectWise Manage entities. Kaspersky Lab solution entities are virtual servers, if you use Kaspersky Security Center, or companies, if you use Kaspersky Business Hub. ConnectWise Manage entities are Companies and Products.
- Kaspersky Security Integration Service for MSP is a Microsoft Windows service application that is installed on the computer that has Kaspersky Security Center Administration Server installed. Kaspersky Security Integration Service for MSP synchronizes data in Kaspersky Security Center and ConnectWise Manage. It is a service application only, with no user interface.
About data provision
Kaspersky Security Integration with ConnectWise Manage is designed for the integration of Kaspersky Lab solutions for administration of security applications with ConnectWise Manage within the framework of the functionality described in this Help document.
To use Kaspersky Security Integration with ConnectWise Manage, you must install the integration components and connect them to the Kaspersky Lab solution you use, create an integration with ConnectWise Manage, specify connection parameters and integration settings and select your customers’ virtual servers / companies for the integration.
By using the product, you agree that said product may receive data from ConnectWise Manage and the connected virtual servers / companies, as well as store, process, and display information that is intended for ensuring the product functionality.
By creating an integration and connecting ConnectWise Manage and virtual servers / companies to the product, you thus confirm that you are the sole owner of any data you provide or that you are entitled to provide any data.
Any information provided is protected and processed in accordance with the Kaspersky Lab Privacy Policy.
For the purpose of integration of Kaspersky Security Center / Kaspersky Business Hub and ConnectWise Manage, Kaspersky Security Integration with ConnectWise Manage may receive, store, and process the following types of data:
- Data required to connect to the integrated software:
- Parameters for connecting to Kaspersky Security Center Administration Server, including account credentials.
- Account credentials for connecting to Kaspersky Business Hub.
- Connection parameters for accessing ConnectWise Manage.
- Data about events that occur in Kaspersky Security Center, Kaspersky Endpoint Security Cloud, or Kaspersky Security for Microsoft Office 365. This data is required for automatic creation of tickets or similar entities.
- Data about assigning the Critical and Warning statuses to computers managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud. This data is required for automatic creation of tickets or similar entities.
- Data about usage of licenses for Kaspersky Lab security applications by computers managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud (the number of computers that use a certain license). This data is required for automatic generation of invoices for your customers.
- Data about the number of protected Kaspersky Security for Microsoft Office 365 mailboxes. This data is required for automatic generation of invoices for your customers.
- Data about the state of a managed Kaspersky Security Center virtual server / Kaspersky Endpoint Security Cloud workspace (the number of managed computers, the number of protected computers, the number of created and closed tickets of various types, the number of threats and malicious objects detected on the computers, the number of problematic computers, and the number of infected computers). This data is required for report generation.
- Data about licenses used at Kaspersky Security Center virtual servers / Kaspersky Endpoint Security Cloud workspaces and about attributes of these licenses. This data is required for report generation.
- Integration settings:
- Type of integrated platform (ConnectWise Manage).
- Integration name.
- Integration ID (for integrations with Kaspersky Business Hub).
- Date and time of integration creation.
- Set of integrated virtual servers / companies.
- List of Kaspersky Business Hub administrators (their aliases and email addresses) who are also granted administrative privileges in the integration.
- Rules for mapping objects of Kaspersky Security Center / Kaspersky Business Hub to those of ConnectWise Manage (virtual servers / companies to ConnectWise Manage companies and Kaspersky Lab security applications to ConnectWise Manage products).
- Rules for creating objects in ConnectWise Manage, such as tickets, agreement additions, and configuration items.
If you integrate ConnectWise Manage with Kaspersky Business Hub, the above data (specifically, data required to connect to the integrated software and integration settings) is transferred from Kaspersky Security Integration Tool for MSP to Kaspersky Business Hub. This data is processed there and is stored according to the terms and conditions of the Privacy Policy of Kaspersky Business Hub.
If your integration includes a company for which a Kaspersky Endpoint Security Cloud workspace has been created, the data that Kaspersky Business Hub receives from Kaspersky Security Integration Tool for MSP is transferred to the Kaspersky Endpoint Security Cloud workspace. This data is processed there and is stored according to the terms and conditions of the agreements that were accepted during the workspace creation.
If your integration includes a company for which a Kaspersky Security for Microsoft Office 365 workspace has been created, the data that Kaspersky Business Hub receives from Kaspersky Security Integration Tool for MSP is transferred to the Kaspersky Security for Microsoft Office 365 workspace. This data is processed there and is stored according to the terms and conditions of the agreements that were accepted during the workspace creation.
All received data is used by the MSP administrators and technicians. Kaspersky Lab Technical Support specialists may also use the above data when an MSP administrator contacts Technical Support.
Page top
Features of Kaspersky Security Integration with ConnectWise Manage
Kaspersky Security Integration with ConnectWise Manage helps you to integrate Kaspersky Lab solutions with ConnectWise Manage to provide ticketing, straightforward monitoring, issue tracking, automated billing, and reporting in the customer environment.
Kaspersky Security Integration with ConnectWise Manage provides the following features:
- Connection
With Kaspersky Security Integration with ConnectWise Manage, you can connect Kaspersky Lab solutions to ConnectWise Manage with a few clicks to enable automated billing, ticketing, and other processes. You do not need any additional tools or consoles: you can access everything from your ConnectWise Manage console.
- Automatic ticketing
Kaspersky Security Integration with ConnectWise Manage simplifies multi-tenancy management by enabling automation of ticket creation and workflow for each of your client companies. You can select an Agreement with your client and map it to the corresponding Kaspersky Lab solution.
The tickets are automatically created and assigned to a Service Board, which reduces the time you spend monitoring your managed companies and increases the number of clients that a single technician can manage. For additional resource efficiency, assign business impacts and severities to tickets to streamline their prioritization.
- Billing setup
Kaspersky Security Integration with ConnectWise Manage provides easy access to pricing of Kaspersky Lab security applications from ConnectWise Manage, which significantly simplifies and automates customer billing and reporting.
- Report generation
You can generate service reports on Kaspersky Security Center virtual servers or Kaspersky Business Hub companies and license reports directly from ConnectWise Manage. Service reports include statistics on protection services provided to the client over the last 30 days and the last 7 days. License reports provide information about keys, including their usage and availability.
- Compatibility
With Kaspersky Security Integration with ConnectWise Manage, it is easy to create solutions based on customer needs and requirements: ConnectWise Manage works with both on-premises and cloud-based Kaspersky Lab solutions. Use Kaspersky Lab cloud-based security to avoid additional overhead, or keep everything inside the perimeter and make the most of your existing hardware investment with an on-premises solution.
Distribution kit
Kaspersky Security Integration with ConnectWise Manage is delivered free of charge as a distribution package that contains installation files for Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP.
You can download the distribution kit from the Kaspersky Lab website.
No license is required for Kaspersky Security Integration with ConnectWise Manage.
Software requirements
Basic software requirements for integration setup:
- ConnectWise Manage 2016.1–2016.6, 2017.1–2017.6, and 2018.1–2018.3.
- Kaspersky Security Center Administration Server 10 Service Pack 2 Maintenance Release 1 and later, Kaspersky Endpoint Security Cloud, or Kaspersky Security for Microsoft Office 365.
Software requirements for Kaspersky Security Integration Tool for MSP:
- Microsoft Windows 7 and later.
- Microsoft .NET Framework 4.5.2.
- Kaspersky Security Center Administration Server 10 Service Pack 2 Maintenance Release 1 and later, or Kaspersky Security Center Administration Console 10 Service Pack 2 Maintenance Release 1 and later—for an on-premises solution only.
Software requirements for Kaspersky Security Integration Service for MSP:
- Supported operating systems are the same as those supported by Kaspersky Security Center 10 Service Pack 2 Maintenance Release 1 and later. Refer to Kaspersky Security Center documentation for details.
- Administration Server component of Kaspersky Security Center 10 Service Pack 2 Maintenance Release 1 and later.
- Microsoft .NET Framework 4.5.2.
Deployment schemas of Kaspersky Security Integration with ConnectWise Manage
This section describes the deployment schemas of Kaspersky Security Integration with ConnectWise Manage. The schemas include the two components of Kaspersky Security Integration with ConnectWise Manage:
- Kaspersky Security Integration Tool for MSP—Used to configure connection between the Kaspersky Lab solution you use and Autotask and to configure mapping between the Kaspersky Lab solution entities and Autotask entities.
- Kaspersky Security Integration Service for MSP—Synchronizes data in Kaspersky Security Center and Autotask. It is a service application only, with no user interface.
The deployment schema that suits your integration depends on the Kaspersky Lab solution you use and on your integration model. There are three deployment schemas:
- For an on-premises version of a Kaspersky Lab solution—Kaspersky Security Center.
- For an on-premises version of a Kaspersky Lab solution—Kaspersky Security Center with slave Administration Servers.
- For a cloud-based version of a Kaspersky Lab solution—Kaspersky Business Hub.
This section describes the deployment schemas in detail.
Deployment schema for on-premises solution
Deploy Kaspersky Security Integration with ConnectWise Manage based on this schema if you use an on-premises version of a Kaspersky Lab solution—Kaspersky Security Center—and if you do not have slave Administration Servers in your managed company infrastructure.
The components of Kaspersky Security Integration with ConnectWise Manage are shown as orange rectangles in the following figure.
Deployment schema for on-premises solution
The following list describes deployment prerequisites and data flow:
- Kaspersky Security Integration Service for MSP must be installed on the computer on which Kaspersky Security Center Administration Server is installed.
- Kaspersky Security Integration Tool for MSP must be installed on the computer on which either Administration Console or Administration Server is installed and deployed.
- In Kaspersky Security Center, virtual servers must be created for each of the ConnectWise Manage companies. These virtual servers are then mapped to the companies, allowing you to integrate Kaspersky Security Center and ConnectWise Manage.
- In your managed environment, you may have many different Kaspersky Lab programs installed. Data on the number of programs is used by Kaspersky Security Integration with ConnectWise Manage for automatic billing. Events and computer status changes sent from Kaspersky Lab programs to Kaspersky Security Center are received by Kaspersky Security Integration Service for MSP and tickets are created based on them.
Deployment schema for on-premises solution and slave servers
Deploy Kaspersky Security Integration with ConnectWise Manage based on this schema if you use an on-premises version of a Kaspersky Lab solution—Kaspersky Security Center—and if you use slave Administration Servers in your managed company infrastructure.
The components of Kaspersky Security Integration with ConnectWise Manage are shown as orange rectangles in the following figure.
Deployment schema for on-premises solution and slave servers
The following list describes deployment prerequisites and data flow:
- One or more Administration Servers are used in the client's infrastructure. These Administration Servers are slave Administration Servers relative to the Administration Server that is installed in the MSP infrastructure. The Administration Server installed in the MSP infrastructure is the master Administration Server. You can use this type of deployment to decrease load on your master Administration Server.
- Kaspersky Security Integration Service for MSP must be installed on the computer on which the slave Administration Server is installed in the client's infrastructure.
- Kaspersky Security Integration Tool for MSP must be installed on the computer on which either Administration Console or the master Administration Server is installed and deployed.
- In your slave Administration Server, virtual servers must be created for each of the managed accounts. These virtual servers are then mapped to ConnectWise Manage companies, allowing you to integrate Kaspersky Security Center and ConnectWise Manage.
- In your managed environment, you may have many different Kaspersky Lab programs installed. Data on the number of programs is used by Kaspersky Security Integration with ConnectWise Manage for automatic billing. Events and computer status changes sent from Kaspersky Lab programs to Kaspersky Security Center are received by Kaspersky Security Integration Service for MSP and tickets are created based on them.
Deployment schema for cloud-based solution
Deploy Kaspersky Security Integration with ConnectWise Manage based on this schema if you use the cloud-based version of a Kaspersky Lab solution—Kaspersky Business Hub.
The components of Kaspersky Security Integration with ConnectWise Manage are shown as orange rectangles in the following figure.
Deployment schema for cloud-based solution
The following list describes deployment prerequisites and data flow:
- In this deployment schema, only Kaspersky Security Integration Tool for MSP is used. Kaspersky Security Integration Service for MSP is not used.
- Kaspersky Security Integration Tool for MSP must be installed in your infrastructure, and not in the client infrastructure.
- In your Kaspersky Business Hub solution, companies must be created for each of the ConnectWise Manage companies. These companies are then mapped to the companies, allowing you to integrate Kaspersky Business Hub and ConnectWise Manage.
- In your managed environment, you may have many different Kaspersky Lab programs installed. Data on the number of programs is used by Kaspersky Security Integration with ConnectWise Manage for automatic billing. Events and computer status changes sent from Kaspersky Lab programs to Kaspersky Business Hub are received and tickets are created based on them.
Integration scenario
This section describes the overall sequence of actions that you perform to integrate your Kaspersky Lab solution (Kaspersky Security Center or Kaspersky Business Hub) with ConnectWise Manage by means of Kaspersky Security Integration with ConnectWise Manage.
- Installing Kaspersky Security Integration with ConnectWise Manage.
Download Kaspersky Security Integration with ConnectWise Manage from the Kaspersky Lab web site and install it by using a standard Windows installation procedure.
- Preparing information for setting up integration.
Check the connection settings and additional prerequisites to successfully integrate your Kaspersky Lab solution with ConnectWise Manage. You will have to provide these parameters in the next steps of this scenario.
- Connecting Kaspersky Security Integration with ConnectWise Manage to your Kaspersky Lab solution.
Provide the parameters to connect Kaspersky Security Integration with ConnectWise Manage to your Kaspersky Lab solution:
- For Kaspersky Security Center, provide user credentials and server parameters.
- For Kaspersky Business Hub, provide the account credentials.
- Creating integration with ConnectWise Manage.
Provide the parameters for the new integration with ConnectWise Manage that is created during initial configuration. The integration parameters are the same for Kaspersky Security Center and for Kaspersky Business Hub.
- Adding virtual servers or companies to your integration.
Select virtual servers or companies to be integrated with ConnectWise Manage:
- For Kaspersky Security Center, select virtual servers to be mapped to ConnectWise Manage companies.
- For Kaspersky Business Hub, select companies to be mapped to ConnectWise Manage companies.
- Checking integration.
After you perform step 1 through step 5, Kaspersky Security Integration with ConnectWise Manage will be installed and set up. To verify the installation, open the Companies tab and make sure that your virtual servers / companies are displayed in the first column and that your ConnectWise Manage companies are available for selection in the second column.
Kaspersky Security Integration Tool for MSP main window
Installing and removing Kaspersky Security Integration with ConnectWise Manage
Kaspersky Security Integration with ConnectWise Manage is delivered as a distribution package that contains two applications: Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP.
This section contains step-by-step instructions for installing and removing Kaspersky Security Integration with ConnectWise Manage.
Installing Kaspersky Security Integration with ConnectWise Manage
After you download the distribution package for Kaspersky Security Integration with ConnectWise Manage, install the components of Kaspersky Security Integration with ConnectWise Manage by using a standard Windows installation procedure.
Kaspersky Security Integration Service must be installed if you use Kaspersky Security Center. If you use Kaspersky Business Hub, you do not have to install Kaspersky Security Integration Service.
Install Kaspersky Security Integration Service for MSP on the computer on which Kaspersky Security Center Administration Server is installed. Install Kaspersky Security Integration Tool for MSP on the computer on which either Administration Console or Administration Server is installed and deployed.
Install both components of Kaspersky Security Integration with ConnectWise Manage—Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP—in the same manner. The steps below describe the installation process for each component.
Before you install the components of Kaspersky Security Integration with ConnectWise Manage, it is strongly recommended to check their digital signatures to make sure that they are issued by Kaspersky Lab.
To check the digital signature for a component of Kaspersky Security Integration with ConnectWise Manage:
- Locate the installation application (msp_setup.exe file) for the Kaspersky Security Integration with ConnectWise Manage component.
- Right-click the installation application and select Properties.
- In the properties window that opens, click the Digital Signatures tab and check that the installation application has Kaspersky Lab signatures.
- Close the properties window.
After you check the digital signatures of the Kaspersky Security Integration with ConnectWise Manage components, install each of the components.
You can install Kaspersky Security Integration with ConnectWise Manage either in interactive mode or in silent mode.
Installation in interactive mode
To install a component of Kaspersky Security Integration with ConnectWise Manage in interactive mode:
- On the machine where you want to install Kaspersky Security Integration with ConnectWise Manage, double-click the installation application (msp_setup.exe file) for the component.
- Follow the wizard steps to install the component.
- Accept the terms of the license agreement to continue installation.
- When installing Kaspersky Security Integration Tool for MSP, accept the terms of the privacy policy to continue installation.
- If required, change the installation folder for the component. The folder you select must have about 25 MB of free space to install both components of Kaspersky Security Integration with ConnectWise Manage.
- Click Finish on the last page of the wizard.
Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP are installed. Kaspersky Security Integration Tool for MSP is added to the Start menu.
Installation in silent mode
To install Kaspersky Security Integration Tool for MSP in silent mode:
- Read the license agreement and the privacy policy stored in license.txt file next to the installation application (msp_setup.exe file). Proceed only if you accept the terms of the license agreement and the privacy policy.
- At the command prompt, type
msp_setup.exe /s /v"EULA=1 PRIVACYPOLICY=1 INSTALLDIR=\"<installation path>\""
Here,
EULA=1means that you accept the terms of the license agreement.If you specify another value or if you do not specify this parameter, Kaspersky Security Integration Tool for MSP will not be installed.
PRIVACYPOLICY=1means that you accept the terms of the privacy policy.If you specify another value or if you do not specify this parameter, Kaspersky Security Integration Tool for MSP will not be installed.
INSTALLDIR=\"<installation path>\"is the path to the Kaspersky Security Integration Tool for MSP installation folder.If you do not specify this parameter, Kaspersky Security Integration Tool for MSP will be installed to %PROGRAMFILES%\Kaspersky Lab\Kaspersky Security Integration Tool for MSP (in 32-bit versions of Windows) or %PROGRAMFILES(x86)%\Kaspersky Lab\Kaspersky Security Integration Tool for MSP (in 64-bit versions of Windows).
Kaspersky Security Integration Tool for MSP is installed and is added to the Start menu.
To install Kaspersky Security Integration Service for MSP in silent mode:
- Read the license agreement stored in license.txt file next to the installation application (msp_setup.exe file). Proceed only if you accept the terms of the license agreement.
- At the command prompt, type
msp_setup.exe /s /v"EULA=1 INSTALLDIR=\"<installation path>\""
Here,
EULA=1means that you accept the terms of the license agreement.If you specify another value or if you do not specify this parameter, Kaspersky Security Integration Service for MSP will not be installed.
INSTALLDIR=\"<installation path>\"is the path to the Kaspersky Security Integration Service for MSP installation folder.If you do not specify this parameter, Kaspersky Security Integration Service for MSP will be installed to %PROGRAMFILES%\Kaspersky Lab\Kaspersky Security Integration Service for MSP (in 32-bit versions of Windows) or to %PROGRAMFILES(x86)%\Kaspersky Lab\Kaspersky Security Integration Service for MSP (in 64-bit versions of Windows).
Kaspersky Security Integration Service for MSP is installed.
Known issue
Kaspersky Security Integration Service for MSP cannot connect to ConnectWise Manage if Kaspersky Security Center and Kaspersky Security Integration Service for MSP are deployed in the client's network instead of the managed service provider's network, and there is an authentication proxy server between Kaspersky Security Integration Service for MSP and ConnectWise Manage.
To enable Kaspersky Security Integration Service for MSP to connect to ConnectWise Manage over the Internet through the proxy with authentication:
- Launch the Services Microsoft Management Console snap-in by selecting Start → Control panel → Administrative Tools → Services.
- Right-click Kaspersky Security Integration Service for MSP and select Properties.
- In the service properties window that opens, click the Log On tab and specify the following settings:
- In the Log on as section, select the This account option.
- Specify the account credentials for connection to the Internet by Kaspersky Security Integration Service for MSP.
- Click OK in the service properties window to save your changes.
Removing Kaspersky Security Integration with ConnectWise Manage
You can remove the components of Kaspersky Security Integration with ConnectWise Manage by using a standard Windows installation / uninstallation procedure.
To remove a component of Kaspersky Security Integration with ConnectWise Manage:
- On the Start menu, select Control Panel and then click Programs and Features.
- In the list of installed programs, select Kaspersky Security Integration Tool for MSP or Kaspersky Security Integration Service for MSP.
- Right-click the selected application and select Uninstall.
The selected application is removed. Repeat these steps for the other component of Kaspersky Security Integration with ConnectWise Manage.
As an alternative, you can remove the components of Kaspersky Security Integration with ConnectWise Manage in silent mode.
To remove Kaspersky Security Integration Tool for MSP in silent mode:
Run Command Prompt as an administrator and type
msiexec.exe /x {E58E13CA-6745-4C60-BE0B-FE6DD416FCB0} REBOOT=ReallySuppress /qn /l*v %temp%\msp_service_uninstall_log.txt
To remove Kaspersky Security Integration Service for MSP in silent mode:
Run Command Prompt as an administrator and type
msiexec.exe /x {7EF14DEE-606A-4147-94FD-3FB0E1FA9D69} REBOOT=ReallySuppress /qn /l*v %temp%\msp_tool_uninstall_log.txt
Removing user.config file
When you uninstall Kaspersky Security Integration Tool for MSP, the user.config files are not removed. These files are automatically created for every user who has ever connected to a Kaspersky Lab solution (either on-premises or Cloud) using Kaspersky Security Integration Tool for MSP. The user.config files contain encrypted information about the user's connection settings for Kaspersky Security Center or Kaspersky Business Hub.
If necessary, you can manually remove the user.config file for every user. The user.config file is stored in the AppData folder of a user.
For example, for Windows 7 and Administrator user, the path to the user.config files is as follows: C:\Users\Administrator\AppData\Local\AO_Kaspersky_Lab\IntegrationUI.exe_Url_nrmo2y4axdcnfumknnua4kzhxvafmxmb\1.0.0.0\user.config.
Updating Kaspersky Security Integration with ConnectWise Manage
It is recommended to update Kaspersky Security Integration with ConnectWise Manage to the latest version.
To successfully migrate Kaspersky Security Integration with ConnectWise Manage:
- Update Kaspersky Security Integration with ConnectWise Manage.
- Check the settings. If you are not satisfied with the results of their migration, re-configure the integration.
Updating Kaspersky Security Integration with ConnectWise Manage
The sequence of actions required to update Kaspersky Security Integration with ConnectWise Manage depends on the Kaspersky Lab solution that you use.
- If you use Kaspersky Security Center, update both components of Kaspersky Security Integration with ConnectWise Manage (Kaspersky Security Integration Service for MSP and all instances of Kaspersky Security Integration Tool for MSP) to the latest version before you start using the new version of Kaspersky Security Integration with ConnectWise Manage. If you use several instances of Kaspersky Security Integration Tool for MSP when working with a single Kaspersky Security Integration Service for MSP, make sure that all these instances are updated.
If one or more components of Kaspersky Security Integration with ConnectWise Manage is not updated (either Kaspersky Security Integration Service for MSP or one of the Kaspersky Security Integration Tool for MSP instances), Kaspersky Security Integration with ConnectWise Manage will not operate properly.
- If you use Kaspersky Business Hub, update all instances of Kaspersky Security Integration Tool for MSP to the latest version.
Reconfiguring ticketing
Ticketing in Kaspersky Security Integration with ConnectWise Manage version Maintenance Release 2 and later differs significantly from ticketing in version Maintenance Release 1 and earlier. When you update Kaspersky Security Integration with ConnectWise Manage to Maintenance Release 2 or later, it is recommended to reconfigure ticketing in Kaspersky Security Integration Tool for MSP. For information about how to configure ticketing, refer to Setting up ticketing.
All other settings that you configured in a previous version of Kaspersky Security Integration Tool for MSP, such as integration parameters, companies, and product mappings, remain the same when you migrate Kaspersky Security Integration with ConnectWise Manage to the latest version.
Page top
Interface of Kaspersky Security Integration with ConnectWise Manage
Kaspersky Security Integration with ConnectWise Manage consists of two applications: Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP.
- Kaspersky Security Integration Tool for MSP provides a graphical user interface to configure integration.
- Kaspersky Security Integration Service for MSP is a service application for Microsoft Windows that synchronizes data in Kaspersky Security Center and ConnectWise Manage. It does not have a user interface.
Kaspersky Security Integration Tool for MSP consists of one window with several nested tabs. Depending on the type of Kaspersky Lab solution that you use—on-premises or cloud-based—Kaspersky Security Integration Tool for MSP may have three or four nested tabs. On these tabs, you can configure mapping between the Kaspersky Lab solution entities, such as virtual servers / companies and security applications, and ConnectWise Manage entities, such as companies and products. You can also configure ticketing, and if you use the cloud-based version of the solution you can manage administrators who can configure the integration.
Kaspersky Security Integration Tool for MSP main window
The Kaspersky Security Integration Tool for MSP window has the following tabs:
- Companies—Use this tab to set up and modify mapping between managed companies in ConnectWise Manage and virtual servers or companies in your Kaspersky Lab solution, and to add or remove virtual servers or companies to your integration. On the Companies tab, you can also enable automatic billing for your managed companies.
- Ticketing—Use this tab to set up ticketing rules for enabling automatic creation and assignment of tickets in ConnectWise Manage. You can configure creation and assignment of tickets depending on the event severity and type, or when a computer status changes in Kaspersky Lab security applications.
Ticketing is one of the most important features of your integration. If you do not configure ticketing, ConnectWise Manage cannot generate tickets on the basis of events and computer status changes and cannot process corresponding issues.
- Products—Use this tab to set up mapping between ConnectWise Manage products and Kaspersky Lab security applications so that usage information about Kaspersky Lab security applications appears in ConnectWise Manage as Agreement Additions. You can modify the existing mapping of products and security applications as well.
- Administrators—This tab is available for cloud-based solutions only. Use this tab to manage the administrators related to the integration with Kaspersky Business Hub. You can add existing Kaspersky Business Hub administrators to your integration or remove administrators from the integration if you do not want them to configure the integration.
Getting started
After you install Kaspersky Security Integration with ConnectWise Manage, you establish a connection between it and ConnectWise Manage. The connection enables you to configure integration using Kaspersky Security Integration Tool for MSP and enables Kaspersky Security Integration Service for MSP to send Service Tickets and license usage information to ConnectWise Manage. To establish connection, create a new integration using Kaspersky Security Integration Tool for MSP.
The integration process varies depending on which Kaspersky Lab solution you use. This section describes how to configure integration with Kaspersky Security Center and with Kaspersky Business Hub.
Prerequisites
When configuring integration, you must specify the parameters of the Kaspersky Lab solution you integrate with (Kaspersky Security Center or Kaspersky Business Hub) and ConnectWise Manage connection parameters. It is recommended that you check these parameters in advance in order to prepare for setting up integration.
Kaspersky Security Center parameters
Check the following parameters:
- Address of the computer on which Kaspersky Security Center Administration Server is installed.
- Credentials: user name and password for the computer on which Administration Server is installed.
- If you establish connection to the Administration Server through a proxy server, check the proxy server parameters: network address or domain name and credentials for the proxy server.
Kaspersky Business Hub parameters
Check the credentials of your Kaspersky Business Hub account: email address and password.
ConnectWise Manage parameters
Check the following parameters:
- Web address of the site that hosts the ConnectWise Manage Server.
- Name of your company in ConnectWise Manage, that is, the company name you use to log in to ConnectWise Manage.
- Public and private keys generated by ConnectWise Manage. Note that the private key is available only at the time the key is created.
For details on how to generate the keys, see Setting up public and private keys in ConnectWise Manage.
Additional prerequisites
During the integration process, it is required to add virtual servers or companies to your integration. These virtual servers or companies are then mapped to ConnectWise Manage companies.
For each client company in ConnectWise Manage, create and assign a separate Kaspersky Security Center virtual server / Kaspersky Business Hub company prior to integration.
One-to-one mapping is supported, and therefore the number of virtual servers or companies must not exceed the number of your managed companies.
Page top
Setting up public and private keys in ConnectWise Manage
To create integration between ConnectWise Manage and Kaspersky Security Integration with ConnectWise Manage, you have to provide API keys. API keys are public and private keys that are generated by ConnectWise Manage for an integration account.
To create API keys in ConnectWise Manage:
- In ConnectWise Manage, click System → Members and either select an existing member or create a new one.
Make sure that the member you selected has all the rights necessary to set up the integration.
- On the Member Maintenance screen, click the API Keys tab and then click the New Item button.
- In the Description field, type the description for the newly created keys (for example, Kaspersky Integration).
- Click the Save button to save the new item.
The two API keys are generated and displayed in the Public Key and Private Key fields.
The private key is displayed only at the time it is created.
Make a note of both keys or copy them to the Clipboard because there is no way to recover the private key after the API Keys tab is closed.
You will have to specify these keys when you configure integration with ConnectWise Manage.
Page top
Integrating with Kaspersky Security Center
This section describes how to create and configure integration between ConnectWise Manage and Kaspersky Security Center by using Kaspersky Security Integration Tool for MSP.
To successfully create integration, connect to Kaspersky Security Center Administration Server and perform the steps described in the following sections.
Connecting to Kaspersky Security Center Administration Server
When you start Kaspersky Security Integration Tool for MSP, the connection settings window opens. In this window, specify the settings to connect to Kaspersky Security Center Administration Server.
Connecting to Kaspersky Security Center Administration Server
To connect to Kaspersky Security Center Administration Server:
- In the Start menu, select Kaspersky Security Integration Tool for MSP.
- In the window that opens, select the Kaspersky Endpoint Security for Business solution to connect to Kaspersky Security Center Administration Server.
- You can connect to Kaspersky Security Center Administration Server in one of the following ways:
- By providing the connection parameters for the computer on which the Administration Server is installed.
If you selected this method of connection, specify the following connection settings. None of the fields can be blank.
- Address—Address of the computer on which the Administration Server is installed. You can specify this value as an IP address or as a domain name of the computer.
- User name—User name to connect to the computer on which the Administration Server is installed, that is, to the computer whose address you specified in the Address field.
- Password—Password to connect to the computer, on which the Administration Server is installed, that is, to the computer whose address you specified in the Address field.
- By selecting the Administration Server certificate.
In this case, you do not have to provide the connection parameters for the computer on which the Administration Server is installed. Kaspersky Security Integration Tool for MSP uses the certificate of Kaspersky Security Center Administration Server to connect to this Administration Server. Usage of the certificate guarantees that Kaspersky Security Integration Tool for MSP connects to the Administration Server from which the certificate was downloaded.
The Administration Server certificate is created automatically during installation of the Administration Server and is stored in the %ProgramData%\Application Data\KasperskyLab\adminkit\1093\cert folder on the computer that has Administration Server installed. Before starting to use the Administration Server certificate for authentication, copy the certificate file, klserver.cer, to the computer on which Kaspersky Security Integration Tool for MSP is installed.
- By providing the connection parameters for the computer on which the Administration Server is installed.
To use Administration Server certificate:
- Click the Select Kaspersky Security Center Administration Server certificate link.
- In the window that opens, select the Use a certificate check box, click Browse, and then navigate to the certificate file.
- Click OK to start using the selected certificate for connection.
- If you want to establish the connection to the Administration Server through a proxy server, select the Use proxy server check box. By default, this check box is cleared.
If you selected the Use proxy server check box, provide the following proxy-server settings:
- Address—Network address of the proxy server. Provide the address as a full domain name of the proxy server.
- User name—User name to connect to the proxy server.
- Password—Password to connect to the proxy server.
- Click the Proceed button to connect to the Administration Server using the specified settings.
The system validates the provided settings and connects to the Administration Server.
Creating a Kaspersky Security Center integration with ConnectWise Manage
After you connect to the Administration Server, the integration settings window opens, where you can create an integration between ConnectWise Manage and Kaspersky Security Center by means of Kaspersky Security Integration Tool for MSP.
Creation of an integration between ConnectWise Manage and Kaspersky Security Center is required only when you launch Kaspersky Security Integration Tool for MSP for the first time.
Specifying ConnectWise Manage integration settings
To create integration with ConnectWise Manage:
- In the integration settings window that opens after you connect to the Administration Server, specify the following settings for the newly created integration:
- Select platform—Select the integration platform from the drop-down list. The list contains the names of all the platforms that Kaspersky Security Center can be integrated with. For integration with ConnectWise Manage, select ConnectWise Manage.
- Integration name—Name of the new integration. This field cannot be blank. By default, the integration name is Integration with ConnectWise Manage. The integration name is displayed in the Kaspersky Security Integration Tool for MSP window as a link that allows you to view and access the integration properties.
For an integration with Kaspersky Business Hub, click the View integration ID link under the integration name to view the identifier of the integration. You may have to provide this ID to Kaspersky Lab Technical Support for diagnostics and troubleshooting.
- Site—Web address of the site that hosts the ConnectWise Manage Server. This field cannot be blank.
When you set up integration with ConnectWise Manage Cloud, specify the web address of the site that hosts the ConnectWise Manage Server with the ‘api-' prefix. Use one of the following sites based on your location:
- North American Cloud:
api-na.myconnectwise.net - European Cloud:
api-eu.myconnectwise.net - South African Cloud:
api-za.myconnectwise.net - Australian Cloud:
api-au.myconnectwise.net
- North American Cloud:
- Company—Name of your company in ConnectWise Manage. It is the company name you use to log in to ConnectWise Manage. This field cannot be blank.
- Public key—Public key generated by ConnectWise Manage. This field cannot be blank.
- Private key—Private key generated by ConnectWise Manage. This field cannot be blank. The private key is available only at the time the key is created.
ConnectWise Manage generates both public and private keys. For details on how to generate the keys, see section Setting up public and private keys in ConnectWise Manage.
- Click the Proceed button when you have finished specifying the integration settings.
The system validates the ConnectWise Manage integration settings. If the settings you provide are correct, they are saved and then used by Kaspersky Security Integration with ConnectWise Manage to gain access to ConnectWise Manage.
Kaspersky Security Center is now integrated with ConnectWise Manage.
Adding virtual servers to the integration
After an integration with ConnectWise Manage is created, a window opens where you can add Kaspersky Security Center virtual servers to the integration. Kaspersky Security Center virtual servers are then mapped to the ConnectWise Manage companies.
Adding virtual servers to the integration
To add Kaspersky Security Center virtual servers to the integration:
- In the window, which lists Kaspersky Security Center virtual servers, select the check boxes next to the existing virtual servers to add them to the integration.
If you want to add all virtual servers to the integration, select the Select all check box.
- Click Proceed.
You will now be able to map these virtual servers to ConnectWise Manage companies.
Each virtual server can be added to one integration only. That is, if a virtual server is added to an integration, it is not displayed in a list of virtual servers available for another integration.
Integrating with Kaspersky Business Hub
This section describes how to create and configure integration between ConnectWise Manage and Kaspersky Business Hub by means of Kaspersky Security Integration Tool for MSP.
To successfully create integration, connect to Kaspersky Business Hub and perform the steps described in the following sections.
Connecting to Kaspersky Business Hub
When you start Kaspersky Security Integration Tool for MSP, the connection settings window opens. In this window, specify the settings to connect to Kaspersky Business Hub.
Connecting to Kaspersky Business Hub
To connect to Kaspersky Business Hub:
- In the Start menu, select Kaspersky Security Integration Tool for MSP.
- In the window that opens, select the Kaspersky Business Hub solution.
- Specify the following connection settings:
- User name—Email address that you use to connect to Kaspersky Business Hub. This field cannot be blank.
- Password—Password that you use to connect to Kaspersky Business Hub. This field cannot be blank.
- Click the Proceed button to connect to Kaspersky Business Hub by using the specified settings.
The system validates the provided settings and establishes connection to Kaspersky Business Hub.
Creating a Kaspersky Business Hub integration with ConnectWise Manage
After you connect to the Kaspersky Business Hub, the integration settings window opens, where you can create an integration between ConnectWise Manage and Kaspersky Business Hub by means of Kaspersky Security Integration Tool for MSP.
Creation of an integration between ConnectWise Manage and Kaspersky Business Hub is required only when you launch Kaspersky Security Integration Tool for MSP for the first time.
Specifying ConnectWise Manage integration settings
To create integration with ConnectWise Manage:
- In the integration settings window that opens after you connect to Kaspersky Business Hub, specify the following settings for the newly created integration:
- Select platform—Select the integration platform from the drop-down list. The list contains the names of all platforms that Kaspersky Business Hub can be integrated with. For integration with ConnectWise Manage, select ConnectWise Manage.
- Integration name—Name of the new integration. This field cannot be blank. By default, the integration name is Integration with ConnectWise Manage. The integration name is displayed in the Kaspersky Security Integration Tool for MSP window as a link that allows you to view and access the integration properties.
For an integration with Kaspersky Business Hub, click the View integration ID link under the integration name to view the identifier of the integration. You may have to provide this ID to Kaspersky Lab Technical Support for diagnostics and troubleshooting.
- Site—Web address of the site that hosts the ConnectWise Manage Server. This field cannot be blank.
When you set up integration with ConnectWise Manage Cloud, specify the web address of the site that hosts the ConnectWise Manage Server with the ‘api-' prefix. Use one of the following sites based on your location:
- North American Cloud:
api-na.myconnectwise.net - European Cloud:
api-eu.myconnectwise.net - South African Cloud:
api-za.myconnectwise.net - Australian Cloud:
api-au.myconnectwise.net
- North American Cloud:
- Company—Name of your company in ConnectWise Manage. It is the company name you use to log in to ConnectWise Manage. This field cannot be blank.
- Public key—Public key generated by ConnectWise Manage. This field cannot be blank.
- Private key—Private key generated by ConnectWise Manage. This field cannot be blank. The private key is available only at the time the key is created.
ConnectWise Manage generates both public and private keys. For details on how to generate the keys, see section Setting up public and private keys in ConnectWise Manage.
- Click the Proceed button when you have finished specifying the integration settings.
The system validates the ConnectWise Manage integration settings. If the settings you provide are correct, they are saved and then used by Kaspersky Security Integration with ConnectWise Manage to gain access to ConnectWise Manage.
Kaspersky Business Hub is now integrated with ConnectWise Manage.
Adding Kaspersky Business Hub companies to the integration
After an integration with ConnectWise Manage is created, a window opens where you can add Kaspersky Business Hub companies to the integration. Kaspersky Business Hub companies are then mapped to the ConnectWise Manage companies.
You cannot add separate Kaspersky Endpoint Security Cloud workspaces or Kaspersky Security for Microsoft Office 365 workspaces to the integration. You can add only entire Kaspersky Business Hub companies. All workspaces created for a company in Kaspersky Business Hub are added to the integration.
Adding companies to the integration
To add Kaspersky Business Hub companies to the integration:
- In the window, which lists Kaspersky Business Hub companies, select the check boxes next to the existing companies to add them to the integration. Icons next to the name of each company show which workspaces are created for this company in Kaspersky Business Hub.
If you want to add all companies to the integration, select the Select all check box.
- Click Proceed.
You will now be able to map these companies to ConnectWise Manage companies.
Each Kaspersky Business Hub company can be added to one integration only. That is, if a company is added to an integration, it is not displayed in a list of companies available for another integration.
Supplementary parameter
The parameter that indicates the type of Kaspersky Business Hub server to which Kaspersky Security Integration Tool for MSP connects may be included in the .config file (IntegrationUI.exe.config) of Kaspersky Security Integration Tool for MSP.
The parameter name is KESCloudServer; and its possible values are:
- production—Kaspersky Security Integration Tool for MSP works with the Production server.
- beta—Kaspersky Security Integration Tool for MSP works with the Beta server.
- test—Kaspersky Security Integration Tool for MSP works with the Test server.
You are strongly urged not to modify the KESCloudServer parameter unless you receive clear instructions from Kaspersky Lab.
The IntegrationUI.exe.config file is stored in the installation folder of Kaspersky Security Integration Tool for MSP. The default path is C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Tool for MSP\IntegrationUI.exe.config.
By default, the KESCloudServer parameter is not displayed in the .config file of Kaspersky Security Integration Tool for MSP.
The KESCloudServer parameter can be specified as follows:
<appSettings>
<add key="KESCloudServer" value="production" />
</appSettings>
Managing integrations
This section describes how to edit or delete an existing integration and how to create a new integration. For example, you may have to edit, delete, or create an integration when you change the vendor of your Professional Services Automation system.
Creating a new integration
You can create a new integration in the Kaspersky Security Integration Tool for MSP window.
Creating a new integration
To create a new integration with ConnectWise Manage:
- At the top of the Kaspersky Security Integration Tool for MSP window, click the name of the current integration.
- In the Integration Settings window that opens, click the New integration button.
A new Integration Settings window opens. The fields for the connection settings are blank.
- Specify the values for the following settings of the integration:
- Platform—Select the integration platform from the drop-down list. The list contains the names of all platforms that Kaspersky Security Center or Kaspersky Business Hub can be integrated with. For integration with ConnectWise Manage, select ConnectWise Manage.
- Integration name—Name of the new integration. This field cannot be blank. By default, the integration name is Integration with ConnectWise Manage. The integration name is displayed in the Kaspersky Security Integration Tool for MSP window as a link that allows you to view and access the integration properties.
For an integration with Kaspersky Business Hub, click the View integration ID link under the integration name to view the identifier of the integration. You may have to provide this ID to Kaspersky Lab Technical Support for diagnostics and troubleshooting.
- Site—Web address of the site that hosts the ConnectWise Manage Server. This field cannot be blank.
When you set up integration with ConnectWise Manage Cloud, specify the web address of the site that hosts the ConnectWise Manage Server with the ‘api-' prefix. Use one of the following sites based on your location:
- North American Cloud:
api-na.myconnectwise.net - European Cloud:
api-eu.myconnectwise.net - South African Cloud:
api-za.myconnectwise.net - Australian Cloud:
api-au.myconnectwise.net
- North American Cloud:
- Company—Name of your company in ConnectWise Manage. It is the company name you use to log in to ConnectWise Manage. This field cannot be blank.
- Public key—Public key generated by ConnectWise Manage. This field cannot be blank.
- Private key—Private key generated by ConnectWise Manage. This field cannot be blank. The private key is available only at the time the key is created.
ConnectWise Manage generates both public and private keys. For details on how to generate the keys, see section Setting up public and private keys in ConnectWise Manage.
- Click OK when you have finished specifying the integration settings.
The system validates the ConnectWise Manage integration settings. If the settings you provide are correct, they are saved and then used by Kaspersky Security Integration with ConnectWise Manage to gain access to ConnectWise Manage.
A new integration with ConnectWise Manage is created.
Page top
Editing and viewing an existing integration
You can view and edit settings of an existing integration in the Kaspersky Security Integration Tool for MSP window.
Editing an integration
To view and edit integration with ConnectWise Manage:
- At the top of the window, click the name of the integration whose settings you want to view or modify.
- In the Integration Settings window that opens, in the Select integration drop-down list select the required integration.
- Modify the following settings of the selected integration:
- Integration name—Name of the selected integration. By default, the integration name is Integration with ConnectWise Manage. You can edit this field, however, it cannot be blank.
For an integration with Kaspersky Business Hub, click the View integration ID link under the integration name to view the identifier of the integration. You may have to provide this ID to Kaspersky Lab Technical Support for diagnostics and troubleshooting.
- Public key—Public key generated by ConnectWise Manage. This field cannot be blank.
- Private key—Private key generated by ConnectWise Manage. This field cannot be blank. The private key is available only at the time the key is created.
ConnectWise Manage generates both public and private keys. For details on how to generate the keys, see section Setting up public and private keys in ConnectWise Manage.
The Site and Company settings cannot be modified. If you have to change these settings, create a new integration.
- Integration name—Name of the selected integration. By default, the integration name is Integration with ConnectWise Manage. You can edit this field, however, it cannot be blank.
- Click OK when you have finished editing the integration settings.
The system validates the ConnectWise Manage integration settings. If the settings you provide are correct, they are saved and then used by Kaspersky Security Integration with ConnectWise Manage to gain access to ConnectWise Manage.
The integration with ConnectWise Manage is modified and saved.
Page top
Deleting an existing integration
You can delete an existing integration in the Kaspersky Security Integration Tool for MSP window.
When you delete an integration, all virtual servers or companies that were linked to the integration are unbound from the integration but continue to exist in Kaspersky Security Center or Kaspersky Business Hub. All administrators of the deleted integration receive notifications that the integration was deleted, but they can continue to administer Kaspersky Business Hub companies that were linked to this integration.
All Kaspersky Security Center virtual servers or Kaspersky Business Hub companies that are unbound from the deleted integration can be added to other integrations.
To delete integration with ConnectWise Manage:
- At the top of the Kaspersky Security Integration Tool for MSP window, click the name of the integration that you want to delete.
- In the integration window that opens, click Delete to delete the integration.
- Click Yes to confirm deletion.
The integration settings are cleared, indicating that the integration is deleted.
Configuring integration in Kaspersky Security Integration with ConnectWise Manage
The purpose of Kaspersky Security Integration Tool for MSP is to configure integration between ConnectWise Manage and the Kaspersky Lab solution you use: Kaspersky Security Center or Kaspersky Business Hub.
Using Kaspersky Security Integration Tool for MSP, you can do the following:
- Map ConnectWise Manage companies to Kaspersky Security Center virtual servers or Kaspersky Business Hub companies.
- Configure ticketing in ConnectWise Manage.
- Map Kaspersky Lab security applications to existing ConnectWise Manage products.
- Configure automated billing.
Mapping companies and enabling automatic billing
Use the Companies tab in the Kaspersky Security Integration Tool for MSP window to set up and modify mapping between managed companies in ConnectWise Manage and virtual servers or companies in your Kaspersky Lab solution. To set up mapping, companies must be created in ConnectWise Manage, while virtual servers must be added to Kaspersky Security Center Administration Server or companies must be created in Kaspersky Business Hub.
On the Companies tab, you can also enable automatic billing for your managed companies. This means that information about the number of license units for Kaspersky Lab security applications provided during the current billing period can be updated regularly and automatically in ConnectWise Manage. Timely updating lets you prepare customer invoices more quickly and easily.
When you click the Companies tab, a list is displayed, showing virtual servers or companies and their corresponding ConnectWise Manage companies. You can add existing virtual servers or companies to the integration and map ConnectWise Manage companies to them. You can also delete mapping between a virtual server or company and its corresponding ConnectWise Manage company. In this case, neither the virtual server / company nor the ConnectWise Manage company is deleted; instead, the link between them is broken.
Mapping companies and enabling automatic billing
The following sections explain how to add or remove virtual servers or companies to / from the integration and how to configure automatic billing.
Adding and removing virtual servers or companies
You can add existing virtual servers or companies to the integration or remove them from the integration.
To add or remove virtual servers or companies to / from the integration:
- In the Kaspersky Security Integration Tool for MSP window, click the Companies tab.
- Click the Add / remove virtual servers link if you use Kaspersky Security Center, or the Add / remove companies link if you use Kaspersky Business Hub, and then do one of the following:
- Select check boxes next to existing virtual servers or companies to add them to the integration. Then you can match these virtual servers or companies to ConnectWise Manage companies.
- Clear check boxes next to virtual servers or companies to remove them from the integration. This action does not remove the virtual servers from Kaspersky Security Center or companies from Kaspersky Business Hub; it only deletes the mapping between the virtual servers or companies and the ConnectWise Manage companies.
- Click OK.
Each virtual server or company can be added to one integration only. That is, if a virtual server or a company is added to an integration, it is not displayed in a list of virtual servers or companies available for another integration.
Setting up automatic billing
You can map virtual servers or companies to ConnectWise Manage companies and configure automatic billing for the selected companies.
To set up mapping between virtual servers or companies and ConnectWise Manage companies, and edit billing settings:
- In the Kaspersky Security Integration Tool for MSP window, click the Companies tab.
- In the Virtual server column (if you use Kaspersky Security Center) or in the Company column (if you use Kaspersky Business Hub), locate the virtual servers or companies to which to map the ConnectWise Manage company.
If you have a long list of virtual servers or companies, use the search box located above the table, on the right, to find the required virtual server or company. Type any part of the virtual server or company name in the search box and click the Search button. Only the virtual servers or companies whose names contain the string you entered are displayed.
- In the ConnectWise Manage company column, click the drop-down arrow and select the ConnectWise Manage company you want to map to the virtual server or company.
One-to-one mapping is supported. You can map one virtual server or one company to a single ConnectWise Manage company.
- Turn automatic billing on or off for your company by using the toggle button in the Billing settings column.
To use automatic billing, you must create mapping between Kaspersky Lab security applications and their ConnectWise Manage equivalents—products. For details, see Mapping ConnectWise Manage products to security applications.
- Click the Select agreement drop-down arrow in the Billing settings column and select one of the available Agreements associated with the company you selected in the ConnectWise Manage company column.
An Agreement must exist for the selected company in ConnectWise Manage in order for automatic billing to be set up successfully. Agreements for a company are created and managed in ConnectWise Manage. You can view the Agreements for the selected company in ConnectWise Manage.
The Agreement Additions for the security applications used by the company will be automatically created in ConnectWise Manage during the daily synchronization.
- If necessary, repeat steps 2 to 5 for each pair: virtual server-company or company-company.
- Click the Save changes button to save your mapping.
After the ConnectWise Manage companies are mapped to the virtual servers or companies, Service Tickets and Agreement Additions for the licensed Kaspersky Lab security applications are automatically created for these companies in ConnectWise Manage.
Page top
How automatic billing works
You can configure automatic billing to enable Kaspersky Security Integration with ConnectWise Manage to create, and update daily, the ConnectWise Manage Agreement Additions for Kaspersky Lab security applications. When automatic billing is configured, information about usage of Kaspersky Lab security applications on managed computers is transferred to ConnectWise Manage automatically, allowing faster periodic generation of invoices for your customers. For information about enabling and configuring automatic billing, refer to Setting up automatic billing.
Automatic billing works according to the following rules:
- Kaspersky Security Integration Service for MSP runs automated billing daily, so that you have up-to-date usage information in ConnectWise Manage any time you have to generate an invoice for a client.
- Kaspersky Security Integration Service for MSP creates Agreement Additions for Kaspersky Lab security applications only if these security applications are mapped to the ConnectWise Manage products. For details, refer to Mapping ConnectWise Manage products to security applications.
- To get usage information for a particular company, Kaspersky Security Integration Tool for MSP calculates how many of the company's devices use the licenses that are added to the Kaspersky Security Center virtual server / Kaspersky Business Hub company associated with the ConnectWise Manage company. Only unexpired and active commercial keys and subscriptions are counted. Servers and workstations are counted separately if the Bill devices by category option is selected when Kaspersky Lab security applications and ConnectWise Manage products are mapped. Also, Kaspersky Security Integration Service for MSP calculates how many Kaspersky Security for Microsoft Office 365 mailboxes are protected.
To differentiate the pricing policy for two types of devices (servers and workstations), a separate billing feature is available. Kaspersky Security Integration Tool for MSP supports two billing configurations:
- Associates a single licensed Kaspersky Lab security application with a single ConnectWise Manage product.
- Associates a single licensed Kaspersky Lab security application with three different ConnectWise Manage products: one for servers, a second for workstations, and a third for non-Windows devices.
In this case, ConnectWise Manage analyzes the type of client device (server or workstation) that uses the Kaspersky Lab license. Data about each Kaspersky Lab security application license used by the device is associated with the ConnectWise Manage product mapped to this Kaspersky Lab security application.
For example, if a client company uses Kaspersky Endpoint Security for Business Advanced on 100 devices, where 90 of them are workstations and 10 are servers, Kaspersky Security Integration Service for MSP does the following:
- Creates an Agreement Addition on 90 devices for the ConnectWise Manage product for workstations.
- Creates an Agreement Addition on 10 devices for the ConnectWise Manage product for servers.
Setting up ticketing
This section explains how to set up ticketing for your managed companies.
About setting up ticketing
Tickets allow timely responses to different types of events or to changes in computer status that occur on the company network. Automated ticketing allows you to reduce significantly the time spent monitoring and managing your companies.
You must establish ticketing rules to enable automatic creation and assignment of tickets in ConnectWise Manage. You can set up creation and assignment of tickets depending on the event severity or when a computer status changes to Critical or Warning in Kaspersky Lab security applications.
Ticket creation settings from the previous versions of Kaspersky Security Integration with ConnectWise Manage (Maintenance Release 1 and earlier) are not compatible with versions Maintenance Release 2 and later. After you update Kaspersky Security Integration with ConnectWise Manage to Maintenance Release 2 or later, you have to reconfigure ticketing in Kaspersky Security Integration Tool for MSP.
Tickets created on the basis of computer status changes are automatically closed when the corresponding issue is resolved and the status description that triggered the ticket creation is no longer relevant. For example, when a computer's status becomes Warning because a "Databases are out of date" status description is assigned, a corresponding ticket is created. When the databases are updated, the status description "Databases are out of date" is no longer relevant, and the ticket is automatically closed. However, the computer status might remain Warning because of other status descriptions, for example, "Many viruses detected".
Tickets created on the basis of events Mailboxes protection is not provided and License-related issue occurred that occur in Kaspersky Security for Microsoft Office 365 are also closed when the corresponding issue is resolved.
Tickets created on the basis of all other events that occur in Kaspersky Security for Microsoft Office 365 and tickets created on the basis of events that occur in Kaspersky Security Center or Kaspersky Endpoint Security Cloud are not closed automatically, so you must close these tickets manually.
You can create and modify ticketing rules for your managed companies. Ticketing rules are applicable to all managed companies that are mapped to Kaspersky Security Center virtual servers or Kaspersky Business Hub companies. Ticketing rules are configured individually for events and for computer statuses. When configuring integration between ConnectWise Manage and Kaspersky Business Hub, you must set up ticketing separately for Kaspersky Endpoint Security Cloud and Kaspersky Security for Microsoft Office 365.
Page top
Ticketing for events
The ticketing settings depend on the Kaspersky Lab solution that you use: Kaspersky Security Center or Kaspersky Business Hub.
Ticketing for events that occur in Kaspersky Security Center
On the Ticketing tab, you can configure ticketing rules for events that occur in Kaspersky Security Center. You can edit ticketing settings either for an individual event or for several events at the same time.
Configuring ticketing for events
To set up ticketing for events:
- In the Kaspersky Security Integration Tool for MSP window, click the Ticketing tab.
- In the left pane, select the Events section to configure ticketing for events.
- Do one of the following:
- To configure ticketing for one event severity, use the toggle button in the Create ticket column to enable ticket creation for the corresponding event severity. In the Lifetime, Priority, and Service Board columns, edit the settings as required.
By default, ticketing is disabled for all event severities.
- To configure ticketing for one or several event severities simultaneously, select the lines that contain required event severities, and then click the Edit button above the table. The Ticketing settings for events window opens.
Editing ticketing settings for multiple event severities is useful if you want to assign the same settings to these event severities. If you want the ticketing settings to be different, edit them individually for each event severity.
You can edit the following ticketing settings:
- On / Off (or, in the main window, the toggle button)—Enable or disable ticket creation for the selected event severities.
- Lifetime—Select the period, in days, during which the events are still relevant. The default value is 1 day.
This value is used to determine whether to create a ticket for an event in ConnectWise Manage. If the connection between ConnectWise Manage and Kaspersky Security Center has been broken and events have not been sent for some time, only events more recent than the specified period are sent to ConnectWise Manage as tickets. A different relevance period can be set for different event severities.
- Priority—Select the priority level for the tickets created in ConnectWise Manage. Assigning priority levels to events is used to prioritize corresponding ConnectWise Manage tickets. The ticket priority allows you to respond to the issues in order of their importance, so that more urgent problems can be resolved sooner.
- Service Board—Select the ConnectWise Manage Service Board to assign the ticket to. Service Boards are configured in ConnectWise Manage. Make sure that the Service Board has the default status and team; otherwise, it is not possible to create Service Tickets by means of this Service Board.
- Type—Select the ConnectWise Manage ticket type to be assigned to the ticket. Ticket types, available for selection, depend on the selected Service Board. This setting is present only in the Ticketing settings for events window.
- Subtype—Select the ConnectWise Manage ticket subtype to be assigned to the ticket. Ticket subtypes, available for selection, depend on the selected Type. This setting is present only in the Ticketing settings for events window.
Ticketing settings for events window
- To configure ticketing for one event severity, use the toggle button in the Create ticket column to enable ticket creation for the corresponding event severity. In the Lifetime, Priority, and Service Board columns, edit the settings as required.
- When you finish configuring ticketing for events, click the Save changes button to save the ticketing settings.
Ticketing for event severities is configured and ConnectWise Manage tickets will be created in accordance with the specified rules.
Kaspersky Security Integration Service for MSP can create tickets in ConnectWise Manage for a company only if its status allows saving changes. Therefore, make sure that the Disallow Saving check box is cleared for your company on the Company Status tab.
You can cancel changes and reset ticketing settings to their last saved values.
To cancel changes of ticketing settings and restore last saved values:
- Open the Ticketing tab.
- In the left pane, select the Events section.
- Click the Cancel changes button.
You can also reset ticketing settings to their default values.
To reset ticketing settings to their default values:
- Open the Ticketing tab.
- In the left pane, select the Events section.
- Click the Reset to defaults link.
Ticketing for events that occur in Kaspersky Endpoint Security Cloud and Kaspersky Security for Microsoft Office 365
On the Ticketing tab, you can configure ticketing rules for events that occur in Kaspersky Endpoint Security Cloud and Kaspersky Security for Microsoft Office 365. You can edit ticketing settings either for an individual event or for several events at the same time.
Configuring ticketing for events
To set up ticketing for events:
- In the Kaspersky Security Integration Tool for MSP window, click the Ticketing tab.
- In the left pane, click the Kaspersky Lab security application name, and then select the Events section to configure ticketing for events. You can configure ticketing separately for events that occur in Kaspersky Endpoint Security Cloud and Kaspersky Security for Microsoft Office 365.
- Do one of the following:
- To configure ticketing for one event severity (in Kaspersky Endpoint Security Cloud) or for one event type (in Kaspersky Security for Microsoft Office 365), use the toggle button in the Create ticket column to enable ticket creation for the corresponding event severity or event type. In the Lifetime, Priority, Service Board, and Closing status columns, edit the settings as required.
By default, ticketing is disabled for all event severities and event types.
- To configure ticketing for one or several event severities or event types simultaneously, select the lines that contain required event severities or event types, and then click the Edit button above the table. The Ticketing settings for events window opens.
Editing ticketing settings for multiple event severities or event types is useful if you want to assign the same settings to these event severities or event types. If you want the ticketing settings to be different, edit them individually for each event severity or event type.
You can edit the following ticketing settings:
- On / Off (or, in the main window, the toggle button)—Enable or disable ticket creation for the selected event severities or event types.
- Lifetime—Select the period, in days, during which the events are still relevant. The default value is 1 day. This setting is not present for events that occur in Kaspersky Security for Microsoft Office 365.
This value is used to determine whether to create a ticket for an event in ConnectWise Manage. If the connection between ConnectWise Manage and Kaspersky Endpoint Security Cloud has been broken and events have not been sent for some time, only events more recent than the specified period are sent to ConnectWise Manage as tickets. A different relevance period can be set for different event severities.
- Priority—Select the priority level for the tickets created in ConnectWise Manage. Assigning priority levels to events is used to prioritize corresponding ConnectWise Manage tickets. The ticket priority allows you to respond to the issues in order of their importance, so that more urgent problems can be resolved sooner.
- Service Board—Select the ConnectWise Manage Service Board to assign the ticket to. Service Boards are configured in ConnectWise Manage. Make sure that the Service Board has the default status and team; otherwise, it is not possible to create Service Tickets by means of this Service Board.
- Closing status—Select the status to be assigned to the tickets in ConnectWise Manage when they are automatically closed by Kaspersky Security Integration Service for MSP after the corresponding event in the Kaspersky Lab security application has been resolved. This setting is present only for events that occur in Kaspersky Security for Microsoft Office 365.
- Type—Select the ConnectWise Manage ticket type to be assigned to the ticket. Ticket types, available for selection, depend on the selected Service Board. This setting is present only in the Ticketing settings for events window.
- Subtype—Select the ConnectWise Manage ticket subtype to be assigned to the ticket. Ticket subtypes, available for selection, depend on the selected Type. This setting is present only in the Ticketing settings for events window.
Ticketing settings for events window
- To configure ticketing for one event severity (in Kaspersky Endpoint Security Cloud) or for one event type (in Kaspersky Security for Microsoft Office 365), use the toggle button in the Create ticket column to enable ticket creation for the corresponding event severity or event type. In the Lifetime, Priority, Service Board, and Closing status columns, edit the settings as required.
- When you finish configuring ticketing for events, click the Save changes button to save the ticketing settings.
Ticketing for event severities or event types is configured and ConnectWise Manage tickets will be created in accordance with the specified rules.
Kaspersky Security Integration Service for MSP can create tickets in ConnectWise Manage for a company only if its status allows saving changes. Therefore, make sure that the Disallow Saving check box is cleared for your company on the Company Status tab.
You can cancel changes and reset ticketing settings to their last saved values.
To cancel changes of ticketing settings and restore last saved values:
- Open the Ticketing tab.
- In the left pane, click the Kaspersky Lab security application name, and then select the Events section.
- Click the Cancel changes button.
You can also reset ticketing settings to their default values.
To reset ticketing settings to their default values:
- Open the Ticketing tab.
- In the left pane, click the Kaspersky Lab security application name, and then select the Events section.
- Click the Reset to defaults link.
Ticketing for computer statuses
On the Ticketing tab, you can configure ticketing rules for the computer statuses. This allows tickets to be created in ConnectWise Manage when the computer status in Kaspersky Security Center or Kaspersky Endpoint Security Cloud changes to Warning or Critical. You can edit ticketing settings either for an individual computer status or for several statuses at the same time.
Configuring ticketing for computer statuses
To set up ticketing for computer status:
- In the Kaspersky Security Integration Tool for MSP window, click the Ticketing tab.
- In the left pane, select the Warning status or Critical status section to configure ticketing for computer statuses.
- Do one of the following:
- To configure ticket creation for one status, use the toggle button in the Create ticket column to enable ticket creation for the corresponding status change. In the Priority, Service Board, and Closing status columns, edit the settings as required.
By default, ticket creation is disabled for all computer status descriptions.
- To configure ticket creation for one or several statuses simultaneously, select the lines that contain the required status description, and then click the Edit button above the table. The Ticketing settings for computer status change window opens.
Editing ticketing settings for multiple computer statuses is useful if you want to assign the same ticketing settings to these computer statuses. If you want the ticketing settings to be different, edit them individually for each computer status.
You can edit the following ticketing settings:
- On / Off (or, in the main window, the toggle button)—Enable or disable ticket creation for the selected status changes.
- Priority—Select the priority level for the tickets created in ConnectWise Manage. Assigning priority levels to events is used to prioritize corresponding ConnectWise Manage tickets. The ticket priority allows you to respond to the issues in order of their importance, so that more urgent problems can be resolved sooner.
- Service Board—Select the ConnectWise Manage Service Board to assign the ticket to. Service Boards are configured in ConnectWise Manage. Make sure that the Service Board has the default status and team; otherwise, it is not possible to create Service Tickets by means of this Service Board.
- Closing status—Select the status to be assigned to the tickets in ConnectWise Manage when they are automatically closed. Tickets created on the basis of computer status change are automatically closed when the issue that triggered this computer status is resolved.
- Type—Select the ConnectWise Manage ticket type to be assigned to the ticket. Ticket types, available for selection, depend on the selected Service Board. This setting is present only in the Ticketing settings for computer status change window.
- Subtype—Select the ConnectWise Manage ticket subtype to be assigned to the ticket. Ticket subtypes, available for selection, depend on the selected Type. This setting is present only in the Ticketing settings for computer status change window.
Ticketing settings for computer status change
- To configure ticket creation for one status, use the toggle button in the Create ticket column to enable ticket creation for the corresponding status change. In the Priority, Service Board, and Closing status columns, edit the settings as required.
- When you finish configuring ticketing for computer statuses, click the Save changes button to save the ticketing settings.
Ticketing for computer statuses is configured and ConnectWise Manage tickets will be created in accordance with the specified rules.
Kaspersky Security Integration Service for MSP can create tickets in ConnectWise Manage for a company only if its status allows saving changes. Therefore, make sure that the Disallow Saving check box is cleared for your company on the Company Status tab.
You can cancel changes and reset ticketing settings to their last saved values.
To cancel changes of ticketing settings and restore last saved values:
- Open the Ticketing tab.
- In the left pane, click the Kaspersky Lab solution name, and then select the Warning status or Critical status section.
- Click the Cancel changes button.
You can also reset ticketing settings to their default values.
To reset ticketing settings to their default values:
- Open the Ticketing tab.
- In the left pane, click the Kaspersky Lab solution name, and then select the Warning status or Critical status section.
- Click the Reset to defaults link.
Mapping ConnectWise Manage products to security applications
Set up mapping between Kaspersky Lab security applications and ConnectWise Manage products, so that usage information about Kaspersky Lab security applications appears in ConnectWise Manage as Agreement Additions.
On the Products tab of the Kaspersky Security Integration Tool for MSP window, you can map Kaspersky Lab security applications to ConnectWise Manage products. You can edit the existing mapping between security applications and products as well.
The list of available security applications differs depending on which Kaspersky Lab solution you use: Kaspersky Security Center or Kaspersky Business Hub.
Mapping Kaspersky Lab security applications to ConnectWise Manage products
To set up mapping between Kaspersky Lab security applications and ConnectWise Manage products:
- In the Kaspersky Security Integration Tool for MSP window, click the Products tab.
- To differentiate the pricing policy for two types of devices (servers and workstations), use the Bill devices by category toggle button to turn on this feature.
- Map Kaspersky Lab security applications in the Kaspersky Lab security application column to their equivalents in the ConnectWise Manage product column.
If the Bill devices by category feature is disabled, each Kaspersky Lab security application can be mapped to one ConnectWise Manage product only. Otherwise, map each Kaspersky Lab security application to three ConnectWise Manage products:
- In the Windows workstations drop-down list, select a ConnectWise Manage product. The price of this product will be used during billing for all of the workstations that use the license for the corresponding Kaspersky Lab security application.
- In the Windows servers drop-down list, select a ConnectWise Manage product. The price of this product will be used during billing for all of the servers that use the license for the corresponding Kaspersky Lab security application.
- In the Non-Windows devices drop-down list, select a ConnectWise Manage product. The price of this product will be used during billing for all of the non-Windows devices that use the license for the corresponding Kaspersky Lab security application.
- When you have finished mapping, click the Save changes button to save the mapping.
Viewing companies not integrated with Kaspersky Lab security applications
When configuring integration with ConnectWise Manage, it is useful to check whether all ConnectWise Manage companies are connected to Kaspersky Security Center virtual servers / Kaspersky Business Hub companies, or whether you accidentally skipped one or more companies. For this purpose, you can use ConnectWise Manage reports that allow you to display all existing companies together with the virtual servers or companies to which they are mapped.
Kaspersky Security Integration with ConnectWise Manage adds its own fields to the ConnectWise Manage configuration. You can use these fields in different custom reports. For example, using standard ConnectWise Manage functionality, you can select companies that are not integrated with Kaspersky Security Center or Kaspersky Business Hub—that is, the ConnectWise Manage companies that do not have a corresponding virtual server or company. Then, using filters, you can manually exclude from your selection the companies that do not use Kaspersky Lab security applications.
To view ConnectWise Manage companies that are not mapped to virtual servers or companies:
- Log in to ConnectWise Manage with your credentials.
- In ConnectWise Manage, create a report, using ConnectWise Report Writer. Your report must include the following fields:
- ConnectWise Manage company name.
- Corresponding virtual server / company name.
Refer to ConnectWise Manage documentation for details on creating reports.
- Filter your report data by the name of the virtual server or company.
If the name of the virtual server or company is empty, the ConnectWise Manage company is not mapped to any virtual server or company.
Configuring integration by using the registry
By using the Microsoft Windows registry, you can configure the integration as follows:
- Enable or disable tracing.
- Change the maximum time before updated integration settings are applied.
Enabling and disabling tracing
Refer to the "Enabling and disabling tracing by using the registry" section.
Changing the maximum time before updated integration settings are applied
After you update integration settings in Kaspersky Security Integration Tool for MSP, Kaspersky Security Integration Service for MSP applies them not immediately but within a certain time interval. By default, this interval is 15 minutes. If you use an on-premises version of a Kaspersky Lab solution, you can change the interval by using Microsoft Windows registry, as described later in this section. For a Cloud version of a Kaspersky Lab solution, the interval is specified by Kaspersky Lab specialists.
To change the maximum time before updated integration settings are applied:
Before editing the Windows registry, it is recommended that you back up the registry.
- Click the Start button.
- In the Start menu, in either the Run box or the Search box, type regedit and press Enter.
The Registry Editor window opens.
If you have restricted access to the Windows computer to which you are logged in, you might not be able to access the registry.
- In the Registry Editor window, navigate to the Kaspersky Security Integration Service for MSP registry key. It is available by one of the following registry subkeys (paths):
- HKEY_LOCAL_MACHINE\SOFTWARE\KasperskyLab\Kaspersky Security Integration Service for MSP
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\KasperskyLab\Kaspersky Security Integration Service for MSP
- Edit the value of the ConfigReloadIntervalMinutes setting by specifying the required number of minutes.
- Click OK in the Edit window to save your changes.
- Close the Registry Editor window.
The value is changed.
Managing administrators
You can manage the administrators related to the integration with Kaspersky Business Hub. You can add the accounts of existing Kaspersky Business Hub users as administrators of your integration. You can also remove administrators from the integration if you do not want them to work with the integration.
You can manage administrators within the integration only if Kaspersky Business Hub solution is used. For Kaspersky Security Center solution, this functionality is unavailable.
When you add administrators to the integration, they have the same rights as existing administrators: they can administer all workspaces bound to this integration and manage the integration settings.
When you remove administrators from the integration, these administrators can no longer manage this integration and cannot administer its workspaces. You may have to remove administrators, for example, if they stop working for your company or move to new positions within the company and are no longer allowed to manage integrations.
All remaining administrators who have access to the integration can add or remove administrators to / from this integration.
Managing administrators
The following sections explain how to add or remove an administrator to / from the integration.
Adding administrators
When you add administrators to an integration, they have the same rights as existing administrators: they can administer Kaspersky Endpoint Security Cloud workspaces and Kaspersky Security for Microsoft Office 365 workspaces of all Kaspersky Business Hub companies bound to this integration and can manage the integration settings.
To add administrators:
- In the Kaspersky Security Integration Tool for MSP window, click the Administrators tab.
- Click the Add link to add administrators.
- In the Add administrators dialog box that opens, specify the email addresses and aliases associated with the Kaspersky Lab accounts of the users that you want to add as new administrators. You can add several administrators at a time.
- Use a semicolon to separate the email address and alias of an administrator.
- Type the data for each administrator in a new line.
Only users registered in Kaspersky Business Hub can be added to the integration.
- Click Next and check the data that you provided. If everything is correct, click Finish to add the administrators to the integration. If you want to change the information you provided, click Back.
- After you perform all the actions with administrators' accounts, click the Save changes button.
The new administrators are added to the integration and gain access to all workspaces within this integration.
Removing administrators
When you remove administrators from an integration, they can no longer manage the integration. However, the administrators' Kaspersky Lab accounts are not deleted; they are merely unbound from the integration, so that the administrators cannot manage the integration or administer its workspaces.
To remove administrators:
- In the Kaspersky Security Integration Tool for MSP window, click the Administrators tab.
- Select the check boxes next to the names of administrators you want removed from the integration.
If you want to select all administrators, select the check box in the column header.
You cannot remove all administrators from the integration. An integration must have at least one administrator.
- Click the Delete link to remove the selected administrators.
- After you perform all the actions with the administrators' accounts, click the Save changes button.
The selected administrators are removed from the integration and lose their rights to administer workspaces bound to the integration.
Enabling and disabling tracing
The following sections explain how to enable and disable tracing for Kaspersky Security Integration with ConnectWise Manage components.
You may have to save traces of Kaspersky Security Integration with ConnectWise Manage, for example, if you contact Technical Support and they ask you to provide the traces for diagnostics and troubleshooting. It is recommended to disable tracing when an issue is resolved, as tracing requires additional resources and additional memory to store trace files. It is also recommended to remove trace files from your computer after the issue that required tracing is resolved, because the trace files may contain personal and confidential data.
By default, tracing is disabled.
There are two ways of enabling and disabling tracing for Kaspersky Security Integration with ConnectWise Manage components:
- Using the Microsoft Windows registry.
- In the .config files of Kaspersky Security Integration with ConnectWise Manage components.
Enabling and disabling tracing by using the registry
You can enable and disable tracing by using the Microsoft Windows registry.
To enable or disable tracing:
Before editing the Windows registry, it is recommended that you back up the registry.
- Click the Start button.
- In the Start menu, either in the Run box or the Search box, type regedit and press Enter.
The Registry Editor window opens.
If you have restricted access to the Windows computer you are logged into, you might not be able to access the registry.
- In the Registry Editor window, navigate to the Kaspersky Security Integration Service for MSP or Kaspersky Security Integration Tool for MSP registry key. They are available by one of the following paths:
- Kaspersky Security Integration Service for MSP
- HKEY_LOCAL_MACHINE\SOFTWARE\KasperskyLab\Kaspersky Security Integration Service for MSP
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\KasperskyLab\Kaspersky Security Integration Service for MSP
- Kaspersky Security Integration Tool for MSP
If the Kaspersky Security Integration Tool for MSP registry key is not displayed, either run Kaspersky Security Integration Tool for MSP as administrator (by right-clicking the application icon and selecting Run as administrator), or create the registry key manually.
- HKEY_LOCAL_MACHINE\SOFTWARE\KasperskyLab\Kaspersky Security Integration Tool for MSP
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\KasperskyLab\Kaspersky Security Integration Tool for MSP
- Kaspersky Security Integration Service for MSP
- Edit the value of the EnableTraces parameter as follows:
- 1—To enable tracing.
- 0—To disable tracing.
- Click OK in the Edit window to save your changes.
- Close the Registry Editor window.
The trace files are saved to the .log files in the application installation folder:
- For Kaspersky Security Integration Tool for MSP the file is IntegrationUI.log, by default saved to the C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Tool for MSP folder.
- For Kaspersky Security Integration Service for MSP the file is IntegrationServer.log, by default stored in the C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Service for MSP folder.
When you uninstall Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP, the trace files are removed together with the application.
Enabling and disabling tracing by using the .config files
You can enable and disable tracing in the .config files of Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP. The files are stored in the installation folders of the corresponding products.
To enable or disable tracing:
- Navigate to the .config file of the Kaspersky Security Integration with ConnectWise Manage component for which you want to enable or disable tracing. The .config file is stored in the installation folder. By default, the navigation paths are:
- For Kaspersky Security Integration Tool for MSP the file is IntegrationUI.exe.config, by default stored in the C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Tool for MSP folder.
- For Kaspersky Security Integration Service for MSP the file is IntegrationServer.exe.config, by default stored in the C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Service for MSP folder.
- Open the .config file with any text editor and change the value of the minlevel attribute of the logger element as follows:
- To enable tracing, set the value of the minlevel attribute to Debug.
<logger name="MSPIntegration.*" writeTo="fileTarget" minlevel="Debug" /> - To disable tracing, set the value of the minlevel attribute to Off.
<logger name="MSPIntegration.*" writeTo="fileTarget" minlevel="Off" />
- To enable tracing, set the value of the minlevel attribute to Debug.
- Save and close the modified .config file.
The trace files are saved to the .log files in the application installation folder:
- For Kaspersky Security Integration Tool for MSP the file is IntegrationUI.log, by default saved to the C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Tool for MSP folder.
- For Kaspersky Security Integration Service for MSP the file is IntegrationServer.log, by default stored in the C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Service for MSP folder.
When you uninstall Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP, the trace files are removed together with the application.
Reporting
This section describes how to create different types of reports for managed Kaspersky Security Center virtual servers or Kaspersky Business Hub companies in ConnectWise Manage.
Service report
You can create a regular service report for a representative of a managed company. This report includes statistics on protection services provided to the client. You can view this report for the last 30 days and the last 7 days. Kaspersky Security Integration with ConnectWise Manage updates statistics daily.
A report can be built for a particular managed company linked to Kaspersky Security Center virtual server or Kaspersky Business Hub company, by using the standard ConnectWise Report Writer. The name of a service report configuration item in ConnectWise Manage contains the report period, the report starting date and ending date, and the name of the Kaspersky Security Center virtual server. (If you use Kaspersky Business Hub, the name of the Kaspersky Business Hub Company will not be included). If the name of a service report configuration item is more than 100 characters long, its length is reduced.
A generated report includes statistics on tickets processed during the report period and on the state of managed computers in the customer infrastructures.
A service report includes the following data:
- Report period—Either 7 days or 30 days.
- Report starting date
- Report ending date
- Managed computers—Number of computers of the managed company that are connected to the Kaspersky Business Hub company or Kaspersky Security Center virtual server.
- Protected computers—Number of computers on which a real-time protection application is installed.
- New critical tickets—Number of tickets based on critical events or computer statuses that were created by Kaspersky Security Integration with ConnectWise Manage during the report period (regardless of whether or not these tickets were closed during the report period). Tickets based on events are created according to the rules that you set as described in Ticketing for events. Tickets based on computer statuses are created according to the rules that you set as described in Ticketing for computer statuses.
- Closed critical tickets—Number of tickets based on critical events or computer statuses that were resolved and closed by Kaspersky Security Integration with ConnectWise Manage during the report period (regardless of whether or not these tickets were created during the report period).
- New warning tickets—Number of tickets based on warning events or computer statuses that were created by Kaspersky Security Integration with ConnectWise Manage during the report period (regardless of whether or not these tickets were closed during the report period).
- Closed warning tickets—Number of tickets based on warning events or computer statuses that were resolved and closed by Kaspersky Security Integration with ConnectWise Manage during the reporting period (regardless of whether or not these tickets were created during the report period).
- New functional failure tickets—Number of tickets based on functional failure events that were created by Kaspersky Security Integration with ConnectWise Manage during the reporting period (regardless of whether or not these tickets were closed during the report period).
- Closed functional failure tickets—Number of tickets for functional failure events that were resolved and closed by Kaspersky Security Integration with ConnectWise Manage during the report period (regardless of whether or not these tickets were created during the report period).
- Problem computers—Number of computers whose status is other than OK at the moment the configuration item is created.
License report
You can create a license report for a client company to provide information about keys for the Kaspersky Lab security applications, including key usage and availability.
The name of a license report configuration item in ConnectWise Manage contains the last update date of the configuration item and the name of the security application to which the license applies. If the name of a license report configuration item is longer than 100 characters, it is cut.
A license report includes the following data for each key:
- Report date—Last update date of the configuration item.
- License ID
- Security application name
- License period
- License expiration date
- License restriction—Number of computers to which the key can be assigned.
- Number of company's computers using the license—Number of computers to which the key is assigned. These computers belong to the selected client company.
- Total number of computers using the license—Number of computers to which the key is assigned. These computers belong to all client companies of the MSP or to the MSP itself.
- Key is more than 90% used—If the total number of computers that use the key divided by the license restriction is greater than 0.9, the value is Yes. Otherwise, the value is No.
- Key exceeded restriction—If the total number of computers that use the key divided by the license restriction is greater than 1, the value is Yes. Otherwise, the value is No.
- License information—Additional information about the key.
- Support information—Information about Technical Support contacts.
Generating a report in ConnectWise Manage
A service report is provided in ConnectWise Manage as configuration items of a special Kaspersky report type. A license report is represented as configuration items of the Kaspersky license report type.These items are also linked to managed company profiles according to the mapping to companies or virtual servers.
To generate a report for a managed company in ConnectWise Manage:
- On the left navigation menu, point to System, and then click Report Writer.
- Click the New button.
- On the Data Sources tab that opens, select the v_rpt_Configuration check box.
- Click the Fields tab, and then add the following fields:
- Question
- Answer
These fields will be names of columns in the report.
- Click the Filters tab, and then add the following filters:
- Filter: Company_Name; Operator: Equals (Select); Value(s): in the drop-down list, select the managed company for which you want to view the report.
- Filter: Config_Name; Operator: Equals (Select); Value(s): in the drop-down list, select the configuration item that corresponds to the required report type (Kaspersky report or Kaspersky license report) and—for a service report—period (start date and end date).
- If you want the report to display additional information, add other fields and filters. For more details, refer to the ConnectWise Manage documentation at https://docs.connectwise.com/ConnectWise_Documentation/090/070.
- Click the Preview button to preview the report.
- Click the Save button to save the report.
- Export the report, print it, or send it by email to your client.
You can export the report to a CSV file, a Microsoft Excel spreadsheet, a Microsoft Word document, or an XML document. You can also save the SQL query that matches the specified report parameters to a text file.
Custom fields in ConnectWise Manage
Kaspersky Security Integration with ConnectWise Manage provides easy access to valuable integration-specific information on ConnectWise Manage companies directly from the ConnectWise Manage graphical user interface (GUI). You can view this information in each ConnectWise Manage company profile and use this information in ConnectWise Manage reports.
The following custom fields are available for the ConnectWise Manage companies:
- If you use Kaspersky Security Center
- Kaspersky virtual server—Name of the virtual server mapped to this company in Kaspersky Security Integration Tool for MSP.
- If you use Kaspersky Business Hub:
- Kaspersky workspace—Name of the Kaspersky Business Hub company mapped to this ConnectWise Manage company in Kaspersky Security Integration Tool for MSP.
- Kaspersky workspace URL—Link to open your Kaspersky Business Hub company from the ConnectWise Manage company profile.
If you accidentally deleted the custom fields created by the integration, you can restore them by using the following workaround. However, this workaround works only the first time you save changes in parameter values after Kaspersky Security Integration Tool for MSP starts.
To restore the custom fields:
- Start or restart Kaspersky Security Integration Tool for MSP.
- Change the value for any parameter on any tab (Companies, Ticketing, or Products) to activate the Save changes button.
- Click the Save changes button.
The custom fields are displayed after you save changes to your integration.
- Set the parameter that you changed in step 2 to the original value, and then save your settings.
The custom fields are now available in the ConnectWise Manage company profile.
Page topGlossary
Administration Server
A component of Kaspersky Security Center that centrally stores information about all Kaspersky Lab applications that are installed within the corporate network. Administration Server can also be used to manage these applications.
Administration Server client (Client computer)
A computer, server, or workstation on which Network Agent and managed Kaspersky Lab applications are running.
Anti-virus databases
Databases that contain information about computer security threats known to Kaspersky Lab as of when the anti-virus databases are released. Entries in anti-virus databases allow malicious code to be detected in scanned objects. Anti-virus databases are created by Kaspersky Lab specialists and updated hourly.
Kaspersky Business Hub company
Virtual Administration Server by Kaspersky Lab that is designed to manage a security software suite on devices connected to Kaspersky Endpoint Security Cloud and/or Kaspersky Security for Microsoft Office 365, as well as to store individual settings of Kaspersky Endpoint Security Cloud and/or Kaspersky Security for Microsoft Office 365 and the registration data of a company using any of these products.
Network Agent
A Kaspersky Security Center component that enables interaction between the Administration Server and Kaspersky Lab applications that are installed on a specific network node (workstation or server).
Virus
A program that infects other ones, by adding its code to them in order to gain control when infected files are run. This simple definition allows identifying the main action performed by any virus: infection.
Page top
Contact Technical Support
This section describes how to get technical support and the terms on which it is available.
How to get technical support
If you cannot find a solution to your issue in the Kaspersky Security Integrations for MSP documentation or in any of the sources of information about Kaspersky Security Integrations for MSP, contact Technical Support. Technical Support specialists will answer all your questions about configuring and using Kaspersky Security Integrations for MSP.
Before contacting Technical Support, please read the support rules.
You can contact Technical Support in one of the following ways:
- By visiting the Technical Support website
- By sending a request to Technical Support from the Kaspersky CompanyAccount portal
Technical Support via Kaspersky CompanyAccount
Kaspersky CompanyAccount is a portal for companies that use Kaspersky Lab applications. The Kaspersky CompanyAccount portal is designed to facilitate interaction between users and Kaspersky Lab specialists through online requests. You can use Kaspersky CompanyAccount to track the status of your online requests and store a history of them as well.
You can register all of your organization's employees under a single account on Kaspersky CompanyAccount. A single account lets you centrally manage electronic requests from registered employees to Kaspersky Lab and also manage the privileges of these employees via Kaspersky CompanyAccount.
The Kaspersky CompanyAccount portal is available in the following languages:
- English
- Spanish
- Italian
- German
- Polish
- Portuguese
- Russian
- French
- Japanese
To learn more about Kaspersky CompanyAccount, visit the Technical Support website.
Page top
AO Kaspersky Lab
Kaspersky Lab is a world-renowned vendor of systems protecting computers against digital threats, including viruses and other malware, unsolicited email (spam), and network and hacking attacks.
In 2008, Kaspersky Lab was rated among the world’s top four leading vendors of information security software solutions for end users (IDC Worldwide Endpoint Security Revenue by Vendor). Kaspersky Lab is the preferred vendor of computer protection systems for home users in Russia (IDC Endpoint Tracker 2014).
Kaspersky Lab was founded in Russia in 1997. It has since grown into an international group of companies with 38 offices in 33 countries. The company employs more than 3,000 skilled professionals.
Products. Kaspersky Lab products provide protection for all systems, from home computers to large corporate networks.
The personal product range includes security applications for desktop, laptop, and tablet computers, smartphones and other mobile devices.
The company offers protection and control solutions and technologies for workstations and mobile devices, virtual machines, file and web servers, mail gateways, and firewalls. The company's portfolio also features specialized products providing protection against DDoS attacks, protection for industrial control systems, and prevention of financial fraud. Used in conjunction with centralized management tools, these solutions ensure effective automated protection for companies and organizations of any size against computer threats. Kaspersky Lab products are certified by major test laboratories, compatible with software from diverse vendors, and optimized to run on many hardware platforms.
Kaspersky Lab virus analysts work around the clock. Every day they uncover hundreds of thousands of new computer threats, create tools to detect and disinfect them, and include their signatures in databases used by Kaspersky Lab applications.
Technologies. Many technologies that are now part and parcel of modern anti-virus tools were originally developed by Kaspersky Lab. It is no coincidence that many other developers use the Kaspersky Anti-Virus engine in their products, including: Alcatel-Lucent, Alt-N, Asus, BAE Systems, Blue Coat, Check Point, Cisco Meraki, Clearswift, D-Link, Facebook, General Dynamics, H3C, Juniper Networks, Lenovo, Microsoft, NETGEAR, Openwave Messaging, Parallels, Qualcomm, Samsung, Stormshield, Toshiba, Trustwave, Vertu, and ZyXEL. Many of the company’s innovative technologies are patented.
Achievements. Over the years, Kaspersky Lab has won hundreds of awards for its services in combating computer threats. Following tests and research conducted by the reputed Austrian test laboratory AV-Comparatives in 2014, Kaspersky Lab ranked among the top two vendors by the number of Advanced+ certificates earned and was ultimately awarded the Top Rated certificate. But Kaspersky Lab's main achievement is the loyalty of its users worldwide. The company’s products and technologies protect more than 400 million users, and its corporate clients number more than 270,000.
Kaspersky Lab website: |
|
Virus encyclopedia: |
|
Virus Lab: |
https://virusdesk.kaspersky.com (for analyzing suspicious files and websites) |
Kaspersky Lab’s web forum: |
Page top
Information about third-party code
Information about third-party code is contained in the file legal_notices.txt, in the application installation folder.
Page top
Trademark notices
Registered trademarks and service marks are the property of their respective owners.
Excel, Microsoft, and Windows are registered trademarks of Microsoft Corporation in the United States and other countries.
Page top
Kaspersky Security Integration with Autotask
This section describes Kaspersky Security Plug-in for ConnectWise Automate. It contains a general description of the software and provides instructions for working with it.
Kaspersky Security Integration with Autotask
This section describes the purpose, functions, and distribution kit of Kaspersky Security Integration with Autotask, and provides hardware and software requirements for Kaspersky Security Integration with Autotask.
About Kaspersky Security Integration with Autotask
Integration is the process of bringing together components into a single system. Kaspersky Security Integration with Autotask integrates Kaspersky Lab solutions (Kaspersky Security Center or Kaspersky Business Hub) and Autotask to provide a combination of monitoring and management tools, such as automated billing and ticket creation for client accounts. Kaspersky Security Integration with Autotask integrates Autotask with all cloud-based products managed by Kaspersky Business Hub: Kaspersky Endpoint Security Cloud and Kaspersky Security for Microsoft Office 365.
In terms of Kaspersky Security Integration with Autotask, integration is a set of parameters and interaction rules that can be set up and configured. First, you create an integration between your Kaspersky Lab solution and Autotask; then you can manage and configure your integrations, and view and edit integration parameters. When configuring an integration, you set up mapping between the entities of the Kaspersky Lab solution and Autotask entities, and define rules that determine how your Kaspersky Lab solution interacts with Autotask.
Kaspersky Security Integration with Autotask consists of two applications: Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP (managed service providers).
- Kaspersky Security Integration Tool for MSP provides a graphical user interface (GUI) to configure integration. The tool is used to configure connection between the Kaspersky Lab solution that you use and Autotask. The tool is also used to configure mapping between the Kaspersky Lab solution entities and Autotask entities. Kaspersky Lab solution entities are virtual servers, if you use Kaspersky Security Center, or companies, if you use Kaspersky Business Hub. Autotask entities are Accounts and Services.
- Kaspersky Security Integration Service for MSP is a Microsoft Windows service application that is installed on the computer that has Kaspersky Security Center Administration Server installed. Kaspersky Security Integration Service for MSP synchronizes data in Kaspersky Security Center and Autotask. It is a service application only, with no user interface.
About data provision
Kaspersky Security Integration with Autotask is designed for the integration of Kaspersky Lab solutions for administration of security applications with Autotask within the framework of the functionality described in this Help document.
To use Kaspersky Security Integration with Autotask, you must install the integration components and connect them to the Kaspersky Lab solution you use, create an integration with Autotask, specify connection parameters and integration settings and select your customers’ virtual servers / companies for the integration.
By using the product, you agree that said product may receive data from Autotask and the connected virtual servers / companies, as well as store, process, and display information that is intended for ensuring the product functionality.
By creating an integration and connecting Autotask and virtual servers / companies to the product, you thus confirm that you are the sole owner of any data you provide or that you are entitled to provide any data.
Any information provided is protected and processed in accordance with the Kaspersky Lab Privacy Policy.
For the purpose of integration of Kaspersky Security Center / Kaspersky Business Hub and Autotask, Kaspersky Security Integration with Autotask may receive, store, and process the following types of data:
- Data required to connect to the integrated software:
- Parameters for connecting to Kaspersky Security Center Administration Server, including account credentials.
- Account credentials for connecting to Kaspersky Business Hub.
- Connection parameters for accessing Autotask.
- Data about events that occur in Kaspersky Security Center, Kaspersky Endpoint Security Cloud, or Kaspersky Security for Microsoft Office 365. This data is required for automatic creation of tickets or similar entities.
- Data about assigning the Critical and Warning statuses to computers managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud. This data is required for automatic creation of tickets or similar entities.
- Data about usage of licenses for Kaspersky Lab security applications by computers managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud (the number of computers that use a certain license). This data is required for automatic generation of invoices for your customers.
- Data about the number of protected Kaspersky Security for Microsoft Office 365 mailboxes. This data is required for automatic generation of invoices for your customers.
- Data about the state of a managed Kaspersky Security Center virtual server / Kaspersky Endpoint Security Cloud workspace (the number of managed computers, the number of protected computers, the number of created and closed tickets of various types, the number of threats and malicious objects detected on the computers, the number of problematic computers, and the number of infected computers). This data is required for report generation.
- Data about licenses used at Kaspersky Security Center virtual servers / Kaspersky Endpoint Security Cloud workspaces and about attributes of these licenses. This data is required for report generation.
- Integration settings:
- Type of integrated platform (Autotask).
- Integration name.
- Integration ID (for integrations with Kaspersky Business Hub).
- Date and time of integration creation.
- Set of integrated virtual servers / companies.
- List of Kaspersky Business Hub administrators (their aliases and email addresses) who are also granted administrative privileges in the integration.
- Rules for mapping objects of Kaspersky Security Center / Kaspersky Business Hub to those of Autotask (virtual servers / companies to accounts and Kaspersky Lab security applications to Autotask services).
- Rules for creating objects in Autotask, such as tickets, contract service adjustments, and configuration items.
If you integrate Autotask with Kaspersky Business Hub, the above data (specifically, data required to connect to the integrated software and integration settings) is transferred from Kaspersky Security Integration Tool for MSP to Kaspersky Business Hub. This data is processed there and is stored according to the terms and conditions of the Privacy Policy of Kaspersky Business Hub.
If your integration includes a company for which a Kaspersky Endpoint Security Cloud workspace has been created, the data that Kaspersky Business Hub receives from Kaspersky Security Integration Tool for MSP is transferred to the Kaspersky Endpoint Security Cloud workspace. This data is processed there and is stored according to the terms and conditions of the agreements that were accepted during the workspace creation.
If your integration includes a company for which a Kaspersky Security for Microsoft Office 365 workspace has been created, the data that Kaspersky Business Hub receives from Kaspersky Security Integration Tool for MSP is transferred to the Kaspersky Security for Microsoft Office 365 workspace. This data is processed there and is stored according to the terms and conditions of the agreements that were accepted during the workspace creation.
All received data is used by the MSP administrators and technicians. Kaspersky Lab Technical Support specialists may also use the above data when an MSP administrator contacts Technical Support.
Page top
Features of Kaspersky Security Integration with Autotask
Kaspersky Security Integration with Autotask helps you to integrate Kaspersky Lab solutions with Autotask to provide ticketing, straightforward monitoring, issue tracking, automated billing, and reporting in the customer environment.
Kaspersky Security Integration with Autotask provides the following features:
- Connection
With Kaspersky Security Integration with Autotask, you can connect Kaspersky Lab solutions to Autotask in a few clicks to enable automated billing, ticketing, and other processes. You do not need any additional tools or consoles: you can access everything from Autotask.
- Automatic ticketing
Kaspersky Security Integration with Autotask simplifies multi-tenancy management by enabling automation of ticket creation and workflow for each of your client accounts. You can select an Autotask account of your client and map it to the corresponding virtual server / company in the Kaspersky Lab solution that you use.
The tickets are automatically created in Autotask, which reduces the time you spend monitoring your managed client account and increases the number of clients that a single technician can manage. For additional resource efficiency, assign priorities and queues to tickets to streamline their prioritization.
- Billing setup
Kaspersky Security Integration with Autotask provides easy access to information on usage of Kaspersky Lab security applications from Autotask, which significantly simplifies and automates customer billing and reporting.
- Report generation
You can generate service reports on Kaspersky Security Center virtual servers or Kaspersky Business Hub companies and license reports directly from Autotask. Service reports include statistics on protection services provided to the client over the last 30 days and the last 7 days. License reports provide information about keys, including their usage and availability.
- Compatibility
With Kaspersky Security Integration with Autotask, it is easy to create solutions based on your customers’ needs and requirements: Autotask works with both on-premises and cloud-based Kaspersky Lab solutions. Use Kaspersky Lab cloud-based security to avoid additional overhead, or keep everything inside the perimeter and make the most of your existing hardware investment with an on-premises solution.
Page top
Distribution kit
Kaspersky Security Integration with Autotask is delivered free of charge as a distribution package that contains installation files for Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP.
You can download the distribution kit from the Kaspersky Lab website.
No license is required for Kaspersky Security Integration with Autotask.
Page top
Software requirements
Basic software requirements for integration setup:
- Kaspersky Security Center Administration Server 10 Service Pack 2 Maintenance Release 1 and later, Kaspersky Endpoint Security Cloud, or Kaspersky Security for Microsoft Office 365.
Software requirements for Kaspersky Security Integration Tool for MSP:
- Microsoft Windows 7 and later.
- Microsoft .NET Framework 4.5.2.
- Kaspersky Security Center Administration Server 10 Service Pack 2 Maintenance Release 1 and later, or Kaspersky Security Center Administration Console 10 Service Pack 2 Maintenance Release 1 and later—for an on-premises solution only.
Software requirements for Kaspersky Security Integration Service for MSP:
- Supported operating systems are the same as those supported by Kaspersky Security Center 10 Service Pack 2 Maintenance Release 1 and later. Refer to Kaspersky Security Center documentation for details.
- Administration Server component of Kaspersky Security Center 10 Service Pack 2 Maintenance Release 1 and later.
- Microsoft .NET Framework 4.5.2.
Deployment schemas of Kaspersky Security Integration with Autotask
This section describes the deployment schemas of Kaspersky Security Integration with Autotask. The schemas include the two components of Kaspersky Security Integration with Autotask:
- Kaspersky Security Integration Tool for MSP—Used to configure connection between the Kaspersky Lab solution you use and Autotask, and to configure mapping between the Kaspersky Lab solution entities and Autotask entities.
- Kaspersky Security Integration Service for MSP—Synchronizes data in Kaspersky Security Center and Autotask. It is a service application only, with no user interface.
The deployment schema that suits your integration depends on the Kaspersky Lab solution you use and on your integration model. There are three deployment schemas:
- For an on-premises version of a Kaspersky Lab solution—Kaspersky Security Center.
- For an on-premises version of a Kaspersky Lab solution—Kaspersky Security Center with slave Administration Servers.
- For a cloud-based version of a Kaspersky Lab solution—Kaspersky Business Hub.
This section describes the deployment schemas in detail.
Deployment schema for on-premises solution
Deploy Kaspersky Security Integration with Autotask based on this schema if you use an on-premises version of a Kaspersky Lab solution—Kaspersky Security Center—and if you do not have slave Administration Servers in your managed company infrastructure.
The components of Kaspersky Security Integration with Autotask are shown as orange rectangles in the following figure.
Deployment schema for on-premises solution
The following list describes deployment prerequisites and data flow:
- Kaspersky Security Integration Service for MSP must be installed on the computer on which Kaspersky Security Center Administration Server is installed.
- Kaspersky Security Integration Tool for MSP must be installed on the computer on which either Administration Console or Administration Server is installed and deployed.
- In Kaspersky Security Center, virtual servers must be created for each of the managed Autotask accounts. These virtual servers are than mapped to Autotask accounts, allowing you to integrate Kaspersky Security Center and Autotask.
- In your managed environment, you may have many different Kaspersky Lab programs installed. Data on the number of programs is used by Kaspersky Security Integration with Autotask for automatic billing. Events and computer status changes sent from Kaspersky Lab programs to Kaspersky Security Center are received by Kaspersky Security Integration Service for MSP and tickets are created based on them.
Deployment schema for on-premises solution and slave servers
Deploy Kaspersky Security Integration with Autotask based on this schema if you use an on-premises version of a Kaspersky Lab solution—Kaspersky Security Center—and if you use slave Administration Servers in your managed company infrastructure.
The components of Kaspersky Security Integration with Autotask are shown as orange rectangles in the following figure.
Deployment schema for on-premises solution and slave servers
The following list describes deployment prerequisites and data flow:
- One or more Administration Servers are used in the client's infrastructure. These Administration Servers are slave Administration Servers relative to the Administration Server that is installed in the MSP infrastructure. The Administration Server installed in the MSP infrastructure is the master Administration Server. You can use this type of deployment to decrease load on your master Administration Server.
- Kaspersky Security Integration Service for MSP must be installed on the computer on which the slave Administration Server is installed in the client's infrastructure.
- Kaspersky Security Integration Tool for MSP must be installed on the computer on which either Administration Console or the master Administration Server is installed and deployed.
- On your slave Administration Server, virtual servers must be created for each of the managed accounts. These virtual servers are then mapped to Autotask accounts, allowing you to integrate Kaspersky Security Center and Autotask.
- In your managed environment, you may have many different Kaspersky Lab programs installed. Data on the number of programs is used by Kaspersky Security Integration with Autotask for automatic billing. Events and computer status changes sent from Kaspersky Lab programs to Kaspersky Security Center are received by Kaspersky Security Integration Service for MSP and tickets are created based on them.
Deployment schema for cloud-based solution
Deploy Kaspersky Security Integration with Autotask based on this schema if you use the cloud-based version of a Kaspersky Lab solution—Kaspersky Business Hub.
The components of Kaspersky Security Integration with Autotask are shown as orange rectangles in the following figure.
Deployment schema for cloud-based solution
The following list describes deployment prerequisites and data flow:
- In this deployment schema, only Kaspersky Security Integration Tool for MSP is used. Kaspersky Security Integration Service for MSP is not used.
- Kaspersky Security Integration Tool for MSP must be installed in your infrastructure, and not in the client infrastructure.
- In your Kaspersky Business Hub solution, companies must be created for each of the managed Autotask accounts. These companies are then mapped to Autotask accounts, allowing you to integrate Kaspersky Business Hub and Autotask.
- In your managed environment, you may have many different Kaspersky Lab programs installed. Data on the number of programs is used by Kaspersky Security Integration with Autotask for automatic billing. Events and computer status changes sent from Kaspersky Lab programs to Kaspersky Business Hub are received and tickets are created based on them.
Integration scenario
This section describes the overall sequence of actions that you perform to integrate your Kaspersky Lab solution (Kaspersky Security Center or Kaspersky Business Hub) with Autotask by means of Kaspersky Security Integration with Autotask.
- Installing Kaspersky Security Integration with Autotask.
Download Kaspersky Security Integration with Autotask from the Kaspersky Lab web site and install it by using a standard Windows installation procedure.
- Preparing information for setting up integration.
Check the connection settings and additional prerequisites to successfully integrate your Kaspersky Lab solution with Autotask. You will have to provide these parameters in the next steps of this scenario.
- Connecting Kaspersky Security Integration with Autotask to your Kaspersky Lab solution.
Provide the parameters to connect Kaspersky Security Integration with Autotask to your Kaspersky Lab solution:
- For Kaspersky Security Center, provide user credentials and server parameters.
- For Kaspersky Business Hub, provide the account credentials.
- Creating integration with Autotask.
Provide the parameters for the new integration with Autotask that is created during initial configuration. The integration parameters are the same for Kaspersky Security Center and for Kaspersky Business Hub.
- Adding virtual servers or companies to your integration.
Select virtual servers or companies to be integrated with Autotask:
- For Kaspersky Security Center, select virtual servers to be mapped to Autotask accounts.
- For Kaspersky Business Hub, select companies to be mapped to Autotask accounts.
- Checking integration.
After you perform step 1 through step 5, Kaspersky Security Integration with Autotask will be installed and configured. To verify the installation, open the Accounts tab and make sure that your virtual servers / companies are displayed in the first column and that your Autotask accounts are available for selection in the second column.
Kaspersky Security Integration Tool for MSP main window
Installing and removing Kaspersky Security Integration with Autotask
Kaspersky Security Integration with Autotask is delivered as a distribution package that contains two applications: Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP.
This section contains step-by-step instructions for installing and removing Kaspersky Security Integration with Autotask.
Installing Kaspersky Security Integration with Autotask
After you download the distribution package for Kaspersky Security Integration with Autotask, install the components of Kaspersky Security Integration with Autotask by using a standard Windows installation procedure.
Kaspersky Security Integration Service must be installed if you use Kaspersky Security Center. If you use Kaspersky Business Hub, you do not have to install Kaspersky Security Integration Service.
Install Kaspersky Security Integration Service for MSP on the computer on which Kaspersky Security Center Administration Server is installed. Install Kaspersky Security Integration Tool for MSP on the computer on which either Administration Console or Administration Server is installed and deployed.
Install both components of Kaspersky Security Integration with Autotask—Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP—in the same manner. The steps below describe the installation process for each component.
Before you install the components of Kaspersky Security Integration with Autotask, it is strongly recommended to check their digital signatures to make sure that they are issued by Kaspersky Lab.
To check the digital signature for a component of Kaspersky Security Integration with Autotask:
- Locate the installation application (msp_setup.exe file) for the Kaspersky Security Integration with Autotask component.
- Right-click the installation application and select Properties.
- In the properties window that opens, click the Digital Signatures tab and check that the installation application has Kaspersky Lab signatures.
- Close the properties window.
After you check the digital signatures of the Kaspersky Security Integration with Autotask components, install each of the components.
You can install Kaspersky Security Integration with Autotask either in interactive mode or in silent mode.
Installation in interactive mode
To install a component of Kaspersky Security Integration with Autotask in interactive mode:
- On the machine where you want to install Kaspersky Security Integration with Autotask, double-click the installation application (msp_setup.exe file) for the component.
- Follow the wizard steps to install the component.
- Accept the terms of the license agreement to continue installation.
- When installing Kaspersky Security Integration Tool for MSP, accept the terms of the privacy policy to continue installation.
- If required, change the installation folder for the component. The folder you select must have about 25 MB of free space to install both components of Kaspersky Security Integration with Autotask.
- Click Finish on the last page of the wizard.
Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP are installed. Kaspersky Security Integration Tool for MSP is added to the Start menu.
Installation in silent mode
To install Kaspersky Security Integration Tool for MSP in silent mode:
- Read the license agreement and the privacy policy stored in license.txt file next to the installation application (msp_setup.exe file). Proceed only if you accept the terms of the license agreement and the privacy policy.
- At the command prompt, type
msp_setup.exe /s /v"EULA=1 PRIVACYPOLICY=1 INSTALLDIR=\"<installation path>\""
Here,
EULA=1means that you accept the terms of the license agreement.If you specify another value or if you do not specify this parameter, Kaspersky Security Integration Tool for MSP will not be installed.
PRIVACYPOLICY=1means that you accept the terms of the privacy policy.If you specify another value or if you do not specify this parameter, Kaspersky Security Integration Tool for MSP will not be installed.
INSTALLDIR=\"<installation path>\"is the path to the Kaspersky Security Integration Tool for MSP installation folder.If you do not specify this parameter, Kaspersky Security Integration Tool for MSP will be installed to %PROGRAMFILES%\Kaspersky Lab\Kaspersky Security Integration Tool for MSP (in 32-bit versions of Windows) or %PROGRAMFILES(x86)%\Kaspersky Lab\Kaspersky Security Integration Tool for MSP (in 64-bit versions of Windows).
Kaspersky Security Integration Tool for MSP is installed and is added to the Start menu.
To install Kaspersky Security Integration Service for MSP in silent mode:
- Read the license agreement stored in license.txt file next to the installation application (msp_setup.exe file). Proceed only if you accept the terms of the license agreement.
- At the command prompt, type
msp_setup.exe /s /v"EULA=1 INSTALLDIR=\"<installation path>\""
Here,
EULA=1means that you accept the terms of the license agreement.If you specify another value or if you do not specify this parameter, Kaspersky Security Integration Service for MSP will not be installed.
INSTALLDIR=\"<installation path>\"is the path to the Kaspersky Security Integration Service for MSP installation folder.If you do not specify this parameter, Kaspersky Security Integration Service for MSP will be installed to %PROGRAMFILES%\Kaspersky Lab\Kaspersky Security Integration Service for MSP (in 32-bit versions of Windows) or to %PROGRAMFILES(x86)%\Kaspersky Lab\Kaspersky Security Integration Service for MSP (in 64-bit versions of Windows).
Kaspersky Security Integration Service for MSP is installed.
Known issue
Kaspersky Security Integration Service for MSP cannot connect to Autotask if Kaspersky Security Center and Kaspersky Security Integration Service for MSP are deployed in the client's network instead of the managed service provider's network, and there is an authentication proxy server between Kaspersky Security Integration Service for MSP and Autotask.
To enable Kaspersky Security Integration Service for MSP to connect to Autotask over the Internet through the proxy with authentication:
- Launch the Services Microsoft Management Console snap-in by selecting Start → Control panel → Administrative Tools → Services.
- Right-click Kaspersky Security Integration Service for MSP and select Properties.
- In the service properties window that opens, click the Log On tab and specify the following settings:
- In the Log on as section, select the This account option.
- Specify the account credentials for connection to the Internet by Kaspersky Security Integration Service for MSP.
- Click OK in the service properties window to save your changes.
Removing Kaspersky Security Integration with Autotask
You can remove the components of Kaspersky Security Integration with Autotask by using a standard Windows installation / uninstallation procedure.
To remove a component of Kaspersky Security Integration with Autotask:
- On the Start menu, select Control Panel and then click Programs and Features.
- In the list of installed programs, select Kaspersky Security Integration Tool for MSP or Kaspersky Security Integration Service for MSP.
- Right-click the selected application and select Uninstall.
The selected application is removed. Repeat these steps for the other component of Kaspersky Security Integration with Autotask.
As an alternative, you can remove the components of Kaspersky Security Integration with Autotask in silent mode.
To remove Kaspersky Security Integration Tool for MSP in silent mode:
Run Command Prompt as an administrator and type
msiexec.exe /x {E58E13CA-6745-4C60-BE0B-FE6DD416FCB0} REBOOT=ReallySuppress /qn /l*v %temp%\msp_service_uninstall_log.txt
To remove Kaspersky Security Integration Service for MSP in silent mode:
Run Command Prompt as an administrator and type
msiexec.exe /x {7EF14DEE-606A-4147-94FD-3FB0E1FA9D69} REBOOT=ReallySuppress /qn /l*v %temp%\msp_tool_uninstall_log.txt
Removing user.config file
When you uninstall Kaspersky Security Integration Tool for MSP, the user.config files are not removed. These files are automatically created for every user who has ever connected to a Kaspersky Lab solution (either on-premises or Cloud) using Kaspersky Security Integration Tool for MSP. The user.config files contain encrypted information about the user's connection settings for Kaspersky Security Center or Kaspersky Business Hub.
If necessary, you can manually remove the user.config file for every user. The user.config file is stored in the AppData folder of a user.
For example, for Windows 7 and Administrator user, the path to the user.config files is as follows: C:\Users\Administrator\AppData\Local\AO_Kaspersky_Lab\IntegrationUI.exe_Url_nrmo2y4axdcnfumknnua4kzhxvafmxmb\1.0.0.0\user.config.
Page top
Updating Kaspersky Security Integration with Autotask
It is recommended to update Kaspersky Security Integration with Autotask to the latest version.
The sequence of actions required to update Kaspersky Security Integration with Autotask depends on the Kaspersky Lab solution that you use.
- If you use Kaspersky Security Center, update both components of Kaspersky Security Integration with Autotask (Kaspersky Security Integration Service for MSP and all instances of Kaspersky Security Integration Tool for MSP) to the latest version before you start using the new version of Kaspersky Security Integration with Autotask. If you use several instances of Kaspersky Security Integration Tool for MSP when working with a single Kaspersky Security Integration Service for MSP, make sure that all these instances are updated.
If one or more components of Kaspersky Security Integration with Autotask is not updated (either Kaspersky Security Integration Service for MSP or one of the Kaspersky Security Integration Tool for MSP instances), Kaspersky Security Integration with Autotask will not operate properly.
- If you use Kaspersky Business Hub, update all instances of Kaspersky Security Integration Tool for MSP to the latest version.
All settings that you configured in a previous version of Kaspersky Security Integration Tool for MSP, such as integration parameters, accounts, and product mappings, remain the same when you migrate Kaspersky Security Integration with Autotask to the latest version.
Page top
Interface of Kaspersky Security Integration with Autotask
Kaspersky Security Integration with Autotask consists of two applications: Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP.
- Kaspersky Security Integration Tool for MSP provides a graphical user interface to configure integration.
- Kaspersky Security Integration Service for MSP is a service application for Microsoft Windows that synchronizes data in Kaspersky Security Center and Autotask. It does not have a user interface.
Kaspersky Security Integration Tool for MSP consists of one window with several nested tabs. Depending on the type of Kaspersky Lab solution that you use—on-premises or cloud-based—Kaspersky Security Integration Tool for MSP may have three or four nested tabs. On these tabs, you can configure mapping between the Kaspersky Lab solution entities, such as virtual servers / companies and security applications, and Autotask entities, such as accounts and services. You can also configure ticketing, and (if you use the cloud-based version of the solution) you can manage administrators who can configure the integration.
Kaspersky Security Integration Tool for MSP main window
The Kaspersky Security Integration Tool for MSP window has the following tabs:
- Accounts—Use this tab to set up and modify mapping between company accounts in Autotask and virtual servers or companies in your Kaspersky Lab solution, and to add or remove virtual servers or companies to your integration. On the Accounts tab, you can also enable automatic billing.
- Ticketing—Use this tab to set up ticketing rules for enabling automatic creation and assignment of tickets in Autotask. You can configure creation and assignment of tickets depending on the event severity and type, or when a computer status changes in Kaspersky Lab security applications.
Ticketing is one of the most important features of your integration. If you do not configure ticketing, Autotask cannot generate tickets on the basis of events and computer status changes and cannot process corresponding issues.
- Services—Use this tab to set up mapping between Autotask services and Kaspersky Lab security applications so that usage information about Kaspersky Lab security applications appears in Autotask. You can modify the existing mapping of services and security applications as well.
- Administrators—This tab is available for cloud-based solutions only. Use this tab to manage the administrators related to the integration with Kaspersky Business Hub. You can add existing Kaspersky Business Hub administrators to your integration or remove administrators from the integration if you do not want them to configure the integration.
Getting started
After you install Kaspersky Security Integration with Autotask, you establish a connection between it and Autotask. The connection enables you to configure integration using Kaspersky Security Integration Tool for MSP and enables Kaspersky Security Integration Service for MSP to send Service Tickets and license usage information to Autotask. To establish connection, create a new integration using Kaspersky Security Integration Tool for MSP.
The integration process varies depending on which Kaspersky Lab solution you use. This section describes how to configure integration with Kaspersky Security Center and with Kaspersky Business Hub.
Prerequisites
When configuring integration, you must specify the parameters of the Kaspersky Lab solution you integrate with (Kaspersky Security Center or Kaspersky Business Hub) and Autotask connection parameters. It is recommended that you check these parameters in advance in order to prepare for setting up integration.
Kaspersky Security Center parameters
Check the following parameters:
- Address of the computer on which Kaspersky Security Center Administration Server is installed.
- Credentials: user name and password for the computer on which Administration Server is installed.
- If you establish connection to the Administration Server through a proxy server, check the proxy server parameters: network address or domain name and credentials for the proxy server.
Kaspersky Business Hub parameters
Check the credentials of your Kaspersky Business Hub account: email address and password.
Autotask parameters
Credentials used to log in to Autotask: user name and password.
It is recommended to create and use a separate dedicated user with the API User security level rather than providing the credentials that you use to log in to Autotask. This security level must be set as Not required to change password. Because the API User security level does not allow logging in through the user interface, it eliminates many security risks associated with using an integration.
To set the "Not required to change password" security level:
- In Autotask, select Admin → Features & Settings, expand the Resources/Users node, and then click Resources/Users.
- Right-click a user name in the Resource Name column and select Edit Resource.
- In the Resource Management window that opens, select the Security tab, and in the Security Level drop-down list select API User.
- Click the Save & Close button.
- Select Admin → Features & Settings, expand the Resources/Users node, and then click Security Levels.
- In the Security Levels window that opens, click the Pencil icon next to the API User value in the Name column.
- In the Security Level window that opens, expand the Other node and select the Not required to change password (password does not expire) check box.
- Click Save & Close.
Additional prerequisites
During the integration process, it is required to add virtual servers or companies to your integration. These virtual servers or companies are then mapped to Autotask accounts.
For each client company represented by an account in Autotask, create and assign a separate Kaspersky Security Center virtual server / Kaspersky Business Hub company prior to integration.
One-to-one mapping is supported, and therefore the number of virtual servers or companies must not exceed the number of your managed accounts.
Page top
Integrating with Kaspersky Security Center
This section describes how to create and configure integration between Autotask and Kaspersky Security Center by using Kaspersky Security Integration Tool for MSP.
To successfully create integration, connect to Kaspersky Security Center Administration Server and perform the steps described in the following sections.
Connecting to Kaspersky Security Center Administration Server
When you start Kaspersky Security Integration Tool for MSP, the connection settings window opens. In this window, specify the settings to connect to Kaspersky Security Center Administration Server.
Connecting to Kaspersky Security Center Administration Server
To connect to Kaspersky Security Center Administration Server:
- In the Start menu, select Kaspersky Security Integration Tool for MSP.
- In the window that opens, select the Kaspersky Endpoint Security for Business solution to connect to Kaspersky Security Center Administration Server.
- You can connect to Kaspersky Security Center Administration Server in one of the following ways:
- By providing the connection parameters for the computer on which the Administration Server is installed.
If you selected this method of connection, specify the following connection settings. None of the fields can be blank.
- Address—Address of the computer on which the Administration Server is installed. You can specify this value as an IP address or as a domain name of the computer.
- User name—User name to connect to the computer on which the Administration Server is installed, that is, to the computer whose address you specified in the Address field.
- Password—Password to connect to the computer, on which the Administration Server is installed, that is, to the computer whose address you specified in the Address field.
- By selecting the Administration Server certificate.
In this case, you do not have to provide the connection parameters for the computer on which the Administration Server is installed. Kaspersky Security Integration Tool for MSP uses the certificate of Kaspersky Security Center Administration Server to connect to this Administration Server. Usage of the certificate guarantees that Kaspersky Security Integration Tool for MSP connects to the Administration Server from which the certificate was downloaded.
The Administration Server certificate is created automatically during installation of the Administration Server and is stored in the %ProgramData%\Application Data\KasperskyLab\adminkit\1093\cert folder on the computer that has Administration Server installed. Before starting to use the Administration Server certificate for authentication, copy the certificate file, klserver.cer, to the computer on which Kaspersky Security Integration Tool for MSP is installed.
- By providing the connection parameters for the computer on which the Administration Server is installed.
To use Administration Server certificate:
- Click the Select Kaspersky Security Center Administration Server certificate link.
- In the window that opens, select the Use a certificate check box, click Browse, and then navigate to the certificate file.
- Click OK to start using the selected certificate for connection.
- If you want to establish the connection to the Administration Server through a proxy server, select the Use proxy server check box. By default, this check box is cleared.
If you selected the Use proxy server check box, provide the following proxy-server settings:
- Address—Network address of the proxy server. Provide the address as a full domain name of the proxy server.
- User name—User name to connect to the proxy server.
- Password—Password to connect to the proxy server.
- Click the Proceed button to connect to the Administration Server using the specified settings.
The system validates the provided settings and connects to the Administration Server.
Creating a Kaspersky Security Center integration with Autotask
After you connect to the Administration Server, the integration settings window opens, where you can create an integration between Autotask and Kaspersky Security Center by means of Kaspersky Security Integration Tool for MSP.
Creation of an integration between Autotask and Kaspersky Security Center is required only when you launch Kaspersky Security Integration Tool for MSP for the first time.
Specifying Autotask integration settings
To create integration with Autotask:
- In the integration settings window that opens after you connect to the Administration Server, specify the following settings for the newly created integration:
- Select platform—Select the integration platform from the drop-down list. The list contains the names of all platforms that Kaspersky Security Center can be integrated with. For integration with Autotask, select Autotask.
- Integration name—Name of the new integration. This field cannot be blank. By default, the integration name is Integration with Autotask. The integration name is displayed in the Kaspersky Security Integration Tool for MSP window as a link that allows you to view and access the integration properties.
For an integration with Kaspersky Business Hub, click the View integration ID link under the integration name to view the identifier of the integration. You may have to provide this ID to Kaspersky Lab Technical Support for diagnostics and troubleshooting.
- User name—User name to be used to log in to Autotask.
- Password—Password for the user name to be used to log in to Autotask.
It is recommended to create and use a separate dedicated user with the API User security level rather than providing the credentials that you use to log in to Autotask. Refer to section Prerequisites for details.
- Click the Proceed button when you have finished specifying the integration settings.
The system validates the Autotask integration settings and permission level for the specified credentials. These settings are saved and then used by Kaspersky Security Integration with Autotask to gain access to Autotask.
The permission level of the credentials you provided must be high enough to perform all operations in Kaspersky Security Integration Tool for MSP; otherwise, an error occurs, and integration for the user with these credentials cannot be created. For example, integration cannot be created for a user lacking permissions for editing tickets in Autotask.
Kaspersky Security Center is now integrated with Autotask.
Adding virtual servers to the integration
After an integration with Autotask is created, a window opens where you can add Kaspersky Security Center virtual servers to the integration. Kaspersky Security Center virtual servers are then mapped to the Autotask accounts.
Adding virtual servers to the integration
To add Kaspersky Security Center virtual servers to the integration:
- In the window, which lists Kaspersky Security Center virtual servers, select the check boxes next to the existing virtual servers to add them to the integration.
If you want to add all virtual servers to the integration, select the Select all check box.
- Click Proceed.
You will now be able to map these virtual servers to Autotask accounts.
Each virtual server can be added to one integration only. That is, if a virtual server is added to an integration, it is not displayed in a list of virtual servers available for another integration.
Integrating with Kaspersky Business Hub
This section describes how to create and configure integration between Autotask and Kaspersky Business Hub by means of Kaspersky Security Integration Tool for MSP.
To successfully create integration, connect to Kaspersky Business Hub and perform the steps described in the following sections.
Connecting to Kaspersky Business Hub
When you start Kaspersky Security Integration Tool for MSP, the connection settings window opens. In this window, specify the settings to connect to Kaspersky Business Hub.
Connecting to Kaspersky Business Hub
To connect to Kaspersky Business Hub:
- In the Start menu, select Kaspersky Security Integration Tool for MSP.
- In the window that opens, select the Kaspersky Business Hub solution.
- Specify the following connection settings:
- User name—Email address that you use to connect to Kaspersky Business Hub. This field cannot be blank.
- Password—Password that you use to connect to Kaspersky Business Hub. This field cannot be blank.
- Click the Proceed button to connect to Kaspersky Business Hub by using the specified settings.
The system validates the provided settings and establishes connection to Kaspersky Business Hub.
Creating a Kaspersky Business Hub integration with Autotask
After you connect to the Kaspersky Business Hub, the integration settings window opens, where you can create an integration between Autotask and Kaspersky Business Hub by means of Kaspersky Security Integration Tool for MSP.
Creation of an integration between Autotask and Kaspersky Business Hub is required only when you launch Kaspersky Security Integration Tool for MSP for the first time.
Specifying Autotask integration settings
To create integration with Autotask:
- In the integration settings window that opens after you connect to Kaspersky Business Hub, specify the following settings for the newly created integration:
- Select platform—Select the integration platform from the drop-down list. The list contains the names of all platforms that Kaspersky Business Hub can be integrated with. For integration with Autotask, select Autotask.
- Integration name—Name of the new integration. This field cannot be blank. By default, the integration name is Integration with Autotask. The integration name is displayed in the Kaspersky Security Integration Tool for MSP window as a link that allows you to view and access the integration properties.
For an integration with Kaspersky Business Hub, click the View integration ID link under the integration name to view the identifier of the integration. You may have to provide this ID to Kaspersky Lab Technical Support for diagnostics and troubleshooting.
- User name—User name to be used to log in to Autotask.
- Password—Password for the user name to be used to log in to Autotask.
It is recommended to create and use a separate dedicated user with the API User security level rather than providing the credentials that you use to log in to Autotask. Refer to section Prerequisites for details.
- Click the Proceed button when you have finished specifying the integration settings.
The system validates the Autotask integration settings and permission level for the specified credentials. These settings are saved and then used by Kaspersky Security Integration with Autotask to gain access to Autotask.
The permission level of the credentials you provided must be high enough to perform all operations in Kaspersky Security Integration Tool for MSP; otherwise, an error occurs, and integration for the user with these credentials cannot be created. For example, integration cannot be created for a user lacking permissions for editing tickets in Autotask.
Kaspersky Business Hub is now integrated with Autotask.
Adding Kaspersky Business Hub companies to the integration
After an integration with Autotask is created, a window opens where you can add Kaspersky Business Hub companies to the integration. Kaspersky Business Hub companies are then mapped to the Autotask accounts.
You cannot add separate Kaspersky Endpoint Security Cloud workspaces or Kaspersky Security for Microsoft Office 365 workspaces to the integration. You can add only entire Kaspersky Business Hub companies. All workspaces created for a company in Kaspersky Business Hub are added to the integration.
Adding companies to the integration
To add Kaspersky Business Hub companies to the integration:
- In the window, which lists Kaspersky Business Hub companies, select the check boxes next to the existing companies to add them to the integration. Icons next to the name of each company show which workspaces are created for this company in Kaspersky Business Hub.
If you want to add all companies to the integration, select the Select all check box.
- Click Proceed.
You will now be able to map these companies to Autotask accounts.
Each Kaspersky Business Hub company can be added to one integration only. That is, if a company is added to an integration, it is not displayed in a list of companies available for another integration.
Supplementary parameter
The parameter that indicates the type of Kaspersky Business Hub server to which Kaspersky Security Integration Tool for MSP connects may be included in the .config file (IntegrationUI.exe.config) of Kaspersky Security Integration Tool for MSP.
The parameter name is KESCloudServer; and its possible values are:
- production—Kaspersky Security Integration Tool for MSP works with the Production server.
- beta—Kaspersky Security Integration Tool for MSP works with the Beta server.
- test—Kaspersky Security Integration Tool for MSP works with the Test server.
You are strongly urged not to modify the KESCloudServer parameter unless you receive clear instructions from Kaspersky Lab.
The IntegrationUI.exe.config file is stored in the installation folder of Kaspersky Security Integration Tool for MSP. The default path is C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Tool for MSP\IntegrationUI.exe.config.
By default, the KESCloudServer parameter is not displayed in the .config file of Kaspersky Security Integration Tool for MSP.
The KESCloudServer parameter can be specified as follows:
<appSettings>
<add key="KESCloudServer" value="production" />
</appSettings>
Managing integrations
This section describes how to edit or delete an existing integration and how to create a new integration. For example, you may have to edit, delete, or create an integration when you change the vendor of your Professional Services Automation system.
Creating a new integration
You can create a new integration in the Kaspersky Security Integration Tool for MSP window.
Creating a new integration
To create a new integration with Autotask:
- At the top of the Kaspersky Security Integration Tool for MSP window, click the name of the current integration.
- In the Integration Settings window that opens, click the New integration button.
A new Integration Settings window opens. The fields for the connection settings are blank.
- Specify the values for the following settings of the integration:
- Platform—Select the integration platform from the drop-down list. The list contains the names of all platforms that Kaspersky Security Center or Kaspersky Business Hub can be integrated with. For integration with Autotask, select Autotask.
- Integration name—Name of the new integration. This field cannot be blank. By default, the integration name is Integration with Autotask. The integration name is displayed in the Kaspersky Security Integration Tool for MSP window as a link that allows you to view and access the integration properties.
For an integration with Kaspersky Business Hub, click the View integration ID link under the integration name to view the identifier of the integration. You may have to provide this ID to Kaspersky Lab Technical Support for diagnostics and troubleshooting.
- User name—User name to be used to log in to Autotask.
- Password—Password for the user name to be used to log in to Autotask.
- Click OK when you have finished specifying the integration settings.
The system validates the Autotask integration settings. If the settings you provide are correct, they are saved and then used by Kaspersky Security Integration with Autotask to gain access to Autotask.
A new integration with Autotask is created.
Page top
Editing and viewing an existing integration
You can view and edit settings of an existing integration in the Kaspersky Security Integration Tool for MSP window.
Editing an integration
To view and edit integration with Autotask:
- At the top of the window, click the name of the integration whose settings you want to view or modify.
- In the Integration Settings window that opens, in the Select integration drop-down list select the required integration.
- Modify the following settings of the selected integration:
- Integration name—Name of the selected integration. By default, the integration name is Integration with Autotask. You can edit this field, however, it cannot be blank.
For an integration with Kaspersky Business Hub, click the View integration ID link under the integration name to view the identifier of the integration. You may have to provide this ID to Kaspersky Lab Technical Support for diagnostics and troubleshooting.
- User name—User name to log in to Autotask.
- Password—Password for the user name, specified to log in to Autotask.
- Integration name—Name of the selected integration. By default, the integration name is Integration with Autotask. You can edit this field, however, it cannot be blank.
- Click OK when you have finished editing the integration settings.
The system validates the Autotask integration settings. If the settings you provide are correct, they are saved and then used by Kaspersky Security Integration with Autotask to gain access to Autotask.
The integration with Autotask is modified and saved.
Page top
Deleting an existing integration
You can delete an existing integration in the Kaspersky Security Integration Tool for MSP window.
When you delete an integration, all virtual servers or companies that were linked to the integration are unbound from the integration but continue to exist in Kaspersky Security Center or Kaspersky Business Hub. All administrators of the deleted integration receive notifications that the integration was deleted, but they can continue to administer Kaspersky Business Hub companies that were linked to this integration.
All Kaspersky Security Center virtual servers or Kaspersky Business Hub companies that are unbound from the deleted integration can be added to other integrations.
To delete integration with Autotask:
- At the top of the Kaspersky Security Integration Tool for MSP window, click the name of the integration that you want to delete.
- In the integration window that opens, click Delete to delete the integration.
- Click Yes to confirm deletion.
The integration settings are cleared, indicating that the integration is deleted.
Configuring integration in Kaspersky Security Integration with Autotask
The purpose of Kaspersky Security Integration Tool for MSP is to configure integration between Autotask and the Kaspersky Lab solution you use: Kaspersky Security Center or Kaspersky Business Hub.
Using Kaspersky Security Integration Tool for MSP, you can do the following:
- Map Autotask accounts to Kaspersky Security Center virtual servers or Kaspersky Business Hub companies.
- Configure ticketing in Autotask.
- Map Kaspersky Lab security applications to existing Autotask services.
- Configure automated billing.
Mapping accounts and enabling automatic billing
Use the Accounts tab in the Kaspersky Security Integration Tool for MSP window to set up and modify mapping between accounts in Autotask and virtual servers or companies in your Kaspersky Lab solution. To set up mapping, accounts must be created in Autotask, while virtual servers must be added to Kaspersky Security Center Administration Server or companies must be created in Kaspersky Business Hub.
On the Accounts tab, you can also enable automatic billing for your Autotask accounts. This means that information about the number of licenses for Kaspersky Lab security applications provided during the current billing period can be updated regularly and automatically in Autotask. Timely updating lets you prepare customer invoices more quickly and easily.
When you click the Accounts tab, a list is displayed, showing virtual servers or companies and their corresponding Autotask accounts. You can add existing virtual servers or companies to the integration and map Autotask accounts to them. You can also delete mapping between a virtual server or company and its corresponding account. In this case, neither the virtual server / company nor the account is deleted; instead, the link between them is broken.
Mapping accounts and enabling automatic billing
The following sections explain how to add or remove virtual servers or companies to / from the integration and how to configure automatic billing.
Adding and removing virtual servers or companies
You can add existing virtual servers or companies to the integration or remove them from the integration.
To add or remove virtual servers or companies to / from the integration:
- In the Kaspersky Security Integration Tool for MSP window, click the Companies tab.
- Click the Add / remove virtual servers link if you use Kaspersky Security Center, or the Add / remove companies link if you use Kaspersky Business Hub, and then do one of the following:
- Select check boxes next to existing virtual servers or companies to add them to the integration. Then you can match these virtual servers or companies to Autotask accounts.
- Clear check boxes next to virtual servers or companies to remove them from the integration. This action does not remove the virtual servers from Kaspersky Security Center or companies from Kaspersky Business Hub; it only deletes the mapping between the virtual servers or companies and the Autotask accounts.
- Click OK.
Each virtual server or company can be added to one integration only. That is, if a virtual server or a company is added to an integration, it is not displayed in a list of virtual servers or companies available for another integration.
Setting up automatic billing
You can map virtual servers or companies to Autotask accounts and configure automatic billing for the selected accounts.
To set up mapping between virtual servers or companies and Autotask accounts, and edit billing settings:
- In the Kaspersky Security Integration Tool for MSP window, click the Accounts tab.
- In the Virtual server column (if you use Kaspersky Security Center) or in the Company column (if you use Kaspersky Business Hub), locate the virtual servers or companies to which to map the Autotask account.
If you have a long list of virtual servers or companies, use the search box located above the table, on the right, to find the required virtual server or company. Type any part of the virtual server or company name in the search box and click the Search button. Only the virtual servers or companies whose names contain the string you entered are displayed.
- In the Autotask account column, click the drop-down arrow and select the account you want to map to the virtual server or company.
One-to-one mapping is supported. You can map one virtual server or one company to a single Autotask account.
- Turn automatic billing on or off for your Autotask account by using the toggle button in the Billing settings column.
To use automatic billing, you must create mapping between Kaspersky Lab security applications and their Autotask equivalents—services. For details, see Mapping Autotask services to security applications.
- Click the Select contract drop-down arrow in the Billing settings column and select one of the available Contracts associated with the account you selected in the Autotask account column.
A contract of the Recurring Service type must exist for the selected account in Autotask in order for automatic billing to be set up successfully. Contracts for an account are created and managed in Autotask. You can view the contracts for the selected account in Autotask.
For details on automatic billing, see How automatic billing works.
- If necessary, repeat steps 2 to 5 for each pair: virtual server-account or company-account.
- Click the Save changes button to save your mapping.
After the accounts are mapped to the virtual servers or companies and automatic billing is configured, the Contract Service Adjustments for the licensed Kaspersky Lab security applications are automatically created for these accounts in Autotask.
Page top
How automatic billing works
You can configure automatic billing to enable Kaspersky Security Integration with Autotask to create, and update daily, the Contract Service Adjustments for accounts in Autotask. When automatic billing is configured, information about usage of Kaspersky Lab security applications on managed computers is transferred to Autotask automatically, allowing faster periodic generation of invoices for your customers. For the information about enabling and configuring automatic billing, refer to Setting up automatic billing.
Automatic billing works according to the following rules:
- Kaspersky Security Integration Service for MSP runs automatic billing daily, so that you have up-to-date usage information in Autotask any time you have to generate an invoice for a client.
- Kaspersky Security Integration Service for MSP creates Service Adjustments to Autotask Contracts only for those Kaspersky Lab security applications that are mapped to Autotask Services. For details, refer to Mapping Autotask services to security applications.
- For each account with a specified Contract that is mapped to a virtual server or a company, Kaspersky Security Integration Service for MSP calculates how many devices managed by this virtual server or belonging to this company utilize licenses for Kaspersky Lab security applications. Only unexpired and active commercial keys and subscriptions are counted. Servers and workstations are counted separately if the Bill devices by category option is selected when Kaspersky Lab security applications and Autotask services are mapped. Also, Kaspersky Security Integration Service for MSP calculates how many Kaspersky Security for Microsoft Office 365 mailboxes are protected.
- Every time the number of devices that utilize licenses for Kaspersky Lab security applications or the number of protected mailboxes changes, Kaspersky Security Integration Service for MSP generates a Service Adjustment for the Contract associated with the account. This Service Adjustment contains information on how usage of the Kaspersky Lab security applications changed.
To differentiate the pricing policy for two types of devices (servers and workstations), a separate billing feature is available. Kaspersky Security Integration Tool for MSP supports two billing configurations:
- Associates a single licensed Kaspersky Lab security application with a single Autotask service.
- Associates a single licensed Kaspersky Lab security application with three different Autotask services: one for servers, a second for workstations, and a third for non-Windows devices.
In this case, Autotask analyzes the type of client device (server or workstation) that uses the Kaspersky Lab license. Data about each Kaspersky Lab security application license used by the device is associated with the Autotask service mapped to this Kaspersky Lab security application.
For example, if a client company uses Kaspersky Endpoint Security for Business Advanced on 100 devices, where 90 of them are workstations and 10 are servers, Kaspersky Security Integration Service for MSP does the following:
- Creates a Contract Service Adjustment on 90 devices for the Autotask service for workstations.
- Creates a Contract Service Adjustment on 10 devices for the Autotask service for servers.
Setting up ticketing
This section explains how to set up ticketing for your Autotask accounts.
About setting up ticketing
Tickets allow timely responses to different types of events or changes in computer status that occur on the network. Automated ticketing allows you to reduce significantly the time spent monitoring and managing your Autotask accounts.
You must establish ticketing rules to enable automatic creation and assignment of tickets in Autotask. You can set up creation and assignment of tickets depending on the event severity or when a computer status changes to Critical or Warning in Kaspersky Lab security applications.
Tickets created on the basis of computer status changes are automatically closed when the corresponding issue is resolved and the status description that triggered the ticket creation is no longer relevant. For example, when a computer's status becomes Warning because a "Databases are out of date" status description is assigned, a corresponding ticket is created. When the databases are updated, the status description "Databases are out of date" is no longer relevant, and the ticket is automatically closed. However, the computer status might remain Warning because of other status descriptions, for example, "Many viruses detected".
Tickets created on the basis of events Mailboxes protection is not provided and License-related issue occurred that occur in Kaspersky Security for Microsoft Office 365 are also closed when the corresponding issue is resolved.
Tickets created on the basis of all other events that occur in Kaspersky Security for Microsoft Office 365 and tickets created on the basis of events that occur in Kaspersky Security Center or Kaspersky Endpoint Security Cloud are not closed automatically, so you must close these tickets manually.
You can create and modify ticketing rules for your Autotask accounts. Ticketing rules are applicable to all accounts that are mapped to Kaspersky Security Center virtual servers or Kaspersky Business Hub companies. Ticketing rules are configured individually for events and for computer statuses. When configuring integration between Autotask and Kaspersky Business Hub, you must set up ticketing separately for Kaspersky Endpoint Security Cloud and Kaspersky Security for Microsoft Office 365.
Page top
General ticketing settings
In the General section of the Ticketing tab, you can configure general ticketing settings. General settings are applicable to all tickets that have been automatically created in Autotask as a result of events or computer status changes that occur in Kaspersky Lab security applications. General settings provide the required initial values to the ticket attributes so that tickets are created correctly in Autotask.
Configuring general ticketing settings
To configure general ticketing settings:
- In the Kaspersky Security Integration Tool for MSP window, click the Ticketing tab.
- In the left pane, select the General section.
The General Settings right pane allows you to configure general settings for ticketing.
- Edit the following settings:
- In the Ticket source drop-down list, select the source to be assigned to new tickets that are automatically created in Autotask when an event is triggered or a change in computer status occurs. This value is optional; it is displayed in the ticket properties in Autotask.
- In the New ticket status drop-down list, select the status to be assigned to new tickets that are automatically created in Autotask when an event is triggered or a change in computer status occurs. By default, these tickets are assigned the New status. This value is required.
- In the Closed ticket status drop-down list, select the status to be assigned to tickets when they are automatically closed by Kaspersky Security Integration Service for MSP after the corresponding issue in the Kaspersky Lab security application has been resolved. By default, these tickets are assigned the Complete status. This value is required.
- When you finish configuring general ticketing settings, click the Save changes button to save the ticketing settings.
General ticketing settings are configured and Autotask tickets are created in accordance with the specified rules.
You can cancel changes and reset general ticketing settings to their last saved values.
To cancel changes to general ticketing settings and restore last saved values:
- Open the Ticketing tab and in the left pane select the General section.
- Click the Cancel changes button.
You can also reset general ticketing settings to their default values.
To reset general ticketing settings to their default values:
- Open the Ticketing tab and in the left pane select the General section.
- Click the Reset to defaults link.
Ticketing for events
The ticketing settings depend on the Kaspersky Lab solution that you use: Kaspersky Security Center or Kaspersky Business Hub.
Ticketing for events that occur in Kaspersky Security Center
On the Ticketing tab, you can configure ticketing rules for events that occur in Kaspersky Security Center. You can edit ticketing settings either for an individual event or for several events at the same time.
Configuring ticketing for events
To set up ticketing for events:
- In the Kaspersky Security Integration Tool for MSP window, click the Ticketing tab.
- In the left pane, select the Events section to configure ticketing for events.
- Do one of the following:
- To configure ticketing for one event severity, use the toggle button in the Create ticket column to enable ticket creation for the corresponding event severity. In the Lifetime, Queue, Priority, and Due, hours columns, edit the settings as required.
By default, ticketing is disabled for all event severities.
- To configure ticketing for one or several event severities simultaneously, select the lines that contain required event severities, and then click the Edit button above the table. The Ticketing settings for events window opens.
Editing ticketing settings for multiple event severities is useful if you want to assign the same settings to these event severities. If you want the ticketing settings to be different, edit them individually for each event severity.
You can edit the following ticketing settings:
- On / Off (or, in the main window, the toggle button)—Enable or disable ticket creation for the selected event severities.
- Lifetime—Select the period, in days, during which the events are still relevant. The default value is 1 day.
This value is used to determine whether to create a ticket for an event in Autotask. If the connection between Autotask and Kaspersky Security Center has been broken and events have not been sent for some time, only events more recent than the specified period are sent to Autotask as tickets. A different relevance period can be set for different event severities.
- Queue—Select the queue in which to put the created ticket. The drop-down list contains the names of the Autotask queues. By default, tickets are put in the Monitoring Alert queue. This setting is required.
- Priority—Select the priority level for the tickets created in Autotask. Assigning priority levels is used to prioritize corresponding Autotask tickets. The ticket priority allows you to respond to the issues in order of their importance, so that more urgent problems can be resolved sooner. The default priority for Critical events is Critical, and for Warning and Functional Failure events it is Medium. If one of these basic priority values is deleted in Autotask, the default value is blank. This setting is required.
- Due—Specify the time interval during which the ticket issue must be resolved and the ticket must be closed. The default value is 12 hours.
- Work type—Select the work type to be assigned to the ticket. This setting is present only in the Ticketing settings for events window.
- Issue type—Select the Autotask issue type to be assigned to the ticket. This setting is present only in the Ticketing settings for events window.
- Issue subtype—Select the Autotask issue subtype to be assigned to the ticket. This setting is present only in the Ticketing settings for events window.
Ticketing settings for events window
- To configure ticketing for one event severity, use the toggle button in the Create ticket column to enable ticket creation for the corresponding event severity. In the Lifetime, Queue, Priority, and Due, hours columns, edit the settings as required.
- When you finish configuring ticketing for events, click the Save changes button to save the ticketing settings.
Ticketing for event severities is configured and Autotask tickets will be created in accordance with the specified rules.
Kaspersky Security Integration Service for MSP can create tickets only for active Autotask accounts. Therefore, make sure that the Active check box is selected in the account properties.
You can cancel changes and reset ticketing settings to their last saved values.
To cancel changes of ticketing settings and restore last saved values:
- Open the Ticketing tab.
- In the left pane, select the Events section.
- Click the Cancel changes button.
You can also reset ticketing settings to their default values.
To reset ticketing settings to their default values:
- Open the Ticketing tab.
- In the left pane, select the Events section.
- Click the Reset to defaults link.
Ticketing for events that occur in Kaspersky Endpoint Security Cloud and Kaspersky Security for Microsoft Office 365
On the Ticketing tab, you can configure ticketing rules for events that occur in Kaspersky Endpoint Security Cloud and Kaspersky Security for Microsoft Office 365. You can edit ticketing settings either for an individual event or for several events at the same time.
Configuring ticketing for events
To set up ticketing for events:
- In the Kaspersky Security Integration Tool for MSP window, click the Ticketing tab.
- In the left pane, click the Kaspersky Lab security application name, and then select the Events section to configure ticketing for events. You can configure ticketing separately for events that occur in Kaspersky Endpoint Security Cloud and Kaspersky Security for Microsoft Office 365.
- Do one of the following:
- To configure ticketing for one event severity (in Kaspersky Endpoint Security Cloud) or for one event type (in Kaspersky Security for Microsoft Office 365), use the toggle button in the Create ticket column to enable ticket creation for the corresponding event severity or event type. In the Lifetime, Queue, Priority, and Due, hours columns, edit the settings as required.
By default, ticketing is disabled for all event severities and event types.
- To configure ticketing for one or several event severities or event types simultaneously, select the lines that contain required event severities or event types, and then click the Edit button above the table. The Ticketing settings for events window opens.
Editing ticketing settings for multiple event severities or event types is useful if you want to assign the same settings to these event severities or event types. If you want the ticketing settings to be different, edit them individually for each event severity or event type.
You can edit the following ticketing settings:
- On / Off (or, in the main window, the toggle button)—Enable or disable ticket creation for the selected event severities or event types.
- Lifetime—Select the period, in days, during which the events are still relevant. The default value is 1 day. This setting is not present for events that occur in Kaspersky Security for Microsoft Office 365.
This value is used to determine whether to create a ticket for an event in Autotask. If the connection between Autotask and Kaspersky Endpoint Security Cloud has been broken and events have not been sent for some time, only events more recent than the specified period are sent to Autotask as tickets. A different relevance period can be set for different event severities.
- Queue—Select the queue in which to put the created ticket. The drop-down list contains the names of the Autotask queues. By default, tickets are put in the Monitoring Alert queue. This setting is required.
- Priority—Select the priority level for the tickets created in Autotask. Assigning priority levels is used to prioritize corresponding Autotask tickets. The ticket priority allows you to respond to the issues in order of their importance, so that more urgent problems can be resolved sooner. The default priority for Critical events that occur in Kaspersky Endpoint Security Cloud is Critical, and for Warning and Functional Failure events it is Medium. The default priority for all events that occur in Kaspersky Security for Microsoft Office 365 is Critical. If one of these basic priority values is deleted in Autotask, the default value is blank. This setting is required.
- Due—Specify the time interval during which the ticket issue must be resolved and the ticket must be closed. The default value is 12 hours.
- Work type—Select the work type to be assigned to the ticket. This setting is present only in the Ticketing settings for events window.
- Issue type—Select the Autotask issue type to be assigned to the ticket. This setting is present only in the Ticketing settings for events window.
- Issue subtype—Select the Autotask issue subtype to be assigned to the ticket. This setting is present only in the Ticketing settings for events window.
Ticketing settings for events window
- To configure ticketing for one event severity (in Kaspersky Endpoint Security Cloud) or for one event type (in Kaspersky Security for Microsoft Office 365), use the toggle button in the Create ticket column to enable ticket creation for the corresponding event severity or event type. In the Lifetime, Queue, Priority, and Due, hours columns, edit the settings as required.
- When you finish configuring ticketing for events, click the Save changes button to save the ticketing settings.
Ticketing for event severities or event types is configured and Autotask tickets will be created in accordance with the specified rules.
Kaspersky Security Integration Service for MSP can create tickets only for active Autotask accounts. Therefore, make sure that the Active check box is selected in the account properties.
You can cancel changes and reset ticketing settings to their last saved values.
To cancel changes of ticketing settings and restore last saved values:
- Open the Ticketing tab.
- In the left pane, click the Kaspersky Lab security application name, and then select the Events section.
- Click the Cancel changes button.
You can also reset ticketing settings to their default values.
To reset ticketing settings to their default values:
- Open the Ticketing tab.
- In the left pane, click the Kaspersky Lab security application name, and then select the Events section.
- Click the Reset to defaults link.
Ticketing for computer statuses
On the Ticketing tab, you can configure ticketing rules for the computer statuses. This allows tickets to be created in Autotask when the computer status in Kaspersky Security Center or Kaspersky Endpoint Security Cloud changes to Warning or Critical. You can edit ticketing settings either for an individual computer status or for several statuses at the same time.
Configuring ticketing for computer statuses
To set up ticketing for computer status:
- In the Kaspersky Security Integration Tool for MSP window, click the Ticketing tab.
- In the left pane, select the Warning status or Critical status section to configure ticketing for computer statuses.
- Do one of the following:
- To configure ticket creation for one status, use the toggle button in the Create ticket column to enable ticket creation for the corresponding status change. In the Queue, Priority, and Due, hours columns, edit the settings as required.
By default, ticket creation is disabled for all computer status descriptions.
- To configure ticket creation for one or several statuses simultaneously, select the lines that contain the required status description, and then click the Edit button above the table. The Ticketing settings for computer status change window opens.
Editing ticketing settings for multiple computer statuses is useful if you want to assign the same ticketing settings to these computer statuses. If you want the ticketing settings to be different, edit them individually for each computer status.
You can edit the following ticketing settings:
- On / Off (or, in the main window, the toggle button)—Enable or disable ticket creation for the selected status changes.
- Queue—Select the queue in which to put the created ticket. The drop-down list contains the names of the Autotask queues. By default, the tickets are put in the Monitoring Alert queue. This setting is required.
- Priority—Select the priority level for the tickets created in Autotask. Assigning priority levels to the tickets created for computer status change is used to prioritize corresponding Autotask tickets. The ticket priority allows you to respond to the issues in order of their importance, so that more urgent problems can be resolved sooner. The default priority for Critical computer statuses is Critical, and for Warning computer statuses it is Medium. If one of these basic priority values is deleted in Autotask, the default value is blank. This setting is required.
- Due—Specify the time interval during which the ticket issue must be resolved and the ticket must be closed. The default value for Critical computer statuses is 12 hours, and for Warning computer statuses it is 24 hours.
- Work type—Select the work type to be assigned to the ticket. This setting is present only in the Ticketing settings for computer status change window.
- Issue type—Select the Autotask issue type to be assigned to the ticket. This setting is present only in the Ticketing settings for computer status change window.
- Issue subtype—Select the Autotask issue subtype to be assigned to the ticket. This setting is present only in the Ticketing settings for computer status change window.
Ticketing settings for computer status change window
- To configure ticket creation for one status, use the toggle button in the Create ticket column to enable ticket creation for the corresponding status change. In the Queue, Priority, and Due, hours columns, edit the settings as required.
- When you finish configuring ticketing for computer statuses, click the Save changes button to save the ticketing settings.
Ticketing for computer statuses is configured and Autotask tickets will be created in accordance with the specified rules.
Kaspersky Security Integration Service for MSP can create Tickets only for active Autotask accounts. Therefore, make sure that the Active check box is selected in the account properties.
You can cancel changes and reset ticketing settings to their last saved values.
To cancel changes of ticketing settings and restore last saved values:
- Open the Ticketing tab.
- In the left pane, click the Kaspersky Lab solution name, and then select the Warning status or Critical status section.
- Click the Cancel changes button.
You can also reset ticketing settings to their default values.
To reset ticketing settings to their default values:
- Open the Ticketing tab.
- In the left pane, click the Kaspersky Lab solution name, and then select the Warning status or Critical status section.
- Click the Reset to defaults link.
Mapping Autotask services to security applications
Set up mapping between Kaspersky Lab security applications and Autotask services, so that usage information about Kaspersky Lab security applications appears in Autotask as Service Adjustments to existing contracts.
On the Services tab of the Kaspersky Security Integration Tool for MSP window, you can map Kaspersky Lab security applications to Autotask services. You can edit the existing mapping between security applications and services as well.
The list of available security applications differs depending on which Kaspersky Lab solution you use: Kaspersky Security Center or Kaspersky Business Hub.
Mapping Kaspersky Lab security applications to Autotask services
To set up mapping between Kaspersky Lab security applications and Autotask services:
- In the Kaspersky Security Integration Tool for MSP window, click the Services tab.
- To differentiate the pricing policy for two types of devices (servers and workstations), use the Bill devices by category toggle button to turn on this feature.
- Map Kaspersky Lab security applications in the Kaspersky Lab security application column to their equivalents in the Autotask service column.
If the Bill devices by category feature is disabled, each Kaspersky Lab security application can be mapped to one Autotask service only. Otherwise, map each Kaspersky Lab security application to three Autotask services:
- In the Windows workstations drop-down list, select an Autotask service. The price of this service will be used during billing for all of the workstations that use the license for the corresponding Kaspersky Lab security application.
- In the Windows servers drop-down list, select an Autotask service. The price of this service will be used during billing for all of the servers that use the license for the corresponding Kaspersky Lab security application.
- In the Non-Windows devices drop-down list, select an Autotask service. The price of this service will be used during billing for all of the non-Windows devices that use the license for the corresponding Kaspersky Lab security application.
- When you have finished with mapping, click the Save changes button to save the mapping.
Viewing accounts not integrated with Kaspersky Lab security applications
When configuring integration with Autotask, it is useful to check whether all Autotask accounts are connected to Kaspersky Security Center virtual servers / Kaspersky Business Hub companies, or whether you accidentally skipped one or more accounts. For this purpose, you can use Autotask reports that allow you to display all existing Autotask accounts together with the virtual servers or companies to which they are mapped.
Kaspersky Security Integration with Autotask adds its own fields to the Autotask configuration. You can use these fields in different reports. For example, using standard Autotask functionality, you can select clients that are not integrated with Kaspersky Security Center or Kaspersky Business Hub—that is, the clients whose accounts do not have a corresponding virtual server or company. Then you can manually, using filters, exclude the accounts that do not use Kaspersky Lab security applications from your selection.
To view Autotask accounts that are not mapped to virtual servers or companies:
- Log in to Autotask with your user name and password.
- In Autotask, create a report, using Autotask LiveReports Designer. Your report must include the following fields:
- Autotask account name.
- Corresponding virtual server / company name.
Refer to Autotask documentation for details on creating reports.
- Filter your report data by the name of the virtual server or company.
If the name of the virtual server or company is empty, the account is not mapped to any virtual server or company.
Configuring integration by using the registry
By using the Microsoft Windows registry, you can configure the integration as follows:
- Enable or disable tracing.
- Change the maximum time before updated integration settings are applied.
Enabling and disabling tracing
Refer to the "Enabling and disabling tracing by using the registry" section.
Changing the maximum time before updated integration settings are applied
After you update integration settings in Kaspersky Security Integration Tool for MSP, Kaspersky Security Integration Service for MSP applies them not immediately but within a certain time interval. By default, this interval is 15 minutes. If you use an on-premises version of a Kaspersky Lab solution, you can change the interval by using Microsoft Windows registry, as described later in this section. For a Cloud version of a Kaspersky Lab solution, the interval is specified by Kaspersky Lab specialists.
To change the maximum time before updated integration settings are applied:
Before editing the Windows registry, it is recommended that you back up the registry.
- Click the Start button.
- In the Start menu, in either the Run box or the Search box, type regedit and press Enter.
The Registry Editor window opens.
If you have restricted access to the Windows computer to which you are logged in, you might not be able to access the registry.
- In the Registry Editor window, navigate to the Kaspersky Security Integration Service for MSP registry key. It is available by one of the following registry subkeys (paths):
- HKEY_LOCAL_MACHINE\SOFTWARE\KasperskyLab\Kaspersky Security Integration Service for MSP
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\KasperskyLab\Kaspersky Security Integration Service for MSP
- Edit the value of the ConfigReloadIntervalMinutes setting by specifying the required number of minutes.
- Click OK in the Edit window to save your changes.
- Close the Registry Editor window.
The value is changed.
Managing administrators
You can manage the administrators related to the integration with Kaspersky Business Hub. You can add the accounts of existing Kaspersky Business Hub users as administrators of your integration. You can also remove administrators from the integration if you do not want them to work with the integration.
You can manage administrators within the integration only if Kaspersky Business Hub solution is used. For Kaspersky Security Center solution, this functionality is unavailable.
When you add administrators to the integration, they have the same rights as existing administrators: they can administer all workspaces bound to this integration and manage the integration settings.
When you remove administrators from the integration, these administrators can no longer manage this integration and cannot administer its workspaces. You may have to remove administrators, for example, if they stop working for your company or move to new positions within the company and are no longer allowed to manage integrations.
All remaining administrators who have access to the integration can add or remove administrators to / from this integration.
Managing administrators
The following sections explain how to add or remove an administrator to / from the integration.
Adding administrators
When you add administrators to an integration, they have the same rights as existing administrators: they can administer Kaspersky Endpoint Security Cloud workspaces and Kaspersky Security for Microsoft Office 365 workspaces of all Kaspersky Business Hub companies bound to this integration and can manage the integration settings.
To add administrators:
- In the Kaspersky Security Integration Tool for MSP window, click the Administrators tab.
- Click the Add link to add administrators.
- In the Add administrators dialog box that opens, specify the email addresses and aliases associated with the Kaspersky Lab accounts of the users that you want to add as new administrators. You can add several administrators at a time.
- Use a semicolon to separate the email address and alias of an administrator.
- Type the data for each administrator in a new line.
Only users registered in Kaspersky Business Hub can be added to the integration.
- Click Next and check the data that you provided. If everything is correct, click Finish to add the administrators to the integration. If you want to change the information you provided, click Back.
- After you perform all the actions with administrators' accounts, click the Save changes button.
The new administrators are added to the integration and gain access to all workspaces within this integration.
Removing administrators
When you remove administrators from an integration, they can no longer manage the integration. However, the administrators' Kaspersky Lab accounts are not deleted; they are merely unbound from the integration, so that the administrators cannot manage the integration or administer its workspaces.
To remove administrators:
- In the Kaspersky Security Integration Tool for MSP window, click the Administrators tab.
- Select the check boxes next to the names of administrators you want removed from the integration.
If you want to select all administrators, select the check box in the column header.
You cannot remove all administrators from the integration. An integration must have at least one administrator.
- Click the Delete link to remove the selected administrators.
- After you perform all the actions with the administrators' accounts, click the Save changes button.
The selected administrators are removed from the integration and lose their rights to administer workspaces bound to the integration.
Enabling and disabling tracing
The following sections explain how to enable and disable tracing for Kaspersky Security Integration with Autotask components.
You may have to save traces of Kaspersky Security Integration with Autotask, for example, if you contact Technical Support and they ask you to provide the traces for diagnostics and troubleshooting. It is recommended to disable tracing when an issue is resolved, as tracing requires additional resources and additional memory to store trace files. It is also recommended to remove trace files from your computer after the issue that required tracing is resolved, because the trace files may contain personal and confidential data.
By default, tracing is disabled.
There are two ways of enabling and disabling tracing for Kaspersky Security Integration with Autotask components:
- Using the Microsoft Windows registry.
- In the .config files of Kaspersky Security Integration with Autotask components.
Enabling and disabling tracing by using the registry
You can enable and disable tracing by using the Microsoft Windows registry.
To enable or disable tracing:
Before editing the Windows registry, it is recommended that you back up the registry.
- Click the Start button.
- In the Start menu, either in the Run box or the Search box, type regedit and press Enter.
The Registry Editor window opens.
If you have restricted access to the Windows computer you are logged into, you might not be able to access the registry.
- In the Registry Editor window, navigate to the Kaspersky Security Integration Service for MSP or Kaspersky Security Integration Tool for MSP registry key. They are available by one of the following paths:
- Kaspersky Security Integration Service for MSP
- HKEY_LOCAL_MACHINE\SOFTWARE\KasperskyLab\Kaspersky Security Integration Service for MSP
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\KasperskyLab\Kaspersky Security Integration Service for MSP
- Kaspersky Security Integration Tool for MSP
If the Kaspersky Security Integration Tool for MSP registry key is not displayed, either run Kaspersky Security Integration Tool for MSP as administrator (by right-clicking the application icon and selecting Run as administrator), or create the registry key manually.
- HKEY_LOCAL_MACHINE\SOFTWARE\KasperskyLab\Kaspersky Security Integration Tool for MSP
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\KasperskyLab\Kaspersky Security Integration Tool for MSP
- Kaspersky Security Integration Service for MSP
- Edit the value of the EnableTraces parameter as follows:
- 1—To enable tracing.
- 0—To disable tracing.
- Click OK in the Edit window to save your changes.
- Close the Registry Editor window.
The trace files are saved to the .log files in the application installation folder:
- For Kaspersky Security Integration Tool for MSP the file is IntegrationUI.log, by default saved to the C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Tool for MSP folder.
- For Kaspersky Security Integration Service for MSP the file is IntegrationServer.log, by default stored in the C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Service for MSP folder.
When you uninstall Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP, the trace files are removed together with the application.
Enabling and disabling tracing by using the .config files
You can enable and disable tracing in the .config files of Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP. The files are stored in the installation folders of the corresponding products.
To enable or disable tracing:
- Navigate to the .config file of the Kaspersky Security Integration with Autotask component for which you want to enable or disable tracing. The .config file is stored in the installation folder. By default, the navigation paths are:
- For Kaspersky Security Integration Tool for MSP the file is IntegrationUI.exe.config, by default stored in the C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Tool for MSP folder.
- For Kaspersky Security Integration Service for MSP the file is IntegrationServer.exe.config, by default stored in the C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Service for MSP folder.
- Open the .config file with any text editor and change the value of the minlevel attribute of the logger element as follows:
- To enable tracing, set the value of the minlevel attribute to Debug.
<logger name="MSPIntegration.*" writeTo="fileTarget" minlevel="Debug" /> - To disable tracing, set the value of the minlevel attribute to Off.
<logger name="MSPIntegration.*" writeTo="fileTarget" minlevel="Off" />
- To enable tracing, set the value of the minlevel attribute to Debug.
- Save and close the modified .config file.
The trace files are saved to the .log files in the application installation folder:
- For Kaspersky Security Integration Tool for MSP the file is IntegrationUI.log, by default saved to the C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Tool for MSP folder.
- For Kaspersky Security Integration Service for MSP the file is IntegrationServer.log, by default stored in the C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Service for MSP folder.
When you uninstall Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP, the trace files are removed together with the application.
Reporting
This section describes how to create different types of reports for managed Kaspersky Security Center virtual servers or Kaspersky Business Hub companies in Autotask.
Service report
You can create a regular service report for a representative of a managed company. This report includes statistics on protection services provided to the client. You can view this report for the last 30 days and the last 7 days. Kaspersky Security Integration with Autotask updates statistics daily.
A report can be built for a particular managed company linked to Kaspersky Security Center virtual server or Kaspersky Business Hub company, by using the standard Autotask LiveReports Designer.
A generated report includes statistics on tickets processed during the report period and on the state of managed computers in the customers’ infrastructure.
A service report includes the following data:
- Report period—Either 7 days or 30 days.
- Report starting date
- Report ending date
- Managed computers—Number of computers of the managed company that are connected to the Kaspersky Security Center virtual server or Kaspersky Business Hub company.
- Protected computers—Number of computers on which a real-time protection application is installed.
- New critical tickets—Number of tickets based on critical events or computer statuses that were created by Kaspersky Security Integration with Autotask during the report period (regardless of whether or not these tickets were closed during the report period). Tickets based on events are created according to the rules that you set as described in Ticketing for events. Tickets based on computer statuses are created according to the rules that you set as described in Ticketing for computer statuses.
- Closed critical tickets—Number of tickets based on critical events or computer statuses that were resolved and closed by Kaspersky Security Integration with Autotask during the report period (regardless of whether or not these tickets were created during the report period).
- New warning tickets—Number of tickets based on warning events or computer statuses that were created by Kaspersky Security Integration with Autotask during the report period (regardless of whether or not these tickets were closed during the report period).
- Closed warning tickets—Number of tickets based on warning events or computer statuses that were resolved and closed by Kaspersky Security Integration with Autotask during the reporting period (regardless of whether or not these tickets were created during the report period).
- New functional failure tickets—Number of tickets based on functional failure events that were created by Kaspersky Security Integration with Autotask during the reporting period (regardless of whether or not these tickets were closed during the report period).
- Closed functional failure tickets—Number of tickets for functional failure events that were resolved and closed by Kaspersky Security Integration with Autotask during the report period (regardless of whether or not these tickets were created during the report period).
- Problem computers—Number of computers whose status is other than OK at the moment the configuration item is created.
License report
You can create a license report for a client company to provide information about keys for the Kaspersky Lab security applications, including key usage and availability.
A license report includes the following data for each key:
- Report date—Last update date of the configuration item.
- License ID
- Security application name
- License period
- License expiration date
- License restriction—Number of computers to which the key can be assigned.
- Number of company's computers using the license—Number of computers to which the key is assigned. These computers belong to the selected client company.
- Total number of computers using the license—Number of computers to which the key is assigned. These computers belong to all client companies of the MSP or to the MSP itself.
- Key is more than 90% used—If the total number of computers that use the key divided by the license restriction is greater than 0.9, the value is Yes. Otherwise, the value is No.
- Key exceeded restriction—If the total number of computers that use the key divided by the license restriction is greater than 1, the value is Yes. Otherwise, the value is No.
- License information—Additional information about the key.
- Support information—Information about Technical Support contacts.
Generating a report in Autotask
A service report is provided in Autotask as configuration items of a special Kaspersky report type. A license report is represented as configuration items of the Kaspersky license report type.These items are also linked to accounts according to the mapping to companies or virtual servers.
To generate a report for a managed company in Autotask:
- Point to the Autotask logo (
), point to Reports, and then click LiveReports Designer. - Point to the Create a New Report (
) button, and then click Express Report. - On the Name tab that opens, enter the report name and select the folder that you want to save the report to.
- Select the Categories tab, expand CRM - Configuration Item, click *Configuration Item, and then click the Add (
) button. - Select the Filters tab, and then add the following filters by selecting each filter name in the list and clicking the Add () button:
- Account—In the drop-down list to the right of Equal To, select the managed company for which you want to view the report.
- Configuration Item Type—In the drop-down list to the right of Equal To, select Kaspersky report for a service report or Kaspersky license report for a license report.
- Click the Layout tab, and then add the required user-defined fields. Their names start with UDF Kaspersky.
- If you want the report to display additional information, add other filters. For more details, refer to the Autotask documentation at https://ww2.autotask.net/Help/Content/Reporting/LiveReports/AddLiveReport/CreateLiveReport.htm.
- Click the Save & Close (
) button to save the report. - In the reports tree on the left, right-click the created report, and then select Run report.
- Export the report to print it or send the report by email to your client.
You can export the report to a Microsoft Excel spreadsheet, a PDF file, an RTF file, or a CSV file.
User-defined fields in Autotask
Kaspersky Security Integration with Autotask provides easy access to valuable integration-specific information on Autotask accounts directly from the Autotask graphical user interface (GUI). You can view this information on each Autotask account page in the User-defined fields section and use this information in Autotask reports.
The following user-defined fields are available for the Autotask accounts:
- If you use Kaspersky Security Center
- Kaspersky virtual server—Name of the virtual server mapped to this account in Kaspersky Security Integration Tool for MSP.
- If you use Kaspersky Business Hub:
- Kaspersky workspace—Name of the Kaspersky Business Hub company mapped to this account in Kaspersky Security Integration Tool for MSP.
- Kaspersky workspace URL—Link to open your Kaspersky Business Hub company in Autotask account page.
If you accidentally deleted the User-defined fields section created by the integration, you can restore it by using the following workaround. However, this workaround works only the first time you save changes in parameter values after Kaspersky Security Integration Tool for MSP starts.
To restore the User-defined fields section:
- Start or restart Kaspersky Security Integration Tool for MSP.
- Change the value for any parameter on any tab (Accounts, Ticketing, or Services) to activate the Save changes button.
- Click the Save changes button.
The User-defined fields section is displayed after you save changes to your Integration.
- Set the parameter that you changed in step 2 to the original value, and then save your settings.
The User-defined fields section is now available on the Autotask account page.
Glossary
Administration Server
A component of Kaspersky Security Center that centrally stores information about all Kaspersky Lab applications that are installed within the corporate network. Administration Server can also be used to manage these applications.
Administration Server client (Client computer)
A computer, server, or workstation on which Network Agent and managed Kaspersky Lab applications are running.
Anti-virus databases
Databases that contain information about computer security threats known to Kaspersky Lab as of when the anti-virus databases are released. Entries in anti-virus databases allow malicious code to be detected in scanned objects. Anti-virus databases are created by Kaspersky Lab specialists and updated hourly.
Kaspersky Business Hub company
Virtual Administration Server by Kaspersky Lab that is designed to manage a security software suite on devices connected to Kaspersky Endpoint Security Cloud and/or Kaspersky Security for Microsoft Office 365, as well as to store individual settings of Kaspersky Endpoint Security Cloud and/or Kaspersky Security for Microsoft Office 365 and the registration data of a company using any of these products.
Network Agent
A Kaspersky Security Center component that enables interaction between the Administration Server and Kaspersky Lab applications that are installed on a specific network node (workstation or server).
Virus
A program that infects other ones, by adding its code to them in order to gain control when infected files are run. This simple definition allows identifying the main action performed by any virus: infection.
Page top
Contact Technical Support
This section describes how to get technical support and the terms on which it is available.
How to get technical support
If you cannot find a solution to your issue in the Kaspersky Security Integrations for MSP documentation or in any of the sources of information about Kaspersky Security Integrations for MSP, contact Technical Support. Technical Support specialists will answer all your questions about configuring and using Kaspersky Security Integrations for MSP.
Before contacting Technical Support, please read the support rules.
You can contact Technical Support in one of the following ways:
- By visiting the Technical Support website
- By sending a request to Technical Support from the Kaspersky CompanyAccount portal
Technical Support via Kaspersky CompanyAccount
Kaspersky CompanyAccount is a portal for companies that use Kaspersky Lab applications. The Kaspersky CompanyAccount portal is designed to facilitate interaction between users and Kaspersky Lab specialists through online requests. You can use Kaspersky CompanyAccount to track the status of your online requests and store a history of them as well.
You can register all of your organization's employees under a single account on Kaspersky CompanyAccount. A single account lets you centrally manage electronic requests from registered employees to Kaspersky Lab and also manage the privileges of these employees via Kaspersky CompanyAccount.
The Kaspersky CompanyAccount portal is available in the following languages:
- English
- Spanish
- Italian
- German
- Polish
- Portuguese
- Russian
- French
- Japanese
To learn more about Kaspersky CompanyAccount, visit the Technical Support website.
Page top
AO Kaspersky Lab
Kaspersky Lab is a world-renowned vendor of systems protecting computers against digital threats, including viruses and other malware, unsolicited email (spam), and network and hacking attacks.
In 2008, Kaspersky Lab was rated among the world’s top four leading vendors of information security software solutions for end users (IDC Worldwide Endpoint Security Revenue by Vendor). Kaspersky Lab is the preferred vendor of computer protection systems for home users in Russia (IDC Endpoint Tracker 2014).
Kaspersky Lab was founded in Russia in 1997. It has since grown into an international group of companies with 38 offices in 33 countries. The company employs more than 3,000 skilled professionals.
Products. Kaspersky Lab products provide protection for all systems, from home computers to large corporate networks.
The personal product range includes security applications for desktop, laptop, and tablet computers, smartphones and other mobile devices.
The company offers protection and control solutions and technologies for workstations and mobile devices, virtual machines, file and web servers, mail gateways, and firewalls. The company's portfolio also features specialized products providing protection against DDoS attacks, protection for industrial control systems, and prevention of financial fraud. Used in conjunction with centralized management tools, these solutions ensure effective automated protection for companies and organizations of any size against computer threats. Kaspersky Lab products are certified by major test laboratories, compatible with software from diverse vendors, and optimized to run on many hardware platforms.
Kaspersky Lab virus analysts work around the clock. Every day they uncover hundreds of thousands of new computer threats, create tools to detect and disinfect them, and include their signatures in databases used by Kaspersky Lab applications.
Technologies. Many technologies that are now part and parcel of modern anti-virus tools were originally developed by Kaspersky Lab. It is no coincidence that many other developers use the Kaspersky Anti-Virus engine in their products, including: Alcatel-Lucent, Alt-N, Asus, BAE Systems, Blue Coat, Check Point, Cisco Meraki, Clearswift, D-Link, Facebook, General Dynamics, H3C, Juniper Networks, Lenovo, Microsoft, NETGEAR, Openwave Messaging, Parallels, Qualcomm, Samsung, Stormshield, Toshiba, Trustwave, Vertu, and ZyXEL. Many of the company’s innovative technologies are patented.
Achievements. Over the years, Kaspersky Lab has won hundreds of awards for its services in combating computer threats. Following tests and research conducted by the reputed Austrian test laboratory AV-Comparatives in 2014, Kaspersky Lab ranked among the top two vendors by the number of Advanced+ certificates earned and was ultimately awarded the Top Rated certificate. But Kaspersky Lab's main achievement is the loyalty of its users worldwide. The company’s products and technologies protect more than 400 million users, and its corporate clients number more than 270,000.
Kaspersky Lab website: |
|
Virus encyclopedia: |
|
Virus Lab: |
https://virusdesk.kaspersky.com (for analyzing suspicious files and websites) |
Kaspersky Lab’s web forum: |
Page top
Information about third-party code
Information about third-party code is contained in the file legal_notices.txt, in the application installation folder.
Page top
Trademark notices
Registered trademarks and service marks are the property of their respective owners.
Excel, Microsoft, and Windows are registered trademarks of Microsoft Corporation in the United States and other countries.
Page top
Kaspersky Security Integration with Tigerpaw
This section describes Kaspersky Security Plug-in for ConnectWise Automate. It contains a general description of the software and provides instructions for working with it.
Kaspersky Security Integration with Tigerpaw
This section describes the purpose, functions, and distribution kit of Kaspersky Security Integration with Tigerpaw, and provides hardware and software requirements for Kaspersky Security Integration with Tigerpaw.
About Kaspersky Security Integration with Tigerpaw
Integration is the process of bringing together components into a single system. Kaspersky Security Integration with Tigerpaw integrates Kaspersky Lab solutions (Kaspersky Security Center or Kaspersky Business Hub) and Tigerpaw to provide a combination of monitoring and management tools, such as automated billing and service order creation for client accounts. Kaspersky Security Integration with Tigerpaw integrates Tigerpaw with all cloud-based products managed by Kaspersky Business Hub: Kaspersky Endpoint Security Cloud and Kaspersky Security for Microsoft Office 365.
In terms of Kaspersky Security Integration with Tigerpaw, integration is a set of parameters and interaction rules that can be set up and configured. First, you create an integration between your Kaspersky Lab solution and Tigerpaw; then you can manage and configure your integrations, and view and edit integration parameters. When configuring an integration, you set up mapping between the entities of the Kaspersky Lab solution and Tigerpaw entities, and define rules that determine how your Kaspersky Lab solution interacts with Tigerpaw.
Kaspersky Security Integration with Tigerpaw consists of two applications: Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP (managed service providers).
- Kaspersky Security Integration Tool for MSP provides a graphical user interface (GUI) to configure integration. The tool is used to configure connection between the Kaspersky Lab solution that you use and Tigerpaw. The tool is also used to configure mapping between the Kaspersky Lab solution entities and Tigerpaw entities. Kaspersky Lab solution entities are virtual servers, if you use Kaspersky Security Center, or companies, if you use Kaspersky Business Hub. Tigerpaw entities are accounts and price book items.
- Kaspersky Security Integration Service for MSP is a Microsoft Windows service application that is installed on the computer that has Kaspersky Security Center Administration Server installed. Kaspersky Security Integration Service for MSP synchronizes data in Kaspersky Security Center and Tigerpaw. It is a service application only, with no user interface.
About data provision
Kaspersky Security Integration with Tigerpaw is designed for the integration of Kaspersky Lab solutions for administration of security applications with Tigerpaw within the framework of the functionality described in this Help document.
To use Kaspersky Security Integration with Tigerpaw, you must install the integration components and connect them to the Kaspersky Lab solution you use, create an integration with Tigerpaw, specify connection parameters and integration settings and select your customers’ virtual servers / companies for the integration.
By using the product, you agree that said product may receive data from Tigerpaw and the connected virtual servers / companies, as well as store, process, and display information that is intended for ensuring the product functionality.
By creating an integration and connecting Tigerpaw and virtual servers / companies to the product, you thus confirm that you are the sole owner of any data you provide or that you are entitled to provide any data.
Any information provided is protected and processed in accordance with the Kaspersky Lab Privacy Policy.
For the purpose of integration of Kaspersky Security Center / Kaspersky Business Hub and Tigerpaw, Kaspersky Security Integration with Tigerpaw may receive, store, and process the following types of data:
- Data required to connect to the integrated software:
- Parameters for connecting to Kaspersky Security Center Administration Server, including account credentials.
- Account credentials for connecting to Kaspersky Business Hub.
- Connection parameters for accessing Tigerpaw.
- Data about events that occur in Kaspersky Security Center, Kaspersky Endpoint Security Cloud, or Kaspersky Security for Microsoft Office 365. This data is required for automatic creation of tickets or similar entities.
- Data about assigning the Critical and Warning statuses to computers managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud. This data is required for automatic creation of tickets or similar entities.
- Data about usage of licenses for Kaspersky Lab security applications by computers managed by Kaspersky Security Center or Kaspersky Endpoint Security Cloud (the number of computers that use a certain license). This data is required for automatic generation of invoices for your customers.
- Data about the number of protected Kaspersky Security for Microsoft Office 365 mailboxes. This data is required for automatic generation of invoices for your customers.
- Data about the state of a managed Kaspersky Security Center virtual server / Kaspersky Endpoint Security Cloud workspace (the number of managed computers, the number of protected computers, the number of created and closed tickets of various types, the number of threats and malicious objects detected on the computers, the number of problematic computers, and the number of infected computers). This data is required for report generation.
- Data about licenses used at Kaspersky Security Center virtual servers / Kaspersky Endpoint Security Cloud workspaces and about attributes of these licenses. This data is required for report generation.
- Integration settings:
- Type of integrated platform (Tigerpaw).
- Integration name.
- Integration ID (for integrations with Kaspersky Business Hub).
- Date and time of integration creation.
- Set of integrated virtual servers / companies.
- List of Kaspersky Business Hub administrators (their aliases and email addresses) who are also granted administrative privileges in the integration.
- Rules for mapping objects of Kaspersky Security Center / Kaspersky Business Hub to those of Tigerpaw (virtual servers / companies to accounts and Kaspersky Lab security applications to Tigerpaw price book items).
- Rules for creating objects in Tigerpaw, such as service orders and additional charges.
If you integrate Tigerpaw with Kaspersky Business Hub, the above data (specifically, data required to connect to the integrated software and integration settings) is transferred from Kaspersky Security Integration Tool for MSP to Kaspersky Business Hub. This data is processed there and is stored according to the terms and conditions of the Privacy Policy of Kaspersky Business Hub.
If your integration includes a company for which a Kaspersky Endpoint Security Cloud workspace has been created, the data that Kaspersky Business Hub receives from Kaspersky Security Integration Tool for MSP is transferred to the Kaspersky Endpoint Security Cloud workspace. This data is processed there and is stored according to the terms and conditions of the agreements that were accepted during the workspace creation.
If your integration includes a company for which a Kaspersky Security for Microsoft Office 365 workspace has been created, the data that Kaspersky Business Hub receives from Kaspersky Security Integration Tool for MSP is transferred to the Kaspersky Security for Microsoft Office 365 workspace. This data is processed there and is stored according to the terms and conditions of the agreements that were accepted during the workspace creation.
All received data is used by the MSP administrators and technicians. Kaspersky Lab Technical Support specialists may also use the above data when an MSP administrator contacts Technical Support.
Page top
Features of Kaspersky Security Integration with Tigerpaw
Kaspersky Security Integration with Tigerpaw helps you to integrate Kaspersky Lab solutions with Tigerpaw to provide service order creation, straightforward monitoring, issue tracking, and automated billing in the customer environment.
Kaspersky Security Integration with Tigerpaw provides the following features:
- Connection
With Kaspersky Security Integration with Tigerpaw, you can connect Kaspersky Lab solutions to Tigerpaw with a few clicks to enable automated billing, service order creation, and other processes. You do not need any additional tools or consoles: you can access everything from Tigerpaw.
- Automatic service order creation
Kaspersky Security Integration with Tigerpaw simplifies multi-tenancy management by enabling automation of service order creation and workflow for each of your client accounts. You can select a Tigerpaw account of your client and map it to the corresponding virtual server / company in the Kaspersky Lab solution that you use.
The service orders are automatically created in Tigerpaw, which reduces the time you spend monitoring your managed client account and increases the number of clients that a single technician can manage. For additional resource efficiency, assign priorities and types to service orders to streamline their prioritization.
- Billing setup
Kaspersky Security Integration with Tigerpaw provides easy access to information on usage of Kaspersky Lab security applications from Tigerpaw, which significantly simplifies and automates customer billing and reporting.
- Compatibility
With Kaspersky Security Integration with Tigerpaw, it is easy to create solutions based on customer needs and requirements: Tigerpaw works with both on-premises and cloud-based Kaspersky Lab solutions. Use Kaspersky Lab cloud-based security to avoid additional overhead, or keep everything inside the perimeter and make the most of your existing hardware investment with an on-premises solution.
Page top
Distribution kit
Kaspersky Security Integration with Tigerpaw is delivered free of charge as a distribution package that contains installation files for Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP.
You can download the distribution kit from the Kaspersky Lab website.
No license is required for Kaspersky Security Integration with Tigerpaw.
Page top
Software requirements
Basic software requirements for integration setup:
- Tigerpaw 17.1 and later.
- Kaspersky Security Center Administration Server 10 Service Pack 2 Maintenance Release 1 and later, Kaspersky Endpoint Security Cloud, or Kaspersky Security for Microsoft Office 365.
Software requirements for Kaspersky Security Integration Tool for MSP:
- Microsoft Windows 7 and later.
- Microsoft .NET Framework 4.5.2.
- Kaspersky Security Center Administration Server 10 Service Pack 2 Maintenance Release 1 and later, or Kaspersky Security Center Administration Console 10 Service Pack 2 Maintenance Release 1 and later—for an on-premises solution only.
Software requirements for Kaspersky Security Integration Service for MSP:
- Supported operating systems are the same as those supported by Kaspersky Security Center 10 Service Pack 2 Maintenance Release 1 and later. Refer to Kaspersky Security Center documentation for details.
- Administration Server component of Kaspersky Security Center 10 Service Pack 2 Maintenance Release 1 and later.
- Microsoft .NET Framework 4.5.2.
Integration scenario
This section describes the overall sequence of actions that you perform to integrate your Kaspersky Lab solution (Kaspersky Security Center or Kaspersky Business Hub) with Tigerpaw by means of Kaspersky Security Integration with Tigerpaw.
- Installing Kaspersky Security Integration with Tigerpaw.
Download Kaspersky Security Integration with Tigerpaw from the Kaspersky Lab web site and install it by using a standard Windows installation procedure.
- Preparing information for setting up integration.
Check the connection settings and additional prerequisites to successfully integrate your Kaspersky Lab solution with Tigerpaw. You will have to provide these parameters in the next steps of this scenario.
- Connecting Kaspersky Security Integration with Tigerpaw to your Kaspersky Lab solution.
Provide the parameters to connect Kaspersky Security Integration with Tigerpaw to your Kaspersky Lab solution:
- For Kaspersky Security Center, provide user credentials and server parameters.
- For Kaspersky Business Hub, provide the account credentials.
- Creating integration with Tigerpaw.
Provide the parameters for the new integration with Tigerpaw that is created during initial configuration. The integration parameters are the same for Kaspersky Security Center and for Kaspersky Business Hub.
- Adding virtual servers or companies to your integration.
Select virtual servers or companies to be integrated with Tigerpaw:
- For Kaspersky Security Center, select virtual servers to be mapped to Tigerpaw accounts.
- For Kaspersky Business Hub, select companies to be mapped to Tigerpaw accounts.
- Checking integration.
After you perform step 1 through step 5, Kaspersky Security Integration with Tigerpaw will be installed and configured. To verify the installation, open the Accounts tab and make sure that your virtual servers / companies are displayed in the first column and that your Tigerpaw accounts are available for selection in the second column.
Kaspersky Security Integration Tool for MSP main window
Installing and removing Kaspersky Security Integration with Tigerpaw
Kaspersky Security Integration with Tigerpaw is delivered as a distribution package that contains two applications: Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP.
This section contains step-by-step instructions for installing and removing Kaspersky Security Integration with Tigerpaw.
Installing Kaspersky Security Integration with Tigerpaw
After you download the distribution package for Kaspersky Security Integration with Tigerpaw, install the components of Kaspersky Security Integration with Tigerpaw by using a standard Windows installation procedure.
Kaspersky Security Integration Service must be installed if you use Kaspersky Security Center. If you use Kaspersky Business Hub, you do not have to install Kaspersky Security Integration Service.
Install Kaspersky Security Integration Service for MSP on the computer on which Kaspersky Security Center Administration Server is installed. Install Kaspersky Security Integration Tool for MSP on the computer on which either Administration Console or Administration Server is installed and deployed.
Install both components of Kaspersky Security Integration with Tigerpaw—Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP—in the same manner. The steps below describe the installation process for each component.
Before you install the components of Kaspersky Security Integration with Tigerpaw, it is strongly recommended to check their digital signatures to make sure that they are issued by Kaspersky Lab.
To check the digital signature for a component of Kaspersky Security Integration with Tigerpaw:
- Locate the installation application (msp_setup.exe file) for the Kaspersky Security Integration with Tigerpaw component.
- Right-click the installation application and select Properties.
- In the properties window that opens, click the Digital Signatures tab and check that the installation application has Kaspersky Lab signatures.
- Close the properties window.
After you check the digital signatures of the Kaspersky Security Integration with Tigerpaw components, install each of the components.
You can install Kaspersky Security Integration with Tigerpaw either in interactive mode or in silent mode.
Installation in interactive mode
To install a component of Kaspersky Security Integration with Tigerpaw in interactive mode:
- On the machine where you want to install Kaspersky Security Integration with Tigerpaw, double-click the installation application (msp_setup.exe file) for the component.
- Follow the wizard steps to install the component.
- Accept the terms of the license agreement to continue installation.
- When installing Kaspersky Security Integration Tool for MSP, accept the terms of the privacy policy to continue installation.
- If required, change the installation folder for the component. The folder you select must have about 25 MB of free space to install both components of Kaspersky Security Integration with Tigerpaw.
- Click Finish on the last page of the wizard.
Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP are installed. Kaspersky Security Integration Tool for MSP is added to the Start menu.
Installation in silent mode
To install Kaspersky Security Integration Tool for MSP in silent mode:
- Read the license agreement and the privacy policy stored in license.txt file next to the installation application (msp_setup.exe file). Proceed only if you accept the terms of the license agreement and the privacy policy.
- At the command prompt, type
msp_setup.exe /s /v"EULA=1 PRIVACYPOLICY=1 INSTALLDIR=\"<installation path>\""
Here,
EULA=1means that you accept the terms of the license agreement.If you specify another value or if you do not specify this parameter, Kaspersky Security Integration Tool for MSP will not be installed.
PRIVACYPOLICY=1means that you accept the terms of the privacy policy.If you specify another value or if you do not specify this parameter, Kaspersky Security Integration Tool for MSP will not be installed.
INSTALLDIR=\"<installation path>\"is the path to the Kaspersky Security Integration Tool for MSP installation folder.If you do not specify this parameter, Kaspersky Security Integration Tool for MSP will be installed to %PROGRAMFILES%\Kaspersky Lab\Kaspersky Security Integration Tool for MSP (in 32-bit versions of Windows) or %PROGRAMFILES(x86)%\Kaspersky Lab\Kaspersky Security Integration Tool for MSP (in 64-bit versions of Windows).
Kaspersky Security Integration Tool for MSP is installed and is added to the Start menu.
To install Kaspersky Security Integration Service for MSP in silent mode:
- Read the license agreement stored in license.txt file next to the installation application (msp_setup.exe file). Proceed only if you accept the terms of the license agreement.
- At the command prompt, type
msp_setup.exe /s /v"EULA=1 INSTALLDIR=\"<installation path>\""
Here,
EULA=1means that you accept the terms of the license agreement.If you specify another value or if you do not specify this parameter, Kaspersky Security Integration Service for MSP will not be installed.
INSTALLDIR=\"<installation path>\"is the path to the Kaspersky Security Integration Service for MSP installation folder.If you do not specify this parameter, Kaspersky Security Integration Service for MSP will be installed to %PROGRAMFILES%\Kaspersky Lab\Kaspersky Security Integration Service for MSP (in 32-bit versions of Windows) or to %PROGRAMFILES(x86)%\Kaspersky Lab\Kaspersky Security Integration Service for MSP (in 64-bit versions of Windows).
Kaspersky Security Integration Service for MSP is installed.
Known issue
Kaspersky Security Integration Service for MSP cannot connect to Tigerpaw if Kaspersky Security Center and Kaspersky Security Integration Service for MSP are deployed in the client's network instead of the managed service provider's network, and there is an authentication proxy server between Kaspersky Security Integration Service for MSP and Tigerpaw.
To enable Kaspersky Security Integration Service for MSP to connect to Tigerpaw over the Internet through the proxy with authentication:
- Launch the Services Microsoft Management Console snap-in by selecting Start → Control panel → Administrative Tools → Services.
- Right-click Kaspersky Security Integration Service for MSP and select Properties.
- In the service properties window that opens, click the Log On tab and specify the following settings:
- In the Log on as section, select the This account option.
- Specify the account credentials for connection to the Internet by Kaspersky Security Integration Service for MSP.
- Click OK in the service properties window to save your changes.
Removing Kaspersky Security Integration with Tigerpaw
You can remove the components of Kaspersky Security Integration with Tigerpaw by using a standard Windows installation / uninstallation procedure.
To remove a component of Kaspersky Security Integration with Tigerpaw:
- On the Start menu, select Control Panel and then click Programs and Features.
- In the list of installed programs, select Kaspersky Security Integration Tool for MSP or Kaspersky Security Integration Service for MSP.
- Right-click the selected application and select Uninstall.
The selected application is removed. Repeat these steps for the other component of Kaspersky Security Integration with Tigerpaw.
As an alternative, you can remove the components of Kaspersky Security Integration with Tigerpaw in silent mode.
To remove Kaspersky Security Integration Tool for MSP in silent mode:
Run Command Prompt as an administrator and type
msiexec.exe /x {E58E13CA-6745-4C60-BE0B-FE6DD416FCB0} REBOOT=ReallySuppress /qn /l*v %temp%\msp_service_uninstall_log.txt
To remove Kaspersky Security Integration Service for MSP in silent mode:
Run Command Prompt as an administrator and type
msiexec.exe /x {7EF14DEE-606A-4147-94FD-3FB0E1FA9D69} REBOOT=ReallySuppress /qn /l*v %temp%\msp_tool_uninstall_log.txt
Removing user.config file
When you uninstall Kaspersky Security Integration Tool for MSP, the user.config files are not removed. These files are automatically created for every user who has ever connected to a Kaspersky Lab solution (either on-premises or Cloud) using Kaspersky Security Integration Tool for MSP. The user.config files contain encrypted information about the user's connection settings for Kaspersky Security Center or Kaspersky Business Hub.
If necessary, you can manually remove the user.config file for every user. The user.config file is stored in the AppData folder of a user.
For example, for Windows 7 and Administrator user, the path to the user.config files is as follows: C:\Users\Administrator\AppData\Local\AO_Kaspersky_Lab\IntegrationUI.exe_Url_nrmo2y4axdcnfumknnua4kzhxvafmxmb\1.0.0.0\user.config.
Page top
Interface of Kaspersky Security Integration with Tigerpaw
Kaspersky Security Integration with Tigerpaw consists of two applications: Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP.
- Kaspersky Security Integration Tool for MSP provides a graphical user interface to configure integration.
- Kaspersky Security Integration Service for MSP is a service application for Microsoft Windows that synchronizes data in Kaspersky Security Center and Tigerpaw. It does not have a user interface.
Kaspersky Security Integration Tool for MSP consists of one window with several nested tabs. Depending on the type of Kaspersky Lab solution that you use—on-premises or cloud-based—Kaspersky Security Integration Tool for MSP may have three or four nested tabs. On these tabs, you can configure mapping between the Kaspersky Lab solution entities, such as virtual servers / companies and security applications, and Tigerpaw entities, such as accounts and price book items. You can also configure service order creation, and if you use the cloud-based version of the solution you can manage administrators who can configure the integration.
Kaspersky Security Integration Tool for MSP main window
The Kaspersky Security Integration Tool for MSP window has the following tabs:
- Accounts—Use this tab to set up and modify mapping between company accounts in Tigerpaw and virtual servers or companies in your Kaspersky Lab solution, and to add or remove virtual servers or companies to your integration. On the Accounts tab, you can also enable automatic billing.
- Service orders—Use this tab to set up service order creation rules for enabling automatic creation and assignment of service orders in Tigerpaw. You can configure creation and assignment of service orders depending on the event severity and type, or when a computer status changes in Kaspersky Lab security applications.
Creation of service orders is one of the most important features of your integration. If you do not configure service order creation, Tigerpaw cannot generate service orders on the basis of events and computer status changes and cannot process corresponding issues.
- Price book items—Use this tab to set up mapping between Tigerpaw price book items and Kaspersky Lab security applications so that usage information about Kaspersky Lab security applications appears in Tigerpaw. You can modify the existing mapping of price book items and security applications as well.
- Administrators—This tab is available for cloud-based solutions only. Use this tab to manage the administrators related to the integration with Kaspersky Business Hub. You can add existing Kaspersky Business Hub administrators to your integration or remove administrators from the integration if you do not want them to configure the integration.
Getting started
After you install Kaspersky Security Integration with Tigerpaw, you establish a connection between it and Tigerpaw. The connection enables you to configure integration using Kaspersky Security Integration Tool for MSP and enables Kaspersky Security Integration Service for MSP to send Service Orders and license usage information to Tigerpaw. To establish connection, create a new integration using Kaspersky Security Integration Tool for MSP.
The integration process varies depending on which Kaspersky Lab solution you use. This section describes how to configure integration with Kaspersky Security Center and with Kaspersky Business Hub.
Prerequisites
When configuring integration, you must specify the parameters of the Kaspersky Lab solution you integrate with (Kaspersky Security Center or Kaspersky Business Hub) and Tigerpaw connection parameters. It is recommended that you check these parameters in advance in order to prepare for setting up integration.
Kaspersky Security Center parameters
Check the following parameters:
- Address of the computer on which Kaspersky Security Center Administration Server is installed.
- Credentials: user name and password for the computer on which Administration Server is installed.
- If you establish connection to the Administration Server through a proxy server, check the proxy server parameters: network address or domain name and credentials for the proxy server.
Kaspersky Business Hub parameters
Check the credentials of your Kaspersky Business Hub account: email address and password.
Tigerpaw parameters
To set up connection with Tigerpaw, you must provide Tigerpaw API connection parameters.
Kaspersky Security Integration with Tigerpaw uses the ASMX and REST APIs of Tigerpaw, and so you must specify both sets of connection parameters in Kaspersky Security Integration Tool for MSP. These parameters are used by Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP to access Tigerpaw and to set up and synchronize integration data between your Kaspersky Lab solution and Tigerpaw. This is data such as accounts, service orders, agreements, price book items, and additional charge.
The following sections describe how to perform the setup:
Additional prerequisites
During the integration process, it is required to add virtual servers or companies to your integration. These virtual servers or companies are then mapped to Tigerpaw accounts.
For each client company represented by an account in Tigerpaw, create and assign a separate Kaspersky Security Center virtual server / Kaspersky Business Hub company prior to integration.
One-to-one mapping is supported and therefore the number of virtual servers or companies must not exceed the number of your managed accounts.
Page top
Configuring ASMX API connection parameters
This section describes how to create a new ASMX API user. This API user is used by the integration to access Tigerpaw ASMX API.
To create a new ASMX API user:
- Install the Tigerpaw API Users utility. For detailed instructions, refer to Tigerpaw documentation.
- In Tigerpaw, add an external product for Kaspersky Security Integration with Tigerpaw:
- On the main menu, select Edit → Master Tables.
- In the Table Maintenance window that opens, expand Account → External Products.
- Click New on the toolbar.
- Specify the name of the external product for Kaspersky Security Integration with Tigerpaw, and click OK.
- Start the tsiWS Users.exe utility (by default, it is located in the following folder: C:\Program Files (x86)\Tigerpaw Software\Tigerpaw API Tools).
- In tsiWS Users.exe, create the API user for your integration:
- Specify the Name and Password. You will need these settings later when, establishing connection with Tigerpaw, you specify the SOAP user name and password in Kaspersky Security Integration Tool for MSP.
- Make sure that the Active and Allow user to list accounts via API check boxes are selected.
- In the Product drop-down list, select the external product you created in step 2.
For more details about how to configure API users, refer to the Tigerpaw documentation.
After you perform the steps above, the user is added and will be displayed in the table. Use this user name and password as the SOAP user name and password when you provide the integration settings.
Configuring REST API connection parameters
This section describes how to obtain the API public key and API private key for the REST API. Public and private keys are displayed in the rep properties screen in Tigerpaw. Rep records identify users in Tigerpaw. You can either create a new API rep or select an existing one for your integration.
To obtain REST API public and private keys:
- Start Tigerpaw.
- On the Tigerpaw main menu select Edit → Master Tables.
- In the Table Maintenance window that opens, in the tree view expand Rep → Account Reps.
- Select an existing account rep for your integration or create a new one.
For more details about rep records, refer to the Tigerpaw documentation.
The security role of the rep account that you select for your integration must provide enough rights to access all required Tigerpaw items. The items are:
- Accounts (get, update).
- Recurring agreements (get, create, update).
- Master tables (get, create, update).
- Price book items (get).
- Service orders (get, create, update)
- Custom folders and fields (get, create, update).
- View the properties of an existing account rep by double-clicking it in Rep Name column of the table, or create a new account rep for the REST API by clicking New on the toolbar in the Table Maintenance window.
- In the Account Rep Maintenance window that opens, click the Admin tab and in the REST API Security section view the public and private keys of the existing account rep or click the Generate button to create the public and private keys for a new account rep.
- Make a note of the public and private keys or copy them to the Clipboard. You will have to specify these keys when you configure integration with Tigerpaw.
Integrating with Kaspersky Security Center
This section describes how to create and configure integration between Tigerpaw and Kaspersky Security Center by using Kaspersky Security Integration Tool for MSP.
To successfully create integration, connect to Kaspersky Security Center Administration Server and perform the steps described in the following sections.
Connecting to Kaspersky Security Center Administration Server
When you start Kaspersky Security Integration Tool for MSP, the connection settings window opens. In this window, specify the settings to connect to Kaspersky Security Center Administration Server.
Connecting to Kaspersky Security Center Administration Server
To connect to Kaspersky Security Center Administration Server:
- In the Start menu, select Kaspersky Security Integration Tool for MSP.
- In the window that opens, select the Kaspersky Endpoint Security for Business solution to connect to Kaspersky Security Center Administration Server.
- You can connect to Kaspersky Security Center Administration Server in one of the following ways:
- By providing the connection parameters for the computer on which the Administration Server is installed.
If you selected this method of connection, specify the following connection settings. None of the fields can be blank.
- Address—Address of the computer on which the Administration Server is installed. You can specify this value as an IP address or as a domain name of the computer.
- User name—User name to connect to the computer on which the Administration Server is installed, that is, to the computer whose address you specified in the Address field.
- Password—Password to connect to the computer, on which the Administration Server is installed, that is, to the computer whose address you specified in the Address field.
- By selecting the Administration Server certificate.
In this case, you do not have to provide the connection parameters for the computer on which the Administration Server is installed. Kaspersky Security Integration Tool for MSP uses the certificate of Kaspersky Security Center Administration Server to connect to this Administration Server. Usage of the certificate guarantees that Kaspersky Security Integration Tool for MSP connects to the Administration Server from which the certificate was downloaded.
The Administration Server certificate is created automatically during installation of the Administration Server and is stored in the %ProgramData%\Application Data\KasperskyLab\adminkit\1093\cert folder on the computer that has Administration Server installed. Before starting to use the Administration Server certificate for authentication, copy the certificate file, klserver.cer, to the computer on which Kaspersky Security Integration Tool for MSP is installed.
- By providing the connection parameters for the computer on which the Administration Server is installed.
To use Administration Server certificate:
- Click the Select Kaspersky Security Center Administration Server certificate link.
- In the window that opens, select the Use a certificate check box, click Browse, and then navigate to the certificate file.
- Click OK to start using the selected certificate for connection.
- If you want to establish the connection to the Administration Server through a proxy server, select the Use proxy server check box. By default, this check box is cleared.
If you selected the Use proxy server check box, provide the following proxy-server settings:
- Address—Network address of the proxy server. Provide the address as a full domain name of the proxy server.
- User name—User name to connect to the proxy server.
- Password—Password to connect to the proxy server.
- Click the Proceed button to connect to the Administration Server using the specified settings.
The system validates the provided settings and connects to the Administration Server.
Creating a Kaspersky Security Center integration with Tigerpaw
After you connect to the Administration Server, the integration settings window opens, where you can create an integration between Tigerpaw and Kaspersky Security Center by means of Kaspersky Security Integration Tool for MSP.
Creation of an integration between Tigerpaw and Kaspersky Security Center is required only when you launch Kaspersky Security Integration Tool for MSP for the first time.
Specifying Tigerpaw integration settings
To create integration with Tigerpaw:
- In the integration settings window that opens after you connect to the Administration Server, specify the following settings for the newly created integration:
- Select platform—Select the integration platform from the drop-down list. The list contains the names of all platforms that Kaspersky Security Center can be integrated with. For integration with Tigerpaw, select Tigerpaw.
- Integration name—Name of the new integration. This field cannot be blank. By default, the integration name is Integration with Tigerpaw. The integration name is displayed in the Kaspersky Security Integration Tool for MSP window as a link that allows you to view and access the integration properties.
For an integration with Kaspersky Business Hub, click the View integration ID link under the integration name to view the identifier of the integration. You may have to provide this ID to Kaspersky Lab Technical Support for diagnostics and troubleshooting.
- Server—Address of the computer on which the Tigerpaw server is installed. This field cannot be blank.
- SOAP user name—ASMX API user name that you created for your integration. This field cannot be blank.
- SOAP password—Password for the ASMX API user that you created for your integration. This field cannot be blank.
For details about how to obtain the ASMX API user name and password, see Configuring ASMX API connection parameters.
- Rest public key—Public key generated by Tigerpaw for the rep account that you use for your integration. This field cannot be blank.
- Rest private key—Private key generated by Tigerpaw for the rep account that you use for your integration. This field cannot be blank.
Tigerpaw generates both public and private keys. For details about how to generate the keys, see Configuring REST API connection parameters.
- Click the Proceed button when you have finished specifying the integration settings.
These settings are saved and then used by Kaspersky Security Integration with Tigerpaw to gain access to Tigerpaw items.
Kaspersky Security Center is now integrated with Tigerpaw.
Adding virtual servers to the integration
After an integration with Tigerpaw is created, a window opens where you can add Kaspersky Security Center virtual servers to the integration. Kaspersky Security Center virtual servers are then mapped to the Tigerpaw accounts.
Adding virtual servers to the integration
To add Kaspersky Security Center virtual servers to the integration:
- In the window, which lists Kaspersky Security Center virtual servers, select the check boxes next to the existing virtual servers to add them to the integration.
If you want to add all virtual servers to the integration, select the Select all check box.
- Click Proceed.
You will now be able to map these virtual servers to Tigerpaw accounts.
Each virtual server can be added to one integration only. That is, if a virtual server is added to an integration, it is not displayed in a list of virtual servers available for another integration.
Integrating with Kaspersky Business Hub
This section describes how to create and configure integration between Tigerpaw and Kaspersky Business Hub by means of Kaspersky Security Integration Tool for MSP.
To successfully create integration, connect to Kaspersky Business Hub and perform the steps described in the following sections.
Connecting to Kaspersky Business Hub
When you start Kaspersky Security Integration Tool for MSP, the connection settings window opens. In this window, specify the settings to connect to Kaspersky Business Hub.
Connecting to Kaspersky Business Hub
To connect to Kaspersky Business Hub:
- In the Start menu, select Kaspersky Security Integration Tool for MSP.
- In the window that opens, select the Kaspersky Business Hub solution.
- Specify the following connection settings:
- User name—Email address that you use to connect to Kaspersky Business Hub. This field cannot be blank.
- Password—Password that you use to connect to Kaspersky Business Hub. This field cannot be blank.
- Click the Proceed button to connect to Kaspersky Business Hub by using the specified settings.
The system validates the provided settings and establishes connection to Kaspersky Business Hub.
Creating a Kaspersky Business Hub integration with Tigerpaw
After you connect to the Kaspersky Business Hub, the integration settings window opens, where you can create an integration between Tigerpaw and Kaspersky Business Hub by means of Kaspersky Security Integration Tool for MSP.
Creation of an integration between Tigerpaw and Kaspersky Business Hub is required only when you launch Kaspersky Security Integration Tool for MSP for the first time.
Specifying Tigerpaw integration settings
To create integration with Tigerpaw:
- In the integration settings window that opens after you connect to Kaspersky Business Hub, specify the following settings for the newly created integration:
- Select platform—Select the integration platform from the drop-down list. The list contains the names of all platforms that Kaspersky Business Hub can be integrated with. For integration with Tigerpaw, select Tigerpaw.
- Integration name—Name of the new integration. This field cannot be blank. By default, the integration name is Integration with Tigerpaw. The integration name is displayed in the Kaspersky Security Integration Tool for MSP window as a link that allows you to view and access the integration properties.
For an integration with Kaspersky Business Hub, click the View integration ID link under the integration name to view the identifier of the integration. You may have to provide this ID to Kaspersky Lab Technical Support for diagnostics and troubleshooting.
- Server—Address of the computer on which the Tigerpaw server is installed. This field cannot be blank.
- SOAP user name—ASMX API user name that you created for your integration. This field cannot be blank.
- SOAP password—Password for the ASMX API user that you created for your integration. This field cannot be blank.
For details about how to obtain the ASMX API user name and password, see Configuring ASMX API connection parameters.
- Rest public key—Public key generated by Tigerpaw for the rep account that you use for your integration. This field cannot be blank.
- Rest private key—Private key generated by Tigerpaw for the rep account that you use for your integration. This field cannot be blank.
Tigerpaw generates both public and private keys. For details about how to generate the keys, see Configuring REST API connection parameters.
- Click the Proceed button when you have finished specifying the integration settings.
These settings are saved and then used by Kaspersky Security Integration with Tigerpaw to gain access to Tigerpaw items.
Kaspersky Business Hub is now integrated with Tigerpaw.
Adding Kaspersky Business Hub companies to the integration
After an integration with Tigerpaw is created, a window opens where you can add Kaspersky Business Hub companies to the integration. Kaspersky Business Hub companies are then mapped to the Tigerpaw accounts.
You cannot add separate Kaspersky Endpoint Security Cloud workspaces or Kaspersky Security for Microsoft Office 365 workspaces to the integration. You can add only entire Kaspersky Business Hub companies. All workspaces created for a company in Kaspersky Business Hub are added to the integration.
Adding companies to the integration
To add Kaspersky Business Hub companies to the integration:
- In the window, which lists Kaspersky Business Hub companies, select the check boxes next to the existing companies to add them to the integration. Icons next to the name of each company show which workspaces are created for this company in Kaspersky Business Hub.
If you want to add all companies to the integration, select the Select all check box.
- Click Proceed.
You will now be able to map these companies to Tigerpaw accounts.
Each Kaspersky Business Hub company can be added to one integration only. That is, if a company is added to an integration, it is not displayed in a list of companies available for another integration.
Supplementary parameter
The parameter that indicates the type of Kaspersky Business Hub server to which Kaspersky Security Integration Tool for MSP connects may be included in the .config file (IntegrationUI.exe.config) of Kaspersky Security Integration Tool for MSP.
The parameter name is KESCloudServer; and its possible values are:
- production—Kaspersky Security Integration Tool for MSP works with the Production server.
- beta—Kaspersky Security Integration Tool for MSP works with the Beta server.
- test—Kaspersky Security Integration Tool for MSP works with the Test server.
You are strongly urged not to modify the KESCloudServer parameter unless you receive clear instructions from Kaspersky Lab.
The IntegrationUI.exe.config file is stored in the installation folder of Kaspersky Security Integration Tool for MSP. The default path is C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Tool for MSP\IntegrationUI.exe.config.
By default, the KESCloudServer parameter is not displayed in the .config file of Kaspersky Security Integration Tool for MSP.
The KESCloudServer parameter can be specified as follows:
<appSettings>
<add key="KESCloudServer" value="production" />
</appSettings>
Managing integrations
This section describes how to edit or delete an existing integration and how to create a new integration. For example, you may have to edit, delete, or create an integration when you change the vendor of your Professional Services Automation system.
Creating a new integration
You can create a new integration in the Kaspersky Security Integration Tool for MSP window.
Creating a new integration
To create a new integration with Tigerpaw:
- At the top of the Kaspersky Security Integration Tool for MSP window, click the name of the current integration.
- In the Integration Settings window that opens, click the New integration button.
A new Integration Settings window opens. The fields for the connection settings are blank.
- Specify the values for the following settings of the integration:
- Platform—Select the integration platform from the drop-down list. The list contains the names of all platforms that Kaspersky Security Center or Kaspersky Business Hub can be integrated with. For integration with Tigerpaw, select Tigerpaw.
- Integration name—Name of the new integration. This field cannot be blank. By default, the integration name is Integration with Tigerpaw. The integration name is displayed in the Kaspersky Security Integration Tool for MSP window as a link that allows you to view and access the integration properties.
For an integration with Kaspersky Business Hub, click the View integration ID link under the integration name to view the identifier of the integration. You may have to provide this ID to Kaspersky Lab Technical Support for diagnostics and troubleshooting.
- Server—Address of the computer on which the Tigerpaw server is installed. This field cannot be blank.
- SOAP user name—ASMX API user name that you created for your integration. This field cannot be blank.
- SOAP password—Password for the ASMX API user that you created for your integration. This field cannot be blank.
For details about how to obtain the ASMX API user name and password, see Configuring ASMX API connection parameters.
- Rest public key—Public key generated by Tigerpaw for the rep account that you use for your integration. This field cannot be blank.
- Rest private key—Private key generated by Tigerpaw for the rep account that you use for your integration. This field cannot be blank.
Tigerpaw generates both public and private keys. For details about how to generate the keys, see Configuring REST API connection parameters.
- Click OK when you have finished specifying the integration settings.
The settings are saved and then used by Kaspersky Security Integration with Tigerpaw to gain access to Tigerpaw.
A new integration with Tigerpaw is created.
Page top
Editing and viewing an existing integration
You can view and edit settings of an existing integration in the Kaspersky Security Integration Tool for MSP window.
Editing an integration
To view and edit integration with Tigerpaw:
- At the top of the window, click the name of the integration whose settings you want to view or modify.
- In the Integration Settings window that opens, in the Select integration drop-down list select the required integration.
- Modify the following settings of the selected integration:
- Integration name—Name of the selected integration. By default, the integration name is Integration with Tigerpaw. You can edit this field, however, it cannot be blank.
For an integration with Kaspersky Business Hub, click the View integration ID link under the integration name to view the identifier of the integration. You may have to provide this ID to Kaspersky Lab Technical Support for diagnostics and troubleshooting.
- Server—Address of the computer on which the Tigerpaw server is installed. This field cannot be blank.
- SOAP user name—ASMX API user name that you created for your integration. This field cannot be blank.
- SOAP password—Password for the ASMX API user that you created for your integration. This field cannot be blank.
For details about how to obtain the ASMX API user name and password, see Configuring ASMX API connection parameters.
- Rest public key—Public key generated by Tigerpaw for the rep account that you use for your integration. This field cannot be blank.
- Rest private key—Private key generated by Tigerpaw for the rep account that you use for your integration. This field cannot be blank.
Tigerpaw generates both public and private keys. For details about how to generate the keys, see Configuring REST API connection parameters.
- Integration name—Name of the selected integration. By default, the integration name is Integration with Tigerpaw. You can edit this field, however, it cannot be blank.
- Click OK when you have finished editing the integration settings.
The settings are saved and then used by Kaspersky Security Integration with Tigerpaw to gain access to Tigerpaw.
The integration with Tigerpaw is modified and saved.
Page top
Deleting an existing integration
You can delete an existing integration in the Kaspersky Security Integration Tool for MSP window.
When you delete an integration, all virtual servers or companies that were linked to the integration are unbound from the integration but continue to exist in Kaspersky Security Center or Kaspersky Business Hub. All administrators of the deleted integration receive notifications that the integration was deleted, but they can continue to administer Kaspersky Business Hub companies that were linked to this integration.
All Kaspersky Security Center virtual servers or Kaspersky Business Hub companies that are unbound from the deleted integration can be added to other integrations.
To delete integration with Tigerpaw:
- At the top of the Kaspersky Security Integration Tool for MSP window, click the name of the integration that you want to delete.
- In the integration window that opens, click Delete to delete the integration.
- Click Yes to confirm deletion.
The integration settings are cleared, indicating that the integration is deleted.
Configuring integration in Kaspersky Security Integration with Tigerpaw
The purpose of Kaspersky Security Integration Tool for MSP is to configure integration between Tigerpaw and the Kaspersky Lab solution you use: Kaspersky Security Center or Kaspersky Business Hub.
Using Kaspersky Security Integration Tool for MSP, you can do the following:
- Map Tigerpaw accounts to Kaspersky Security Center virtual servers or Kaspersky Business Hub companies.
- Configure service order creation in Tigerpaw.
- Map Kaspersky Lab security applications to existing Tigerpaw price book items.
- Configure automated billing.
Mapping accounts and enabling automatic billing
Use the Accounts tab in the Kaspersky Security Integration Tool for MSP window to set up and modify mapping between accounts in Tigerpaw and virtual servers or companies in your Kaspersky Lab solution. To set up mapping, accounts must be created in Tigerpaw, while virtual servers must be added to Kaspersky Security Center Administration Server or companies must be created in Kaspersky Business Hub.
On the Accounts tab, you can also enable automatic billing for your Tigerpaw accounts. This means that information about the number of licenses for Kaspersky Lab security applications provided during the current billing period can be updated regularly and automatically in Tigerpaw. Timely updating lets you prepare customer invoices more quickly and easily.
When you click the Accounts tab, a list is displayed, showing virtual servers or companies and their corresponding Tigerpaw accounts. You can add existing virtual servers or companies to the integration and map Tigerpaw accounts to them. You can also delete mapping between a virtual server or company and its corresponding account. In this case, neither the virtual server / company nor the account is deleted; instead, the link between them is broken.
Mapping accounts and enabling automatic billing
The following sections explain how to add or remove virtual servers or companies to / from the integration and how to configure automatic billing.
Adding and removing virtual servers or companies
You can add existing virtual servers or companies to the integration or remove them from the integration.
To add or remove virtual servers or companies to / from the integration:
- In the Kaspersky Security Integration Tool for MSP window, click the Companies tab.
- Click the Add / remove virtual servers link if you use Kaspersky Security Center, or the Add / remove companies link if you use Kaspersky Business Hub, and then do one of the following:
- Select check boxes next to existing virtual servers or companies to add them to the integration. Then you can match these virtual servers or companies to Tigerpaw accounts.
- Clear check boxes next to virtual servers or companies to remove them from the integration. This action does not remove the virtual servers from Kaspersky Security Center or companies from Kaspersky Business Hub; it only deletes the mapping between the virtual servers or companies and the Tigerpaw accounts.
- Click OK.
Each virtual server or company can be added to one integration only. That is, if a virtual server or a company is added to an integration, it is not displayed in a list of virtual servers or companies available for another integration.
Setting up automatic billing
You can map virtual servers or companies to Tigerpaw accounts and configure automatic billing for the selected accounts.
To set up mapping between virtual servers or companies and Tigerpaw accounts, and edit billing settings:
- In the Kaspersky Security Integration Tool for MSP window, click the Accounts tab.
- In the Virtual server column (if you use Kaspersky Security Center) or in the Company column (if you use Kaspersky Business Hub), locate the virtual servers or companies to which to map the Tigerpaw account.
If you have a long list of virtual servers or companies, use the search box located above the table, on the right, to find the required virtual server or company. Type any part of the virtual server or company name in the search box and click the Search button. Only the virtual servers or companies whose names contain the string you entered are displayed.
- In the Tigerpaw account column, click the drop-down arrow and select the account that you want to map to the virtual server or company.
One-to-one mapping is supported. You can map one virtual server or one company to a single Tigerpaw account.
- Turn automatic billing on or off for the Tigerpaw account by using the toggle button in the Billing settings column.
To use automatic billing, you must set up mapping between Kaspersky Lab security applications and their Tigerpaw equivalents—price book items. For details, see Mapping Tigerpaw price book items to security applications.
The Tigerpaw account, for which automatic billing is enabled, must be cross-referenced to the External Product associated with the API User credentials that you provided for the integration. For details, see the "Assign External Products to an Account" section in Tigerpaw online Help.
- Click the Select agreement drop-down arrow in the Billing settings column and select one of the available agreements associated with the account you selected in the Tigerpaw account column. Each agreement in the list has agreement number and start date.
A recurring agreement must exist for the account in Tigerpaw in order for automatic billing to be set up successfully. Recurring agreements for accounts are created and managed in Tigerpaw. For more details refer to Tigerpaw documentation.
- Click the Select price level drop-down arrow in the Billing settings column and select the appropriate price level for the client’s account. Price levels simplify support of multiple standard prices. For example, you may define one price level for standard price-list price, and another price level with a discount for special customers. The price level selected for the account is used by Kaspersky Security Integration Service for MSP when automatically setting up an additional charge price. This price is used when the client is billed for using Kaspersky Lab security applications. For details on price levels, refer to Tigerpaw documentation.
For details on automatic billing, refer to section How automatic billing works.
- If necessary, repeat steps 2 to 6 for each pair: virtual server-account or company-account.
- Click the Save changes button to save your mapping.
After the accounts are mapped to the virtual servers or companies and automatic billing is configured, the additional charges for usage of licensed Kaspersky Lab security applications are automatically created for these accounts in Tigerpaw. These additional charges are created for the specified agreements with price levels corresponding to the accounts.
How automatic billing works
You can configure automatic billing to enable Kaspersky Security Integration with Tigerpaw to create, and update daily, the Additional Charges for the Agreements associated with Tigerpaw accounts. When automatic billing is configured, information about usage of Kaspersky Lab security applications on managed computers is transferred to Tigerpaw automatically, allowing faster periodic generation of invoices for your customers. For information about enabling and configuring automatic billing, refer to Setting up automatic billing.
The Tigerpaw account, for which automatic billing is enabled, must be cross-referenced to the External Product associated with the API User credentials that you provided for the integration. For details, see the "Assign External Products to an Account" section in Tigerpaw online Help.
Automatic billing works according to the following rules:
- Kaspersky Security Integration Service for MSP runs automatic billing daily, so that you have up-to-date usage information in Tigerpaw any time you have to generate an invoice for a client.
- Kaspersky Security Integration Service for MSP creates additional charges to the agreements only for those Kaspersky Lab security applications that are mapped to Tigerpaw price book items. For details, refer to Mapping Tigerpaw price book items to security applications.
- To get usage information for a particular account, Kaspersky Security Integration Service for MSP calculates how many devices managed by the virtual server or connected to the company associated with this account utilize licenses for the Kaspersky Lab security applications. Only unexpired and active commercial keys and subscriptions are counted. Servers and workstations are counted separately if the Bill devices by category option is selected when Kaspersky Lab security applications and Tigerpaw price book items are mapped. Also, Kaspersky Security Integration Service for MSP calculates how many Kaspersky Security for Microsoft Office 365 mailboxes are protected.
To differentiate the pricing policy for two types of devices (servers and workstations), a separate billing feature is available. Kaspersky Security Integration Tool for MSP supports two billing configurations:
- Associates a single licensed Kaspersky Lab security application with a single Tigerpaw price book item.
- Associates a single licensed Kaspersky Lab security application with three different Tigerpaw price book items: one for servers, a second for workstations, and a third for non-Windows devices.
In this case, Tigerpaw analyzes the type of client device (server or workstation) that uses the Kaspersky Lab license. Data about each Kaspersky Lab security application license used by the device is associated with the Tigerpaw price book item mapped to this Kaspersky Lab security application.
For example, if a client company uses Kaspersky Endpoint Security for Business Advanced on 100 devices, where 90 of them are workstations and 10 are servers, Kaspersky Security Integration Service for MSP does the following:
- Creates an Additional Charge on 90 devices for the Tigerpaw price book item for workstations.
- Creates an Additional Charge on 10 devices for the Tigerpaw price book item for servers.
Setting up service order creation
This section explains how to set up service order creation for your Tigerpaw accounts.
About setting up service order creation
Service orders allow timely responses to different types of events or changes in computer status that occur on the network. Automated service order creation allows you to reduce significantly the time spent monitoring and managing your Tigerpaw accounts.
You must establish service order creation rules to enable automatic creation and assignment of service orders in Tigerpaw. You can set up creation and assignment of service orders depending on the event severity or when a computer status changes to Critical or Warning in Kaspersky Lab security applications.
Service orders created on the basis of computer status changes are automatically closed when the corresponding issue is resolved and the status description that triggered the service order creation is no longer relevant. For example, when the status of a computer becomes Warning because a "Databases are out of date" status description is assigned, a corresponding service order is created. When the databases are updated, the status description "Databases are out of date" is no longer relevant, and the service order is automatically closed. However, the computer status might remain Warning because of other status descriptions, for example, "Many viruses detected".
Kaspersky Security Integration Service for MSP is not able to close a service order while it is being opened in the Tigerpaw graphical user interface, as Tigerpaw locks such service orders for editing through the API. After the user, who viewed the service order in Tigerpaw, leaves the Service Orders page, Kaspersky Security Integration Service for MSP automatically closes the service order shortly thereafter.
Service orders created on the basis of the Mailboxes protection is not provided and License-related issue occurred events that occur in Kaspersky Security for Microsoft Office 365 are also closed when the corresponding issue is resolved.
Service orders created on the basis of all other events that occur in Kaspersky Security for Microsoft Office 365 and service orders created on the basis of events that occur in Kaspersky Security Center or Kaspersky Endpoint Security Cloud are not closed automatically, so you must close these service orders manually.
You can create and modify service order creation rules for your Tigerpaw accounts. Service order creation rules are applicable to all accounts that are mapped to Kaspersky Security Center virtual servers or Kaspersky Business Hub companies. Service order creation rules are configured individually for events and for computer statuses. When configuring integration between Tigerpaw and Kaspersky Business Hub, you must set up service order creation separately for Kaspersky Endpoint Security Cloud and Kaspersky Security for Microsoft Office 365.
Page top
General service order creation settings
In the General section of the Service orders tab, you can configure general settings for service order creation. General settings are applicable to all service orders that have been automatically created in Tigerpaw as a result of events or computer status changes that occur in Kaspersky Lab security applications. General settings provide the required initial values to the service order attributes so that service orders are created correctly in Tigerpaw.
Configuring general service order creation settings
To configure general settings for service order creation:
- In the Kaspersky Security Integration Tool for MSP window, click the Service orders tab.
- In the left pane, select the General section.
The General Settings right pane allows you to configure general settings for service order creation.
- Edit the following settings:
- In the Service order rep drop-down list, select the person to assign the newly created service orders to, when they are automatically created in Tigerpaw when an event is triggered or a change in computer status occurs. This value is required.
- In the New service order status drop-down list, select the status to be assigned to new service orders that are automatically created in Tigerpaw as a result of an event occurrence or a change in computer status. This value is required.
- In the Closed service order status drop-down list, select the status to be assigned to service orders when they are automatically closed by Kaspersky Security Integration Service for MSP after the corresponding issue in the Kaspersky Lab security application has been resolved. This value is required.
- When you finish configuring general service order creation settings, click the Save changes button to save the settings.
General service order creation settings are configured and service orders in Tigerpaw are created in accordance with the specified rules.
You can cancel changes and reset general service order creation settings to their last saved values.
To cancel changes to general service order creation settings and restore last saved values:
- Open the Service orders tab and in the left pane select the General section.
- Click the Cancel changes button.
You can also reset general service order creation settings to their default values.
To reset general service order creation settings to their default values:
- Open the Service orders tab and in the left pane select the General section.
- Click the Reset to defaults link.
Service orders for events
The service order creation settings depend on the Kaspersky Lab solution that you use: Kaspersky Security Center or Kaspersky Business Hub.
Service orders for events that occur in Kaspersky Security Center
On the Service orders tab, you can configure service order creation rules for events that occur in Kaspersky Security Center. You can edit service order creation settings either for an individual event or for several events at the same time.
Configuring service order creation for events
To set up service order creation for events:
- In the Kaspersky Security Integration Tool for MSP window, click the Service orders tab.
- In the left pane, select the Events section to configure service order creation for events.
- Do one of the following:
- To configure service order creation for one event severity, use the toggle button in the Create service order column to enable service order creation for the corresponding event severity. In the Lifetime, Board, Priority, and Type columns, edit the settings as required.
By default, service order creation is disabled for all event severities.
- To configure service order creation for one or several event severities simultaneously, select the lines that contain required event severities, and then click the Edit button above the table. The Service order settings for events window opens.
Editing service order creation settings for multiple event severities is useful if you want to assign the same settings to these event severities. If you want the service order creation settings to be different, edit them individually for each event severity.
You can edit the following service order creation settings:
- On / Off (or, in the main window, the toggle button)—Enable or disable service order creation for the selected event severities.
- Lifetime—Select the period, in days, during which the events are still relevant. The default value is 1 day.
This value is used to determine whether to create a service order for an event in Tigerpaw. If the connection between Tigerpaw and Kaspersky Security Center has been broken and events have not been sent for some time, only events more recent than the specified period are sent to Tigerpaw as service orders. A different relevance period can be set for different event severities.
- Board—Select the board to assign the service order to. Boards are configured in Tigerpaw.
- Priority—Select the priority for the service orders created in Tigerpaw. Assigning priorities to the service orders created for computer status change is used to prioritize corresponding service orders in Tigerpaw. The service order priority allows you to respond to the issues in order of their importance, so that more urgent problems can be resolved sooner. This setting is required.
- Type—Select the type to be assigned to the service order.
Service order settings for events window
- To configure service order creation for one event severity, use the toggle button in the Create service order column to enable service order creation for the corresponding event severity. In the Lifetime, Board, Priority, and Type columns, edit the settings as required.
- When you finish configuring service order creation for events, click the Save changes button to save the settings.
Service order creation for event severities is configured and service orders in Tigerpaw will be created in accordance with the specified rules.
You can cancel changes and reset service order creation settings to their last saved values.
To cancel changes of service order creation settings and restore last saved values:
- Open the Service orders tab.
- In the left pane, select the Events section.
- Click the Cancel changes button.
You can also reset service order creation settings to their default values.
To reset service order creation settings to their default values:
- Open the Service orders tab.
- In the left pane, select the Events section.
- Click the Reset to defaults link.
Service orders for events that occur in Kaspersky Endpoint Security Cloud and Kaspersky Security for Microsoft Office 365
On the Service orders tab, you can configure service order creation rules for events that occur in Kaspersky Endpoint Security Cloud and Kaspersky Security for Microsoft Office 365. You can edit service order creation settings either for an individual event or for several events at the same time.
Configuring service order creation for events
To set up service order creation for events:
- In the Kaspersky Security Integration Tool for MSP window, click the Service orders tab.
- In the left pane, click the Kaspersky Lab security application name, and then select the Events section to configure service order creation for events. You can configure service order creation separately for events that occur in Kaspersky Endpoint Security Cloud and Kaspersky Security for Microsoft Office 365.
- Do one of the following:
- To configure service order creation for one event severity (in Kaspersky Endpoint Security Cloud) or for one event type (in Kaspersky Security for Microsoft Office 365), use the toggle button in the Create service order column to enable service order creation for the corresponding event severity or event type. In the Lifetime, Board, Priority, and Type columns, edit the settings as required.
By default, service order creation is disabled for all event severities or event types.
- To configure service order creation for one or several event severities or event types simultaneously, select the lines that contain required event severities or event types, and then click the Edit button above the table. The Service order settings for events window opens.
Editing service order creation settings for multiple event severities or event types is useful if you want to assign the same settings to these event severities or event types. If you want the service order creation settings to be different, edit them individually for each event severity or event type.
You can edit the following service order creation settings:
- On / Off (or, in the main window, the toggle button)—Enable or disable service order creation for the selected event severities or event types.
- Lifetime—Select the period, in days, during which the events are still relevant. The default value is 1 day. This setting is not present for events that occur in Kaspersky Security for Microsoft Office 365.
This value is used to determine whether to create a service order for an event in Tigerpaw. If the connection between Tigerpaw and Kaspersky Endpoint Security Cloud has been broken and events have not been sent for some time, only events more recent than the specified period are sent to Tigerpaw as service orders. A different relevance period can be set for different event severities.
- Board—Select the board to assign the service order to. Boards are configured in Tigerpaw.
- Priority—Select the priority for the service orders created in Tigerpaw. Assigning priorities to the service orders created for computer status change is used to prioritize corresponding service orders in Tigerpaw. The service order priority allows you to respond to the issues in order of their importance, so that more urgent problems can be resolved sooner. This setting is required.
- Type—Select the type to be assigned to the service order.
Service order settings for events window
- To configure service order creation for one event severity (in Kaspersky Endpoint Security Cloud) or for one event type (in Kaspersky Security for Microsoft Office 365), use the toggle button in the Create service order column to enable service order creation for the corresponding event severity or event type. In the Lifetime, Board, Priority, and Type columns, edit the settings as required.
- When you finish configuring service order creation for events, click the Save changes button to save the settings.
Service order creation for event severities or event types is configured and service orders in Tigerpaw will be created in accordance with the specified rules.
You can cancel changes and reset service order creation settings to their last saved values.
To cancel changes of service order creation settings and restore last saved values:
- Open the Service orders tab.
- In the left pane, click the Kaspersky Lab security application name, and then select the Events section.
- Click the Cancel changes button.
You can also reset service order creation settings to their default values.
To reset service order creation settings to their default values:
- Open the Service orders tab.
- In the left pane, click the Kaspersky Lab security application name, and then select the Events section.
- Click the Reset to defaults link.
Service orders for computer statuses
On the Service orders tab, you can configure service order creation rules for the computer statuses. This allows service orders to be created in Tigerpaw when the computer status in Kaspersky Security Center or Kaspersky Endpoint Security Cloud changes to Warning or Critical. You can edit service order creation settings either for an individual computer status or for several statuses at the same time.
Configuring service order creation for computer statuses
To set up service order creation for computer status:
- In the Kaspersky Security Integration Tool for MSP window, click the Service orders tab.
- In the left pane, select the Warning status or Critical status section to configure service order creation for computer statuses.
- Do one of the following:
- To configure service order creation for one status, use the toggle button in the Create service order column to enable service order creation for the corresponding status change. In the Board, Priority, and Type columns, edit the settings as required.
By default, service order creation is disabled for all computer status descriptions.
- To configure service order creation for one or several statuses simultaneously, select the lines that contain required status description, and then click the Edit button above the table. In the Service order settings for computer status change window that opens, edit the settings as required.
Editing service order creation settings for multiple computer statuses is useful if you want to assign the same settings to these computer statuses. If you want the service order creation settings to be different, edit them individually for each computer status.
You can edit the following service order creation settings:
- On / Off (or, in the main window, the toggle button)—Enable or disable service order creation for the selected status changes.
- Board—Select the board to assign the service order to. Boards are configured in Tigerpaw.
- Priority—Select the priority for the service orders created in Tigerpaw. Assigning priority levels to the service orders created for computer status change is used to prioritize corresponding service orders in Tigerpaw. The service order priority allows you to respond to issues in order of their importance, so that more urgent problems can be resolved sooner. This setting is required.
- Type—Select the type to be assigned to the service order.
Service order settings for computer status change window
- To configure service order creation for one status, use the toggle button in the Create service order column to enable service order creation for the corresponding status change. In the Board, Priority, and Type columns, edit the settings as required.
- When you finish configuring service order creation for computer statuses, click the Save changes button to save the settings.
Service order creation for computer statuses is configured and service orders in Tigerpaw will be created in accordance with the specified rules.
You can cancel changes and reset service order creation settings to their last saved values.
To cancel changes of service order creation settings and restore last saved values:
- Open the Service orders tab.
- In the left pane, click the Kaspersky Lab solution name, and then select the Warning status or Critical status section.
- Click the Cancel changes button.
You can also reset service order creation settings to their default values.
To reset service order creation settings to their default values:
- Open the Service orders tab.
- In the left pane, click the Kaspersky Lab solution name, and then select the Warning status or Critical status section.
- Click the Reset to defaults link.
Mapping Tigerpaw price book items to security applications
Set up mapping between Kaspersky Lab security applications and Tigerpaw price book items, so that usage information about Kaspersky Lab security applications appears in Tigerpaw as additional charges to the agreements of the accounts.
On the Price book items tab of the Kaspersky Security Integration Tool for MSP window, you can map Kaspersky Lab security applications to Tigerpaw price book items. You can edit existing mapping between security applications and price book items as well.
The list of available security applications differs depending on which Kaspersky Lab solution you use: Kaspersky Security Center or Kaspersky Business Hub.
Create price book items in Tigerpaw for the Kaspersky Lab security applications that you provide to your clients before setting up mapping.
Mapping Kaspersky Lab security applications to Tigerpaw price book items
To set up mapping between Kaspersky Lab security applications and Tigerpaw price book items:
- In the Kaspersky Security Integration Tool for MSP window, click the Price book items tab.
- To differentiate the pricing policy for two types of devices (servers and workstations), use the Bill devices by category toggle button to turn on this feature.
- Map Kaspersky Lab security applications in the Kaspersky Lab security application column to Tigerpaw price book items in the Price book items column.
If the Bill devices by category feature is disabled, each Kaspersky Lab security application can be mapped to one Tigerpaw price book item only. Otherwise, map each Kaspersky Lab security application to three Tigerpaw price book items:
- In the Windows workstations drop-down list, select a Tigerpaw price book item. The price of this price book item will be used during billing for all of the workstations that use the license for the corresponding Kaspersky Lab security application.
- In the Windows servers drop-down list, select a Tigerpaw price book item. The price of this price book item will be used during billing for all of the servers that use the license for the corresponding Kaspersky Lab security application.
- In the Non-Windows devices drop-down list, select a Tigerpaw price book item. The price of this price book item will be used during billing for all of the non-Windows devices that use the license for the corresponding Kaspersky Lab security application.
- When you have finished with mapping, click the Save changes button to save the mapping.
Viewing accounts not integrated with Kaspersky Lab security applications
When configuring integration with Tigerpaw it is useful to check whether all Tigerpaw accounts are connected to Kaspersky Security Center virtual servers / Kaspersky Business Hub companies, or whether you accidentally skipped one or more accounts. For this purpose, you can use Tigerpaw Matrix template views that allow you to display all existing Tigerpaw accounts together with the virtual servers or companies to which they are mapped.
Kaspersky Security Integration with Tigerpaw adds its own fields to the Tigerpaw configuration. You can use these fields to create Accounts Matrix templates based on integration-specific information. For example, using standard Tigerpaw functionality, you can select clients that are not integrated with Kaspersky Security Center or Kaspersky Business Hub—that is, the clients whose accounts do not have a corresponding virtual server or company. Then you can manually, using filters, exclude accounts that do not use Kaspersky Lab security applications from your selection.
To view Tigerpaw accounts that are not mapped to virtual servers or companies:
- Log in to Tigerpaw with your credentials.
- In Tigerpaw, create a custom Accounts Matrix template and include the desired fields, for example:
- Acct. Name from the General section.
- Acct. No. from the General section.
- Acct. Type from the General section.
- Accounts Kaspersky virtual server or Accounts Kaspersky company from the Custom Fields section.
Refer to Tigerpaw documentation for details about the Matrix template.
- Filter the resulting information by the account type (for example, Customer) and by the name of the virtual server or company (for example, Is not empty).
If the name of the virtual server or company is empty, the account is not mapped to any virtual server or company.
Configuring integration by using the registry
By using the Microsoft Windows registry, you can configure the integration as follows:
- Enable or disable tracing.
- Change the maximum time before updated integration settings are applied.
Enabling and disabling tracing
Refer to the "Enabling and disabling tracing by using the registry" section.
Changing the maximum time before updated integration settings are applied
After you update integration settings in Kaspersky Security Integration Tool for MSP, Kaspersky Security Integration Service for MSP applies them not immediately but within a certain time interval. By default, this interval is 15 minutes. If you use an on-premises version of a Kaspersky Lab solution, you can change the interval by using Microsoft Windows registry, as described later in this section. For a Cloud version of a Kaspersky Lab solution, the interval is specified by Kaspersky Lab specialists.
To change the maximum time before updated integration settings are applied:
Before editing the Windows registry, it is recommended that you back up the registry.
- Click the Start button.
- In the Start menu, in either the Run box or the Search box, type regedit and press Enter.
The Registry Editor window opens.
If you have restricted access to the Windows computer to which you are logged in, you might not be able to access the registry.
- In the Registry Editor window, navigate to the Kaspersky Security Integration Service for MSP registry key. It is available by one of the following registry subkeys (paths):
- HKEY_LOCAL_MACHINE\SOFTWARE\KasperskyLab\Kaspersky Security Integration Service for MSP
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\KasperskyLab\Kaspersky Security Integration Service for MSP
- Edit the value of the ConfigReloadIntervalMinutes setting by specifying the required number of minutes.
- Click OK in the Edit window to save your changes.
- Close the Registry Editor window.
The value is changed.
Managing administrators
You can manage the administrators related to the integration with Kaspersky Business Hub. You can add the accounts of existing Kaspersky Business Hub users as administrators of your integration. You can also remove administrators from the integration if you do not want them to work with the integration.
You can manage administrators within the integration only if Kaspersky Business Hub solution is used. For Kaspersky Security Center solution, this functionality is unavailable.
When you add administrators to the integration, they have the same rights as existing administrators: they can administer all workspaces bound to this integration and manage the integration settings.
When you remove administrators from the integration, these administrators can no longer manage this integration and cannot administer its workspaces. You may have to remove administrators, for example, if they stop working for your company or move to new positions within the company and are no longer allowed to manage integrations.
All remaining administrators who have access to the integration can add or remove administrators to / from this integration.
Managing administrators
The following sections explain how to add or remove an administrator to / from the integration.
Adding administrators
When you add administrators to an integration, they have the same rights as existing administrators: they can administer Kaspersky Endpoint Security Cloud workspaces and Kaspersky Security for Microsoft Office 365 workspaces of all Kaspersky Business Hub companies bound to this integration and can manage the integration settings.
To add administrators:
- In the Kaspersky Security Integration Tool for MSP window, click the Administrators tab.
- Click the Add link to add administrators.
- In the Add administrators dialog box that opens, specify the email addresses and aliases associated with the Kaspersky Lab accounts of the users that you want to add as new administrators. You can add several administrators at a time.
- Use a semicolon to separate the email address and alias of an administrator.
- Type the data for each administrator in a new line.
Only users registered in Kaspersky Business Hub can be added to the integration.
- Click Next and check the data that you provided. If everything is correct, click Finish to add the administrators to the integration. If you want to change the information you provided, click Back.
- After you perform all the actions with administrators' accounts, click the Save changes button.
The new administrators are added to the integration and gain access to all workspaces within this integration.
Removing administrators
When you remove administrators from an integration, they can no longer manage the integration. However, the administrators' Kaspersky Lab accounts are not deleted; they are merely unbound from the integration, so that the administrators cannot manage the integration or administer its workspaces.
To remove administrators:
- In the Kaspersky Security Integration Tool for MSP window, click the Administrators tab.
- Select the check boxes next to the names of administrators you want removed from the integration.
If you want to select all administrators, select the check box in the column header.
You cannot remove all administrators from the integration. An integration must have at least one administrator.
- Click the Delete link to remove the selected administrators.
- After you perform all the actions with the administrators' accounts, click the Save changes button.
The selected administrators are removed from the integration and lose their rights to administer workspaces bound to the integration.
Enabling and disabling tracing
The following sections explain how to enable and disable tracing for Kaspersky Security Integration with Tigerpaw components.
You may have to save traces of Kaspersky Security Integration with Tigerpaw, for example, if you contact Technical Support and they ask you to provide the traces for diagnostics and troubleshooting. It is recommended to disable tracing when an issue is resolved, as tracing requires additional resources and additional memory to store trace files. It is also recommended to remove trace files from your computer after the issue that required tracing is resolved, because the trace files may contain personal and confidential data.
By default, tracing is disabled.
There are two ways of enabling and disabling tracing for Kaspersky Security Integration with Tigerpaw components:
- Using the Microsoft Windows registry.
- In the .config files of Kaspersky Security Integration with Tigerpaw components.
Enabling and disabling tracing by using the registry
You can enable and disable tracing by using the Microsoft Windows registry.
To enable or disable tracing:
Before editing the Windows registry, it is recommended that you back up the registry.
- Click the Start button.
- In the Start menu, either in the Run box or the Search box, type regedit and press Enter.
The Registry Editor window opens.
If you have restricted access to the Windows computer you are logged into, you might not be able to access the registry.
- In the Registry Editor window, navigate to the Kaspersky Security Integration Service for MSP or Kaspersky Security Integration Tool for MSP registry key. They are available by one of the following paths:
- Kaspersky Security Integration Service for MSP
- HKEY_LOCAL_MACHINE\SOFTWARE\KasperskyLab\Kaspersky Security Integration Service for MSP
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\KasperskyLab\Kaspersky Security Integration Service for MSP
- Kaspersky Security Integration Tool for MSP
If the Kaspersky Security Integration Tool for MSP registry key is not displayed, either run Kaspersky Security Integration Tool for MSP as administrator (by right-clicking the application icon and selecting Run as administrator), or create the registry key manually.
- HKEY_LOCAL_MACHINE\SOFTWARE\KasperskyLab\Kaspersky Security Integration Tool for MSP
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\KasperskyLab\Kaspersky Security Integration Tool for MSP
- Kaspersky Security Integration Service for MSP
- Edit the value of the EnableTraces parameter as follows:
- 1—To enable tracing.
- 0—To disable tracing.
- Click OK in the Edit window to save your changes.
- Close the Registry Editor window.
The trace files are saved to the .log files in the application installation folder:
- For Kaspersky Security Integration Tool for MSP the file is IntegrationUI.log, by default saved to the C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Tool for MSP folder.
- For Kaspersky Security Integration Service for MSP the file is IntegrationServer.log, by default stored in the C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Service for MSP folder.
When you uninstall Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP, the trace files are removed together with the application.
Enabling and disabling tracing by using the .config files
You can enable and disable tracing in the .config files of Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP. The files are stored in the installation folders of the corresponding products.
To enable or disable tracing:
- Navigate to the .config file of the Kaspersky Security Integration with Tigerpaw component for which you want to enable or disable tracing. The .config file is stored in the installation folder. By default, the navigation paths are:
- For Kaspersky Security Integration Tool for MSP the file is IntegrationUI.exe.config, by default stored in the C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Tool for MSP folder.
- For Kaspersky Security Integration Service for MSP the file is IntegrationServer.exe.config, by default stored in the C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Service for MSP folder.
- Open the .config file with any text editor and change the value of the minlevel attribute of the logger element as follows:
- To enable tracing, set the value of the minlevel attribute to Debug.
<logger name="MSPIntegration.*" writeTo="fileTarget" minlevel="Debug" /> - To disable tracing, set the value of the minlevel attribute to Off.
<logger name="MSPIntegration.*" writeTo="fileTarget" minlevel="Off" />
- To enable tracing, set the value of the minlevel attribute to Debug.
- Save and close the modified .config file.
The trace files are saved to the .log files in the application installation folder:
- For Kaspersky Security Integration Tool for MSP the file is IntegrationUI.log, by default saved to the C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Tool for MSP folder.
- For Kaspersky Security Integration Service for MSP the file is IntegrationServer.log, by default stored in the C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Integration Service for MSP folder.
When you uninstall Kaspersky Security Integration Tool for MSP and Kaspersky Security Integration Service for MSP, the trace files are removed together with the application.
Custom fields in Tigerpaw
Kaspersky Security Integration with Tigerpaw provides easy access to valuable integration-specific information on Tigerpaw accounts directly from the Tigerpaw GUI. You can view this information in the Account Details window by clicking the Custom Fields link in the Summary section, and use this information in Tigerpaw Matrix views.
The following custom fields are available for the Tigerpaw accounts in the Kaspersky custom category:
- If you use Kaspersky Security Center:
- Kaspersky virtual server—Name of the virtual server mapped to this account in Kaspersky Security Integration Tool for MSP.
- If you use Kaspersky Business Hub:
- Kaspersky workspace—Name of the Kaspersky Business Hub company mapped to this account in Kaspersky Security Integration Tool for MSP.
- Kaspersky workspace URL—Link to open your Kaspersky Business Hub company.
If you accidentally deleted the custom fields created by the integration, you can restore them by using the following workaround. However, this workaround works only the first time you save changes in parameter values after Kaspersky Security Integration Tool for MSP starts.
To restore the Kaspersky custom category and its fields:
- Start or restart Kaspersky Security Integration Tool for MSP.
- Change the value for any setting on any tab (Accounts, Service orders, or Price book items) to activate the Save changes button.
- Click the Save changes button.
The Kaspersky section is displayed after you save changes to your integration.
- Set the parameter that you changed in step 2 to the original value, and then save your settings.
The Kaspersky custom category and its fields become available in each Tigerpaw account details window.
Glossary
Administration Server
A component of Kaspersky Security Center that centrally stores information about all Kaspersky Lab applications that are installed within the corporate network. Administration Server can also be used to manage these applications.
Administration Server client (Client computer)
A computer, server, or workstation on which Network Agent and managed Kaspersky Lab applications are running.
Anti-virus databases
Databases that contain information about computer security threats known to Kaspersky Lab as of when the anti-virus databases are released. Entries in anti-virus databases allow malicious code to be detected in scanned objects. Anti-virus databases are created by Kaspersky Lab specialists and updated hourly.
Kaspersky Business Hub company
Virtual Administration Server by Kaspersky Lab that is designed to manage a security software suite on devices connected to Kaspersky Endpoint Security Cloud and/or Kaspersky Security for Microsoft Office 365, as well as to store individual settings of Kaspersky Endpoint Security Cloud and/or Kaspersky Security for Microsoft Office 365 and the registration data of a company using any of these products.
Network Agent
A Kaspersky Security Center component that enables interaction between the Administration Server and Kaspersky Lab applications that are installed on a specific network node (workstation or server).
Virus
A program that infects other ones, by adding its code to them in order to gain control when infected files are run. This simple definition allows identifying the main action performed by any virus: infection.
Page top
Contact Technical Support
This section describes how to get technical support and the terms on which it is available.
How to get technical support
If you cannot find a solution to your issue in the Kaspersky Security Integrations for MSP documentation or in any of the sources of information about Kaspersky Security Integrations for MSP, contact Technical Support. Technical Support specialists will answer all your questions about configuring and using Kaspersky Security Integrations for MSP.
Before contacting Technical Support, please read the support rules.
You can contact Technical Support in one of the following ways:
- By visiting the Technical Support website
- By sending a request to Technical Support from the Kaspersky CompanyAccount portal
Technical Support via Kaspersky CompanyAccount
Kaspersky CompanyAccount is a portal for companies that use Kaspersky Lab applications. The Kaspersky CompanyAccount portal is designed to facilitate interaction between users and Kaspersky Lab specialists through online requests. You can use Kaspersky CompanyAccount to track the status of your online requests and store a history of them as well.
You can register all of your organization's employees under a single account on Kaspersky CompanyAccount. A single account lets you centrally manage electronic requests from registered employees to Kaspersky Lab and also manage the privileges of these employees via Kaspersky CompanyAccount.
The Kaspersky CompanyAccount portal is available in the following languages:
- English
- Spanish
- Italian
- German
- Polish
- Portuguese
- Russian
- French
- Japanese
To learn more about Kaspersky CompanyAccount, visit the Technical Support website.
Page top
AO Kaspersky Lab
Kaspersky Lab is a world-renowned vendor of systems protecting computers against digital threats, including viruses and other malware, unsolicited email (spam), and network and hacking attacks.
In 2008, Kaspersky Lab was rated among the world’s top four leading vendors of information security software solutions for end users (IDC Worldwide Endpoint Security Revenue by Vendor). Kaspersky Lab is the preferred vendor of computer protection systems for home users in Russia (IDC Endpoint Tracker 2014).
Kaspersky Lab was founded in Russia in 1997. It has since grown into an international group of companies with 38 offices in 33 countries. The company employs more than 3,000 skilled professionals.
Products. Kaspersky Lab products provide protection for all systems, from home computers to large corporate networks.
The personal product range includes security applications for desktop, laptop, and tablet computers, smartphones and other mobile devices.
The company offers protection and control solutions and technologies for workstations and mobile devices, virtual machines, file and web servers, mail gateways, and firewalls. The company's portfolio also features specialized products providing protection against DDoS attacks, protection for industrial control systems, and prevention of financial fraud. Used in conjunction with centralized management tools, these solutions ensure effective automated protection for companies and organizations of any size against computer threats. Kaspersky Lab products are certified by major test laboratories, compatible with software from diverse vendors, and optimized to run on many hardware platforms.
Kaspersky Lab virus analysts work around the clock. Every day they uncover hundreds of thousands of new computer threats, create tools to detect and disinfect them, and include their signatures in databases used by Kaspersky Lab applications.
Technologies. Many technologies that are now part and parcel of modern anti-virus tools were originally developed by Kaspersky Lab. It is no coincidence that many other developers use the Kaspersky Anti-Virus engine in their products, including: Alcatel-Lucent, Alt-N, Asus, BAE Systems, Blue Coat, Check Point, Cisco Meraki, Clearswift, D-Link, Facebook, General Dynamics, H3C, Juniper Networks, Lenovo, Microsoft, NETGEAR, Openwave Messaging, Parallels, Qualcomm, Samsung, Stormshield, Toshiba, Trustwave, Vertu, and ZyXEL. Many of the company’s innovative technologies are patented.
Achievements. Over the years, Kaspersky Lab has won hundreds of awards for its services in combating computer threats. Following tests and research conducted by the reputed Austrian test laboratory AV-Comparatives in 2014, Kaspersky Lab ranked among the top two vendors by the number of Advanced+ certificates earned and was ultimately awarded the Top Rated certificate. But Kaspersky Lab's main achievement is the loyalty of its users worldwide. The company’s products and technologies protect more than 400 million users, and its corporate clients number more than 270,000.
Kaspersky Lab website: |
|
Virus encyclopedia: |
|
Virus Lab: |
https://virusdesk.kaspersky.com (for analyzing suspicious files and websites) |
Kaspersky Lab’s web forum: |
Page top
Information about third-party code
Information about third-party code is contained in the file legal_notices.txt, in the application installation folder.
Page top
Trademark notices
Registered trademarks and service marks are the property of their respective owners.
Tigerpaw is a registered trademark of Tigerpaw Software, Inc.
Microsoft and Windows are registered trademarks of Microsoft Corporation in the United States and other countries.
Page top
Kaspersky Security Integration with SolarWinds N-central
This section describes Kaspersky Security Integration with SolarWinds N-central. It contains a general description of the software and provides instructions for working with it.
Kaspersky Security Integration with SolarWinds N-central
This section describes the purpose, functions, and distribution kit of Kaspersky Security Integration with SolarWinds N-central.
About Kaspersky Security Integration with SolarWinds N-central
Kaspersky Security Integration with SolarWinds N-central is used to integrate Kaspersky Lab security applications into your SolarWinds N-central to provide a combination of monitoring and management tools, and protection technologies. The integration allows you to monitor and manage the state of all Kaspersky Lab security applications installed at your clients’ locations, by means of one tool—so multiple software products are not needed.
Kaspersky Endpoint Security applications provide enterprise-class protection services and, when integrated with SolarWinds N-central by means of Kaspersky Security Integration with SolarWinds N-central, help to boost the efficiency of your protection monitoring and management.
SolarWinds N-central administrators can use Kaspersky Security Integration with SolarWinds N-central to install Kaspersky Endpoint Security and Kaspersky Security Center Network Agent remotely, monitor and manage different security aspects of devices in the client's corporate network, and initiate virus scan and anti-virus database update tasks on client devices.
Page top
About data provision
Kaspersky Security Integration with SolarWinds N-central is designed for the integration of Kaspersky Lab security applications with SolarWinds N-central within the framework of the functionality described in this Help document.
By using the product, you agree that said product may receive data from the devices managed by SolarWinds N-central, as well as process and display information that is intended for ensuring the product functionality.
By using Kaspersky Security Integration with SolarWinds N-central, you thus confirm that you are the sole owner of any data you provide or that you are entitled to provide any data.
For the purpose of integration of Kaspersky Lab security applications and SolarWinds N-central, Kaspersky Security Integration with SolarWinds N-central may receive and process the following types of data:
- Name of the Kaspersky Lab security application installed on a device.
- Version of the Kaspersky Lab security application installed on a device.
- Status of the Kaspersky Lab security application installed on a device (whether the protection is enabled or not).
- Version of Kaspersky Security Center Network Agent installed on a device.
- Date of the last virus scan that was performed on a device by the Kaspersky Lab security application.
- Date of the last update of the Kaspersky Lab security application anti-virus database.
- Number of days since the last virus scan that was performed on a device by the Kaspersky Lab security application.
- Number of hours since the last update of the Kaspersky Lab security application anti-virus database.
- Result of the virus scan that was performed on a device by the Kaspersky Lab security application.
- Result of the update of the Kaspersky Lab security application anti-virus database.
Kaspersky Security Integration with SolarWinds N-central transfers the received data to SolarWinds N-central, where this data is stored and processed.
All received data is used by the MSP administrators and technicians. Kaspersky Security Integration with SolarWinds N-central does not transfer any data to Kaspersky Lab.
Page top
Features of Kaspersky Security Integration with SolarWinds N-central
Kaspersky Security Integration with SolarWinds N-central provides the following features in the SolarWinds N-central interface:
- Viewing the anti-virus protection status of devices.
- Running a virus scan on devices.
- Performing an anti-virus database update on devices.
- Deploying Kaspersky Lab security applications.
- Adding dashboards for viewing Kaspersky Lab-related information about the devices in your network.
Distribution kit
Kaspersky Security Integration with SolarWinds N-central is delivered free of charge as the following set of files:
- Automation policies:
- Kaspersky AV Status.amp
- Kaspersky Scan.amp
- Kaspersky Update.amp
- Service:
- Kaspersky AV Status.xml
You can download these files from the Kaspersky Lab website.
No license is required for Kaspersky Security Integration with SolarWinds N-central.
Page top
Hardware and software requirements
The hardware and software requirements are identical to the requirements of the browser that is used with SolarWinds N-central.
Page top
Prerequisites
When configuring integration, you must specify the user name and password that you use to log in to SolarWinds N-central. It is recommended that you check these parameters in advance in order to prepare for setting up integration.
To work with Kaspersky Endpoint Security Cloud, switch on the Use of local tasks toggle button for all security profiles in the interface of Kaspersky Endpoint Security Cloud. For example, you can find this option for the default security profile at Security management → Security profiles → Default → Windows → Advanced → Interface. When the toggle button is switched off, use of local tasks and SolarWinds N-central custom operations is stopped.
Page top
Integration scenario
This section describes the overall sequence of actions that you perform to integrate your Kaspersky Lab security applications into SolarWinds N-central by means of Kaspersky Security Integration with SolarWinds N-central.
- Preparing information for setting up an integration.
Check the prerequisites to integrate your Kaspersky Lab security applications successfully with SolarWinds N-central. You will have to provide these parameters in the next steps of this scenario.
- Deploying Kaspersky Security Integration with SolarWinds N-central.
Download the Kaspersky Security Integration with SolarWinds N-central distribution kit from the Kaspersky Lab web site and deploy the downloaded files.
- Adding the Kaspersky AV Status service to devices.
Follow the SolarWinds N-central documentation. For example, you can use rules.
- Configuring the schedule of the virus scan and anti-virus database update.
Run the Kaspersky virus scan and Kaspersky anti-virus database update automation policies.
- Viewing anti-virus protection status of devices.
You can view the anti-virus protection status of an individual device or use a dashboard with integrated status of devices that meet the conditions of a filter.
- Deploying Kaspersky Lab security applications on devices.
You can take an installation package from Kaspersky Security Center or Kaspersky Endpoint Security Cloud, and deploy it on devices.
After you perform the above steps, Kaspersky Security Integration with SolarWinds N-central will be installed and configured, your devices will be protected and managed, and you will be able to monitor the anti-virus protection status of your devices.
Page top
Deploying Kaspersky Security Integration with SolarWinds N-central
Before using Kaspersky Security Integration with SolarWinds N-central, you must download its distribution kit and save the files on the computer from which you operate SolarWinds N-central.
Then, you must deploy the saved files in SolarWinds N-central. Deploying the files consists of adding automation policies and adding a service.
Adding automation policies
To add an automation policy provided by Kaspersky Lab:
- In SolarWinds N-central, in the Configuration section, click Scheduled Tasks → Script/Software Repository.
- Click Add → Automation Policy.
- Next to the File Name field, click the Browse button, and then locate one of the files with the AMP extension, which you downloaded from the Kaspersky Lab website.
- Click the OK button.
The selected automation policy is added to SolarWinds N-central.
Repeat the procedure for the other automation policies.
Adding a service
To add the service provided by Kaspersky Lab:
- In SolarWinds N-central, in the Administration section, click Service Management → Custom Services.
- Click Import.
- Next to the Custom Service XML File Location field, click the Browse button, and then locate the file with the XML extension, which you downloaded from the Kaspersky Lab website.
- Click the Import custom service button.
The selected service is added to SolarWinds N-central.
Page top
Running an automation policy
Kaspersky Security Integration with SolarWinds N-central includes three predefined automation policies related to Kaspersky Lab security applications:
- Kaspersky anti-virus protection status
It checks whether a Kaspersky Lab security application is installed on a device and, if installed, its version; whether Network Agent is installed on a device and, if installed, its version; the time of the last anti-virus database update on a device; and the time of the last virus scan on the device.
- Kaspersky virus scan
It checks whether a Kaspersky Lab security application is installed on a device and, if installed, performs a virus scan on the device.
- Kaspersky anti-virus database update
It checks whether a Kaspersky Lab security application is installed on a device and, if installed, updates the anti-virus database on the device.
You can run any of these automation policies as a scheduled task applied to certain devices and device filters.
To run an automation policy:
- In SolarWinds N-central, in the Actions section, click Run an Automation Policy.
- On the Details tab, in the Repository Item list, select the required automation policy.
- On the Targets tab, select the required device filters and individual devices to which you want to apply the automation policy.
- On the Schedule tab, specify the schedule for the automation policy.
- Configure other parameters of the task, as required. For details, refer to the SolarWinds N-central documentation.
- Click the Save button.
The automation policy run task is saved and is run according to the specified schedule.
You can find the saved tasks and view their run status in Configuration → Scheduled Tasks → Add/Delete.
Page top
Viewing the anti-virus protection status of a device
For each device in SolarWinds N-central, you can view its anti-virus protection status. This status is displayed by using a service called Kaspersky anti-virus protection status.
To view the anti-virus protection status of a device:
- In SolarWinds N-central, in the Views section, click All Devices.
- If necessary, apply a filter on the list of devices.
- In the line with the information about the required device, point to the icon in the Status column.
The status of all services added for the device is displayed. The icon signifies the overall status of the device.
- Click the icon in the Status column.
The list of all services added for the device and the status of each service are displayed.
- Click the Kaspersky anti-virus protection status service name to view the detailed information about the service.
In the displayed window, you can view various properties of the anti-virus protection of the device and whether any thresholds are violated.
Adding a dashboard
In SolarWinds N-central, you can add dashboards that provide you with Kaspersky Lab-related information about the devices in your network.
The procedure below helps you create a dashboard example that will show devices for which the Kaspersky anti-virus protection status is Failed. Using a similar procedure, you can create other dashboards that meet your needs.
Adding a dashboard consists of two steps. First, you need to create a filter for the devices to be shown on the dashboard. Second, you add a dashboard with the created filter.
Creating a filter
To create a filter:
- In SolarWinds N-central, in the Configuration section, click Filters.
- Click the Add button.
- In Filter Name, specify the name of the new filter (in this case, Kaspersky failed devices).
- In Find devices where, specify the following condition:
- Select a Category = Monitoring.
- The second drop-down list = MSP N-central service is present.
- Select an Operator = Equal to.
- Select a Value = Kaspersky anti-virus protection status.
- Click the Add button.
- Keep the default and value.
- Specify another condition:
- Select a Category = Monitoring.
- The second drop-down list = MSP N-central service in status.
- Select a Property = Kaspersky anti-virus protection status.
- Select an Operator = Equal to.
- Select a Value = Failed.
- Click the Save button.
The created filter is saved. You can find it in the list of filters.
Adding a dashboard
To add a dashboard:
- In the Dashboards section, click Manage Dashboards.
- Click the Add button.
- In Name, specify the dashboard name (in this case, Kaspersky failed devices).
- Under Filters, in Available Items, select the filer that you created earlier and click the chevron pointing to the right (
) to add it to Selected Items. - Click the Monitoring Options tab.
- Under Services, in Available Items, select Kaspersky anti-virus protection status and click the chevron pointing to the right () to add it to Selected Items.
- Click the Save button.
The added dashboard is saved. You can find it in the left menu under Dashboards.
Page top
Deploying Kaspersky Lab security applications from SolarWinds N-central
With Kaspersky Security Integration with SolarWinds N-central, you can install Kaspersky Lab security applications on devices. You can install only Kaspersky Security Center Network Agent, or both Network Agent and Kaspersky Endpoint Security applications on the remote agents, depending on your needs. After installing these applications, the devices are considered protected and managed.
First, use Kaspersky Security Center or Kaspersky Endpoint Security Cloud to create and save a stand-alone installation package containing Kaspersky Security Center Network Agent, or both Kaspersky Security Center Network Agent and Kaspersky Endpoint Security. Then, use SolarWinds N-central to deploy this package and install the applications on the selected devices.
This section explains how to install Kaspersky Lab security applications on computers from SolarWinds N-central.
Creating a stand-alone installation package
A stand-alone installation package is an executable file that you can save on a shared resource. Then, by using SolarWinds N-central, you run the created file locally on the client's device to install Kaspersky Lab applications.
Creation of a stand-alone installation package differs depending on the Kaspersky Lab solution you use: Kaspersky Security Center or Kaspersky Endpoint Security Cloud. Refer to one of the following sections for instructions on creating a stand-alone installation package.
Installation package in Kaspersky Security Center
Kaspersky Security Center allows you to create stand-alone installation packages for security applications. Then, by using SolarWinds N-central, you run the created files locally on the client devices to install Kaspersky Lab applications, without involving Kaspersky Security Center.
To create a stand-alone installation package from Kaspersky Security Center:
- Connect to Kaspersky Security Center Administration Server.
- In the Kaspersky Security Center console tree, select Advanced → Remote installation → Installation packages.
- In the workspace, select the installation package of the required application: Kaspersky Endpoint Security or Kaspersky Security Center Network Agent.
- Start the process of creating a stand-alone installation package by using one of the following methods:
- In the context menu of the installation package, select Create stand-alone installation package.
- In the workspace of the installation package, click the Create stand-alone installation package link.
This will start the Stand-alone Installation Package Creation Wizard. Follow the Wizard instructions.
- At the final step of the Wizard, select the Open folder option to view the created stand-alone installation package in the folder.
- If necessary, move the package to a shared folder that is accessible from all of the devices to which you want to deploy Kaspersky Lab security applications.
- Proceed to the Deploying a Kaspersky Lab security application procedure.
Installation package in Kaspersky Endpoint Security Cloud
Kaspersky Endpoint Security Cloud allows you to download distribution packages of security applications. Then, by using SolarWinds N-central, you run the created files locally on the client devices to install Kaspersky Lab applications, without involving Kaspersky Endpoint Security Cloud.
To download a distribution package in Kaspersky Endpoint Security Cloud:
- On a server or workstation, open a browser and go to Kaspersky Endpoint Security Cloud Management Console.
- Select the Distribution packages section.
The Distribution packages section contains distribution packages of security applications available for download.
- Select a distribution package and click the Download link.
If your company uses a proxy server, click Proxy server and define the proxy server settings (address, port, user name, and password). If you defined the proxy server settings when you connected the company to Kaspersky Endpoint Security Cloud at the stage of proceeding to the client company's workspace, those settings will affect the distribution package download.
The distribution package starts downloading to the computer.
- When the download is complete, open the folder containing the distribution package.
- If necessary, move the package to a shared folder that is accessible from all of the devices to which you want to deploy Kaspersky Lab security applications.
- Proceed to the Deploying a Kaspersky Lab security application procedure.
Deploying a Kaspersky Lab security application
To deploy a Kaspersky Lab security application from SolarWinds N-central:
- In SolarWinds N-central, in the Actions section, click Push Third Party Software.
- Under Software to deploy, in the Location list, select From Network Share.
- Select Custom Network Share.
- In Network Path, specify the path to the shared folder with the installation package to be deployed. If necessary, specify credentials to access the shared folder.
- In File Name, specify the file name of the installation package.
- If you need to deploy the package with special parameters, specify the full command line in Command Line Parameters.
For the information about available installation parameters, refer to Online Help of the respective Kaspersky Lab security application.
- On the Targets tab, select the required device filters and individual devices to which the installation package must be deployed.
- Configure other parameters of the task, as required. For details, refer to the SolarWinds N-central documentation.
- Click the Save button.
The specified installation package is deployed to the specified devices.
Page top
Glossary
Administration Server
A component of Kaspersky Security Center that centrally stores information about all Kaspersky Lab applications that are installed within the corporate network. Administration Server can also be used to manage these applications.
Network Agent
A Kaspersky Security Center component that enables interaction between the Administration Server and Kaspersky Lab applications that are installed on a specific network node (workstation or server).
Anti-virus databases
Databases that contain information about computer security threats known to Kaspersky Lab as of when the anti-virus databases are released. Entries in anti-virus databases allow malicious code to be detected in scanned objects. Anti-virus databases are created by Kaspersky Lab specialists and updated hourly.
Virus
A program that infects other ones, by adding its code to them in order to gain control when infected files are run. This simple definition allows identifying the main action performed by any virus: infection.
Administration Server client (Client computer)
A computer, server, or workstation on which Network Agent and managed Kaspersky Lab applications are running.
Update
A function performed by a Kaspersky Lab application that enables it to keep computer protection up-to-date. During the update, an application downloads updates for its databases and modules from Kaspersky Lab update servers and automatically installs and applies them.
Kaspersky Lab update servers
HTTP servers at Kaspersky Lab from which Kaspersky Lab applications download database and application module updates.
Protection status
Current protection status, which reflects the level of computer security.
Page top
Contact Technical Support
This section describes how to get technical support and the terms on which it is available.
How to get technical support
If you cannot find a solution to your issue in the Kaspersky Security Integrations for MSP documentation or in any of the sources of information about Kaspersky Security Integrations for MSP, contact Technical Support. Technical Support specialists will answer all your questions about configuring and using Kaspersky Security Integrations for MSP.
Before contacting Technical Support, please read the support rules.
You can contact Technical Support in one of the following ways:
- By visiting the Technical Support website
- By sending a request to Technical Support from the Kaspersky CompanyAccount portal
Technical Support via Kaspersky CompanyAccount
Kaspersky CompanyAccount is a portal for companies that use Kaspersky Lab applications. The Kaspersky CompanyAccount portal is designed to facilitate interaction between users and Kaspersky Lab specialists through online requests. You can use Kaspersky CompanyAccount to track the status of your online requests and store a history of them as well.
You can register all of your organization's employees under a single account on Kaspersky CompanyAccount. A single account lets you centrally manage electronic requests from registered employees to Kaspersky Lab and also manage the privileges of these employees via Kaspersky CompanyAccount.
The Kaspersky CompanyAccount portal is available in the following languages:
- English
- Spanish
- Italian
- German
- Polish
- Portuguese
- Russian
- French
- Japanese
To learn more about Kaspersky CompanyAccount, visit the Technical Support website.
Page top
AO Kaspersky Lab
Kaspersky Lab is a world-renowned vendor of systems protecting computers against digital threats, including viruses and other malware, unsolicited email (spam), and network and hacking attacks.
In 2008, Kaspersky Lab was rated among the world’s top four leading vendors of information security software solutions for end users (IDC Worldwide Endpoint Security Revenue by Vendor). Kaspersky Lab is the preferred vendor of computer protection systems for home users in Russia (IDC Endpoint Tracker 2014).
Kaspersky Lab was founded in Russia in 1997. It has since grown into an international group of companies with 38 offices in 33 countries. The company employs more than 3,000 skilled professionals.
Products. Kaspersky Lab products provide protection for all systems, from home computers to large corporate networks.
The personal product range includes security applications for desktop, laptop, and tablet computers, smartphones and other mobile devices.
The company offers protection and control solutions and technologies for workstations and mobile devices, virtual machines, file and web servers, mail gateways, and firewalls. The company's portfolio also features specialized products providing protection against DDoS attacks, protection for industrial control systems, and prevention of financial fraud. Used in conjunction with centralized management tools, these solutions ensure effective automated protection for companies and organizations of any size against computer threats. Kaspersky Lab products are certified by major test laboratories, compatible with software from diverse vendors, and optimized to run on many hardware platforms.
Kaspersky Lab virus analysts work around the clock. Every day they uncover hundreds of thousands of new computer threats, create tools to detect and disinfect them, and include their signatures in databases used by Kaspersky Lab applications.
Technologies. Many technologies that are now part and parcel of modern anti-virus tools were originally developed by Kaspersky Lab. It is no coincidence that many other developers use the Kaspersky Anti-Virus engine in their products, including: Alcatel-Lucent, Alt-N, Asus, BAE Systems, Blue Coat, Check Point, Cisco Meraki, Clearswift, D-Link, Facebook, General Dynamics, H3C, Juniper Networks, Lenovo, Microsoft, NETGEAR, Openwave Messaging, Parallels, Qualcomm, Samsung, Stormshield, Toshiba, Trustwave, Vertu, and ZyXEL. Many of the company’s innovative technologies are patented.
Achievements. Over the years, Kaspersky Lab has won hundreds of awards for its services in combating computer threats. Following tests and research conducted by the reputed Austrian test laboratory AV-Comparatives in 2014, Kaspersky Lab ranked among the top two vendors by the number of Advanced+ certificates earned and was ultimately awarded the Top Rated certificate. But Kaspersky Lab's main achievement is the loyalty of its users worldwide. The company’s products and technologies protect more than 400 million users, and its corporate clients number more than 270,000.
Kaspersky Lab website: |
|
Virus encyclopedia: |
|
Virus Lab: |
https://virusdesk.kaspersky.com (for analyzing suspicious files and websites) |
Kaspersky Lab’s web forum: |
Page top
Kaspersky Lab End User License Agreement
KASPERSKY LAB END USER LICENSE AGREEMENT
IMPORTANT LEGAL NOTICE TO ALL USERS: CAREFULLY READ THE FOLLOWING LEGAL AGREEMENT BEFORE YOU START USING THE SOFTWARE.
BY USING THE SOFTWARE, YOU CONFIRM IN A LEGALLY BINDING WAY THAT YOU AS THE ORGANIZATION FOR WHICH THE SOFTWARE IS DOWNLOADED OR ACQUIRED HAVE AUTHORIZED THE NATURAL PERSON ACCEPTING THIS LICENSE AGREEMENT TO ENTER INTO THIS LICENSE AGREEMENT FOR AND ON BEHALF OF YOU. FURTHERMORE, YOU CONSENT TO BE BOUND BY THE TERMS AND CONDITIONS OF THIS LICENSE AGREEMENT. SUCH ACTION IS A SYMBOL OF YOUR SIGNATURE AND YOU ARE CONSENTING TO BE BOUND BY AND ARE BECOMING A PARTY TO THIS LICENSE AGREEMENT AND AGREE THAT THIS LICENSE AGREEMENT IS ENFORCEABLE LIKE ANY WRITTEN NEGOTIATED AGREEMENT SIGNED BY YOU. IF YOU DO NOT AGREE TO ALL OF THE TERMS AND CONDITIONS OF THIS LICENSE AGREEMENT, DO NOT USE THE SOFTWARE AND DELETE THE SOFTWARE.
IF LICENSE CONTRACT OR SIMILAR DOCUMENT ACCOMPANIES SOFTWARE, TERMS OF THE SOFTWARE USE DEFINED IN SUCH DOCUMENT PREVAIL OVER CURRENT END USER LICENSE AGREEMENT.
BY USING THE SOFTWARE, YOU HAVE THE RIGHT TO USE THE SOFTWARE IN ACCORDANCE WITH THE TERMS AND CONDITIONS OF THIS LICENSE AGREEMENT.
1. Definitions
1.1. Software means software including any Updates and related materials.
1.2. Rightholder (owner of all rights, whether exclusive or otherwise to the Software) means AO Kaspersky Lab, a company incorporated according to the laws of the Russian Federation.
1.3. Computer(s) means combination of hardware(s), including personal computers, laptops, workstations, personal digital assistants, ‘smart phones’, hand-held devices, or other electronic devices, and operating system(s) (including system virtual machines) for which the Software was designed where the Software will be installed and/or used.
1.4. End User (You/Your) means the organization for which the Software is downloaded or installed and it is represented hereby that such organization has authorized the person accepting this agreement to do so on its behalf. For purposes hereof the term "organization", without limitation, includes any partnership, limited liability company, corporation, association, joint stock company, trust, joint venture, labor organization, unincorporated organization, or governmental authority. If the Software was downloaded or installed on behalf of individual, End User ("You") further means such individual.
1.5. Partner(s) means organizations or individual(s), who distributes the Software based on an agreement and license with the Rightholder.
1.6. Update(s) means all upgrades, revisions, patches, enhancements, fixes, modifications, copies, additions or maintenance packs etc.
1.7. User Manual means user manual, administrator guide, reference book and related explanatory or other materials.
2. Grant of License
2.1. You are given a non-exclusive license to store, load, install, execute, and display (to "use") the free of charge Software, according to the all technical requirements described in the User Manual and according to the terms and conditions of this Agreement (the "License").
2.2. You have the right to make a copy of the Software solely for back-up purposes and only to replace the legally owned copy if such copy is lost, destroyed or becomes unusable. This back-up copy cannot be used for other purposes and must be destroyed when you lose the right to use the Software.
3. Term and termination
3.1. The Software can be used perpetually upon your acceptance of this Agreement.
3.2. Without prejudice to any other remedy in law or in equity that the Rightholder may have, in the event of any breach by You of any of the terms and conditions of this Agreement, the Rightholder shall at any time without notice to You be entitled to terminate this License.
3.3. You agree that in using the Software and in using any report or information derived as a result of using this Software, you will comply with all applicable international, national, state, regional and local laws and regulations, including, without limitation, privacy, copyright, export control and obscenity law.
4. Technical Support
4.1. Technical Support is provided only for clients of the commercial versions of the Rightholder’s software in accordance with the Technical Support rules.
Technical support service and its rules are located at: http://support.kaspersky.com.
5. Limitations
5.1. You shall not emulate, clone, rent, lend, lease, sell, modify, decompile, or reverse engineer the Software or disassemble or create derivative works based on the Software or any portion thereof with the sole exception of a non-waivable right granted to You by applicable legislation, and you shall not otherwise reduce any part of the Software to human readable form or transfer the licensed Software, or any subset of the licensed Software, nor permit any third party to do so, except to the extent the foregoing restriction is expressly prohibited by applicable law. Neither Software’s binary code nor source code may be used or reverse engineered to re-create the program algorithm, which is proprietary. All rights not expressly granted herein are reserved by Rightholder and/or its suppliers, as applicable. Any such unauthorized use of the Software shall result in immediate and automatic termination of this Agreement and the License granted hereunder and may result in criminal and/or civil prosecution against You.
5.2. You shall not transfer the rights to use the Software to any third party.
5.3. You shall not rent, lease or lend the Software to any third party.
5.4. Violation of the intellectual rights to the Software shall result in civil, administrative or criminal liability in accordance with the law.
6. Limited Warranty and Disclaimer
6.1. The Rightholder guarantees that the Software will substantially perform according to the specifications and descriptions set forth in the User Manual provided however that such limited warranty shall not apply to the following: (w) Your Computer’s deficiencies and related infringement for which Rightholder’s expressly disclaims any warranty responsibility; (x) malfunctions, defects, or failures resulting from misuse; abuse; accident; neglect; improper installation, operation or maintenance; theft; vandalism; acts of God; acts of terrorism; power failures or surges; casualty; alteration, non-permitted modification, or repairs by any party other than Rightholder; or any other third parties’ or Your actions or causes beyond Rightholder’s reasonable control; (y) any defect not made known by You to Rightholder as soon as practical after the defect first appears; and (z) incompatibility caused by hardware and/or Software components installed on Your Computer.
6.2. You acknowledge, accept and agree that no software is error free and You are advised to back-up the Computer, with frequency and reliability suitable for You.
6.3. The Rightholder does not provide any guarantee that the Software will work correctly in case of violations of the terms described in the User Manual or in this Agreement.
6.4. You acknowledge that the Software will be provisioned with Rightholder standard settings applied by default and that it is Your sole responsibility to configure the Software to satisfy Your own requirements.
6.5. THE SOFTWARE IS PROVIDED "AS IS" AND AO KASPERSKY LAB MAKES NO REPRESENTATION AND GIVES NO WARRANTY AS TO ITS USE OR PERFORMANCE. EXCEPT FOR ANY WARRANTY, CONDITION, REPRESENTATION OR TERM THE EXTENT TO WHICH CANNOT BE EXCLUDED OR LIMITED BY APPLICABLE LAW AO KASPERSKY LAB AND ITS PARTNERS MAKE NO WARRANTY, CONDITION, REPRESENTATION, OR TERM (EXPRESS OR IMPLIED, WHETHER BY STATUTE, COMMON LAW, CUSTOM, USAGE OR OTHERWISE) AS TO ANY MATTER INCLUDING, WITHOUT LIMITATION, NONINFRINGEMENT OF THIRD PARTY RIGHTS, MERCHANTABILITY, SATISFACTORY QUALITY, INTEGRATION, OR APPLICABILITY FOR A PARTICULAR PURPOSE. YOU ASSUME ALL FAULTS, AND THE ENTIRE RISK AS TO PERFORMANCE AND RESPONSIBILITY FOR SELECTING THE SOFTWARE TO ACHIEVE YOUR INTENDED RESULTS, AND FOR THE INSTALLATION OF, USE OF, AND RESULTS OBTAINED FROM THE SOFTWARE. WITHOUT LIMITING THE FOREGOING PROVISIONS, AO KASPERSKY LAB MAKES NO REPRESENTATION AND GIVES NO WARRANTY THAT THE SOFTWARE WILL BE ERROR-FREE OR FREE FROM INTERRUPTIONS OR OTHER FAILURES OR THAT THE SOFTWARE WILL MEET ANY OR ALL YOUR REQUIREMENTS WHETHER OR NOT DISCLOSED TO THE RIGHTHOLDER.
7. Exclusion and Limitation of Liability
7.1. TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, IN NO EVENT SHALL THE RIGHTHOLDER OR ITS PARTNERS BE LIABLE FOR ANY SPECIAL, INCIDENTAL, PUNITIVE, INDIRECT, OR CONSEQUENTIAL DAMAGES WHATSOEVER (INCLUDING, BUT NOT LIMITED TO, DAMAGES FOR LOSS OF PROFITS OR CONFIDENTIAL OR OTHER INFORMATION, FOR BUSINESS INTERRUPTION, FOR LOSS OF PRIVACY, FOR CORRUPTION, DAMAGE AND LOSS OF DATA OR PROGRAMS, FOR FAILURE TO MEET ANY DUTY INCLUDING ANY STATUTORY DUTY, DUTY OF GOOD FAITH OR DUTY OF REASONABLE CARE, FOR NEGLIGENCE, FOR ECONOMIC LOSS, AND FOR ANY OTHER PECUNIARY OR OTHER LOSS WHATSOEVER) ARISING OUT OF OR IN ANY WAY RELATED TO THE USE OF OR INABILITY TO USE THE SOFTWARE, THE PROVISION OF OR FAILURE TO PROVIDE SUPPORT OR OTHER SERVICES, INFORMATON, SOFTWARE, AND RELATED CONTENT THROUGH THE SOFTWARE OR OTHERWISE ARISING OUT OF THE USE OF THE SOFTWARE, OR OTHERWISE UNDER OR IN CONNECTION WITH ANY PROVISION OF THIS AGREEMENT, OR ARISING OUT OF ANY BREACH OF CONTRACT OR ANY TORT (INCLUDING NEGLIGENCE, MISREPRESENTATION, ANY STRICT LIABILITY OBLIGATION OR DUTY), OR ANY BREACH OF STATUTORY DUTY, OR ANY BREACH OF WARRANTY OF THE RIGHTHOLDER AND/OR ANY OF ITS PARTNERS, EVEN IF THE RIGHTHOLDER AND/OR ANY PARTNER HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
YOU AGREE THAT IN THE EVENT THE RIGHTHOLDER AND/OR ITS PARTNERS ARE FOUND LIABILE, THE LIABILITY OF THE RIGHTHOLDER AND/OR ITS PARTNERS SHALL BE LIMITED BY THE COSTS OF THE SOFTWARE. IN NO CASE SHALL THE LIABILITY OF THE RIGHTHOLDER AND/OR ITS PARTNERS EXCEED THE FEES PAID FOR THE SOFTWARE TO THE RIGHTHOLDER OR THE PARTNER (AS MAY BE APPLICABLE).
NOTHING IN THIS AGREEMENT EXCLUDES OR LIMITS ANY CLAIM FOR DEATH AND PERSONAL INJURY. FURTHER IN THE EVENT ANY DISCLAIMER, EXCLUSION OR LIMITATION IN THIS AGREEMENT CANNOT BE EXLUDED OR LIMITED ACCORDING TO APPLICABLE LAW THEN ONLY SUCH DISCLAIMER, EXCLUSION OR LIMITATION SHALL NOT APPLY TO YOU AND YOU CONTINUE TO BE BOUND BY ALL THE REMAINING DISCLAIMERS, EXCLUSIONS AND LIMITATIONS.
8. GNU and Other Third-Party Licenses
8.1. The Software may include some software programs that are licensed (or sublicensed) to the user under the GNU General Public License (GPL) or other similar free software licenses which, among other rights, permit the user to copy, modify and redistribute certain programs, or portions thereof, and have access to the source code "Open-Source Software"). If such licenses require that for any software, which is distributed to someone in an executable binary format, that the source code also be made available to those users, then the source code should be made available by sending the request to source@kaspersky.com or the source code is supplied with the Software. If any Open-Source Software licenses require that the Rightholder provide rights to use, copy or modify an Open-Source Software program that are broader than the rights granted in this Agreement, then such rights shall take precedence over the rights and restrictions herein.
9. Intellectual Property Ownership
9.1. You agree that the Software and the authorship, systems, ideas, methods of operation, documentation and other information contained in the Software, are proprietary intellectual property and/or the valuable trade secrets of the Rightholder or its partners and that the Rightholder and its partners, as applicable, are protected by civil and criminal law, and by the law of copyright, trade secret, trademark and patent of the Russian Federation, European Union and the United States of America, as well as other countries and international treaties. This Agreement does not grant to You any rights to the intellectual property including any trademarks or service marks of the Rightholder and/or its partners ("Trademarks"). You may use the Trademarks only insofar as to identify printed output produced by the Software in accordance with accepted trademark practice, including identification of the Trademark owner’s name. Such use of any Trademark does not give you any rights of ownership in that Trademark. The Rightholder and/or its partners own and retain all right, title, and interest in and to the Software, including without limitation any error corrections, enhancements, Updates or other modifications to the Software, whether made by the Rightholder or any third party, and all copyrights, patents, trade secret rights, trademarks, and other intellectual property rights therein. Your possession, installation or use of the Software does not transfer to you any title to the intellectual property in the Software, and you will not acquire any rights to the Software except as expressly set forth in this Agreement. All copies of the Software made hereunder must contain the same proprietary notices that appear on and in the Software. Except as stated herein, this Agreement does not grant you any intellectual property rights in the Software and you acknowledge that the License granted under this Agreement only provides you with a right of limited use under the terms and conditions of this Agreement. Rightholder reserves all rights not expressly granted to you in this Agreement.
9.2. You acknowledge that the source code is proprietary to the Rightholder and constitutes trade secrets of the Rightholder. You agree not to modify, adapt, translate, reverse engineer, decompile, disassemble or otherwise attempt to discover the source code of the Software in any way.
9.3. You agree not to modify or alter the Software in any way. You may not remove or alter any copyright notices or other proprietary notices on any copies of the Software.
10. Governing Law; Arbitration
10.1. This Agreement will be governed by and construed in accordance with the laws of the Russian Federation without reference to conflicts of law rules and principles. This Agreement shall not be governed by the United Nations Convention on Contracts for the International Sale of Goods, the application of which is expressly excluded.
If you are an individual, this does not impair your rights according to the consumer protection of the country in which you are resident.
Any dispute arising out of the interpretation or application of the terms of this Agreement or any breach thereof shall, unless it is settled by direct negotiation, be settled by in the International Commercial Arbitration Court at the Russian Federation Chamber of Commerce and Industry in Moscow, the Russian Federation. Any award rendered by the arbitrator shall be final and binding on the parties and any judgment on such arbitration award may be enforced in any court of competent jurisdiction. Nothing in this Section 10 shall prevent a Party from seeking or obtaining equitable relief from a court of competent jurisdiction, whether before, during or after arbitration proceedings.
11. Period for Bringing Actions
11.1. No action, regardless of form, arising out of the transactions under this Agreement, may be brought by either party hereto more than one (1) year after the cause of action has occurred, or was discovered to have occurred, except that an action for infringement of intellectual property rights may be brought within the maximum applicable statutory period.
EXCEPTION FOR GERMAN CUSTOMERS: If you are a German individual customer, the provisions under item 11 do not apply to you.
12. Entire Agreement; Severability; No Waiver
12.1. This Agreement is the entire agreement between you and Rightholder and supersedes any other prior agreements, proposals, communications or advertising, oral or written, with respect to the Software or to subject matter of this Agreement. You acknowledge that you have read this Agreement, understand it and agree to be bound by its terms.
12.2. If any provision of this Agreement is found by a court of competent jurisdiction to be invalid, void, or unenforceable for any reason, in whole or in part, such provision will be more narrowly construed so that it becomes legal and enforceable, and the entire Agreement will not fail on account thereof and the balance of the Agreement will continue in full force and effect to the maximum extent permitted by law or equity while preserving, to the fullest extent possible, its original intent.
12.3. No waiver of any provision or condition herein shall be valid unless in writing and signed by you and an authorized representative of Rightholder provided that no waiver of any breach of any provisions of this Agreement will constitute a waiver of any prior, concurrent or subsequent breach. Rightholder’s failure to insist upon or enforce strict performance of any provision of this Agreement or any right shall not be construed as a waiver of any such provision or right.
13. Rightholder Contact Information
Should you have any questions concerning this Agreement, or if you desire to contact the Rightholder for any reason, please contact our Customer Service Department at:
AO Kaspersky Lab, 39A/3, Leningradskoe Shosse
Moscow, 125212
Russian Federation
E-mail: info@kaspersky.com
Web site: www.kaspersky.com
© 2018 AO Kaspersky Lab. All Rights Reserved. The Software and any accompanying documentation are copyrighted and protected by copyright laws and international copyright treaties, as well as other intellectual property laws and treaties.
Page top
Trademark notices
Registered trademarks and service marks are the property of their respective owners.
Microsoft, Windows, and Windows Server are registered trademarks of Microsoft Corporation in the United States and other countries.
SolarWinds and N-central trademarks are the exclusive property of SolarWinds Worldwide, LLC or its affiliates, are registered with the U.S. Patent and Trademark Office, and may be registered or pending registration in other countries.
Page top