If you are using the distributed solution and multitenancy mode, use the web interface of the PCN or SCN server for which you want to configure parameters.
You can change the operational load on the Central Node component. For example, you can connect additional hosts with the Endpoint Agent component or servers with the Sensor component to the Central Node component. To do this, you need to specify the planned volume of SPAN traffic, mail traffic, the number of hosts with the Endpoint Agent component, as well as the size of the Storage and event database. Kaspersky Anti Targeted Attack Platform will determine the optimal configuration of the Central Node server taking into account the specified settings.
If the Central Node component is deployed as a cluster, the application determines the optimal configuration of all servers in the cluster.
For the cluster to function, after configuring the sizing parameters, time must be synchronized on servers of the cluster. Before configuring sizing parameters, make sure that integration with a functioning NTP server is configured for at least one server in the cluster.
You can configure NTP server integration in the web interface of Kaspersky Anti Targeted Attack Platform or in the component administrator menu on any server in the cluster. If you have not previously configured NTP server integration, we recommend restarting the cluster servers after configuring it.
To configure the Central Node servers:
If you are using the high availability version of the application, you can enter the IP address of any server of the Central Node cluster or the fully qualified domain name (FQDN) of the cluster.
An input window for account credentials of the Kaspersky Anti Targeted Attack Platform user opens.
For details on how to calculate the effective number of Endpoint Agent hosts, see the scaling guide.
If you are not using a KEDR license key, specify 0.
If you are not using a KATA license key, specify 0.
If you are not using a KATA license key, specify 0.
Keep in mind that reducing the size of the event database or Storage irreversibly deletes the oldest data in accordance with the rotation rules. Enlarging the event database or Storage does not cause data loss.
If the Central Node component is deployed as a high availability cluster, use the Sizing Guide to calculate the size of the events database.
Disk space is automatically reserved for the alert database when the Central Node component is installed.
If Central Node is installed on a server, Kaspersky Anti Targeted Attack Platform determines the optimal server configuration in accordance with the specified parameters. If Central Node is installed as a cluster, the application configures the servers of the cluster.
Page top