Kaspersky Endpoint Security Self-Defense

Self-Defense prevents other applications from performing actions that can interfere with the operation of Kaspersky Endpoint Security and, for example, remove Kaspersky Endpoint Security from the computer. The set of available Self-Defense technologies for Kaspersky Endpoint Security depends on whether the operating system is 32-bit or 64-bit (refer to the table below). Self-Defense also includes Password protection and Administration Server connection protection.

Password protection lets you restrict users' access to Kaspersky Endpoint Security according to the permissions granted to them (for example, permission to exit the application).

Administration Server connection protection prevents unauthorized reconnection of the computer to an untrusted server.

Kaspersky Endpoint Security Self-Defense technologies

Technology	Description	x86 computer	x64 computer
Self-Defense mechanism	The technology blocks access to the following application components: files in the Kaspersky Endpoint Security installation folder and other files of the application; registry keys with records belonging to the application; processes that the application runs.
AM-PPL (Antimalware Protected Process Light)	The technology protects Kaspersky Endpoint Security processes against malicious actions. For more details about AM-PPL technology, please visit the Microsoft website. AM-PPL technology is available for Windows 10 version 1703 (RS2) or later, and Windows Server 2019 operating systems.
External management defense mechanism	This technology prevents remote administration applications (for example, TeamViewer or RemotelyAnywhere) from gaining access to Kaspersky Endpoint Security.		– (except for Windows 7)

In this section Enabling and disabling Self-Defense Enabling and disabling AM-PPL support Protection of application services against external management Supporting remote administration applications Password protection Administration Server connection protection

Page top