Adding a connector

You can add a connector based on one of the connector types that are available in the application.

Prior to adding a connector, you are advised to create a separate user account that the recipient system will use to connect to the application.

To add a connector:

1. Connect to the Kaspersky Industrial CyberSecurity for Networks Server through the web interface using the Administrator account.
2. Select Settings → Connectors.
3. On the Connectors tab, open the details area by clicking Add connector.
4. Configure the connector general settings:
   1. Select the relevant connector type and enter the connector name.
   2. If you want to add an unmanageable connector (or a connector configured to ignore the functions of a manageable connector), enter the password for accessing the connector certificate.

      Using the defined password, the certificate will be encrypted in the communication data package of the connector.

   3. Specify the address of the application Server.

      The connector will connect to the Server at the specified address.

   4. Specify the connector deployment node:
      • If you want to add a manageable connector, you can use one of the nodes that have application components installed as the connector deployment node.
      • If you want to add an unmanageable connector, you need to enter the IP address of the computer where the connector application modules will be running.
   5. Select the user account that the recipient system will use to connect to the application through the connector. You must indicate the name of one of the application users.
5. In the Details block, specify the advanced settings depending on the type of connector. The Details block is not shown in the details area if the connector type does not allow configuration of advanced settings.
6. If the connector type provides the capability to forward application messages and audit entries, use the corresponding check boxes to enable or disable forwarding of this data.
7. Enter a connector description if necessary.
8. Click Save.

   The new connector will appear in the connectors table.

   If an unmanageable connector was added, the Server generates a communication data package for the new connector. Then the browser saves the downloaded file. Depending on your browser settings, your screen may show a window in which you can change the path and name of the saved file. You will need to upload the contents of the new communication data package to the application that will use the connector.

9. For an unmanageable connector, create a service on the node hosting the connector. To do so, you can use the corresponding script:
   • If a Syslog, SIEM, Generic, or Email connector has been added, you can create a service by using the default_connectors_registrar.py script located in the directory /opt/kaspersky/kics4net-connectors/libexec/ on the node computer hosting the installed application components. To run the script, enter the following command in the operating system console:

     sudo python3 default_connectors_registrar.py create

     When prompted by the script to provide connector data, enter the name of the connector, the path to the communication data package, and the connector certificate access password.

   • If an Active poll connector has been added, you can create a service by using the register.py script located in the directory /opt/kaspersky/kics4net-apm/src/ on the node computer hosting the installed application components. To run the script, enter the following command in the operating system console:

     sudo python3 register.py -p "<full path to the communication data package>"

See also: Managing connectors About forwarding events, application messages and audit entries to recipient systems

Page top