What's new

Kaspersky Security Center 15.1 Update 2

Kaspersky Security Center 15.1 Update 2 focuses on fixing issues reported by users and the testing team:

• Tasks are now executed correctly for the scope of Linux-based managed devices specified by importing a TXT file.
• Now, when a Kaspersky application is installed by using a remote installation task created on a virtual Administration Server, installation packages are transmitted to managed devices by using operating system tools only through the distribution point managed by that virtual Administration Server.
• Resolved an issue where a secondary Administration Server failed to reconnect to the primary Administration Server after the rotation of the secondary Server’s certificate.
• Resolved issues affecting TLS connections.
• Resolved an issue that caused multiple "Invalid typecast" errors during user login.
• Kaspersky Security Center now sends event notifications by email correctly.
• Fixed an issue with adding the Updates folder to the backup copy when upgrading Kaspersky Security Center from version 14.2 to version 15.1.
• The expiration date of the Kaspersky application license is now displayed correctly in Kaspersky Security Center Web Console.
• The Locate the mobile device and Get device location history commands now work correctly.
• Fixed an issue where installation packages with mobile certificates were not deleted automatically 1 hour after download or 24 hours after remaining unused.
• The policy profile activated by a specific tag is now correctly applied to devices whose descriptions contain that tag.
• Fixed an issue that caused PostgreSQL database error messages to appear in the event log.
• Excluding an account from two-step verification now functions correctly.
• Fixed an issue where signing out of Kaspersky Security Center Web Console did not work properly when using domain authentication with Identity and Access Manager enabled.
• Now, when updating a management web plug-in, clicking the link with the required plug-in version starts the download.
• Fixed issues in reports:
  • When you create a delivery task for the reports on threats and on updates, and set the task schedule to Monthly, the reports are filled with data correctly.
  • In the Report on status of application components template, the filters by component name are correctly applied.
  • The Report on protection deployment can now be filtered to display only the devices on which Kaspersky applications are not installed. This helps to visualize the number of devices where the applications are to be installed.
• The Cloud Discovery widget is correctly displayed whether or not you have the Execute right in the General features: Basic functionality area.
• Improved performance of stored procedures and database operations.
• Fixed an issue where expired certificates linked to non-existent users caused the renewal process to stop for all users.
• Resolved issues affecting proper handling of certificates.
• After upgrading Kaspersky Security Center from version 14.2 to 15.1, downloading a stand-alone installation package from a secondary virtual Administration Server in the Administration Console now works correctly.
• Fixed an issue in Kaspersky Security Center Web Console where, when enabling the use of Kaspersky Security Network (KSN) in the Kaspersky application policy, accepting the KSN Statement was not available for the following applications: Kaspersky Endpoint Security for Linux version 12.2 or earlier, Kaspersky Industrial CyberSecurity for Linux Nodes version 1.5 or earlier, Kaspersky Security for Virtualization Light Agent version 6.0 and 6.1, Kaspersky Embedded Systems Security for Linux version 3.3, and Kaspersky Security for Windows Server version 11.0.1.897.
• Fixed an issue where a policy profile was not applied to Linux-based devices included in an Active Directory domain group.
• Fixed an issue that occurred during connection attempts from several second-level secondary Administration Servers to the primary Administration Server.

Kaspersky Security Center 15.1

Kaspersky Security Center 15.1 has several new features and improvements:

• Cloud Discovery. This is a new feature that allows you to monitor attempts to use cloud services on managed devices running Windows, and to block access to cloud services that you consider unwanted. This feature is only available in Kaspersky Security Center Web Console.
• Domain controller polling now allows you to poll a Samba domain controller through a Linux-based distribution point. Additional improvements were made to support polling of large domains.
• Enhanced remote diagnostics of Linux-based managed devices.
• Extended hardware inventory of macOS devices. Network Agent on a macOS device sends the MAC address and device serial number to Administration Server.
• You can now check the connection to a SIEM system.
• The maximum password length for an internal user was increased to 256 characters.
• When you migrate from Kaspersky Security Center Windows to Kaspersky Security Center Linux, you can now switch the managed devices to be under management of Kaspersky Security Center Linux through restoring the certificate and private key of Administration Server from a backup copy.
• When you run the Cleaner tool or the klmover utility to remove a password-protected Network Agent, you are prompted to enter the uninstallation password.
• Upgrade from Kaspersky Security for Windows Server to Kaspersky Endpoint Security for Windows no longer requires the target device to restart.
• A user can be assigned as a device owner during or after installation of Network Agent on a client device on Linux.
• You can now receive a report on remote installation when you install software on the managed devices through custom scripts.
• When you execute several custom scripts on a managed device, you can set a priority for each script to define the execution order. The scripts will be executed from the one with the highest priority to the one with the lowest priority.
• Extended policy audit. You can now view the contents of a policy revision and save a policy revision to a file. Currently, these features are only available for the Administration Server policy and Network Agent policy.
• User experience improvements, including:
  • Main menu personalization by pinning sections of Kaspersky Security Center Web Console for quick access from the Pinned section.
  • Optimized work with tables. The default view of each table now contains the most frequently used columns. Also, you can now select all items on the current page or in the entire table, as well as sort items in the entire table.
  • Improved report delivery configuration. You can now specify up to 20 email addresses to send the report to, and the report delivery schedule.
• You can revoke local administrator rights from accounts on Linux-based managed devices. This provides you with an extra layer of control of user accounts. For example, you can revoke local administrator rights after a one-time assignment is complete.
• You can change the local account password on Linux-based managed devices, for example, when a user forgets the local account password or to perform a scheduled password change.
• In the User certificates management subsection, you can specify which root certificates to install. These certificates can be used, for example, to verify the authenticity of websites or web servers.
• Report on network attacks now includes the MAC address and port of the attacking device.
• A new option to force an internal user to change a password at the next attempt to sign in to Kaspersky Security Center Web Console.
• A commercial license is not checked anymore when you export events to a SIEM system in the CEF or LEEF formats.
• When you migrate from one Kaspersky application to another and your current application is password-protected, you can now specify the uninstallation password in the remote installation task.
• Exchange ActiveSync is no longer supported.

Kaspersky Security Center 14.2

Kaspersky Security Center 14.2 has several new features and improvements:

• A new Hardening Guide was released. We highly recommend that you carefully read the guide and follow the security recommendations to configure Kaspersky Security Center and your network infrastructure.

  Also, please install the latest update to Kaspersky Security Center. This update includes infrastructure protection features such as two-step verification of user accounts and other improvements.

• Access to Kaspersky servers is now verified automatically. If access to the servers by using the system DNS is not possible, the application uses the public DNS.
• User rights on a virtual Administration Server are available for configuration any time, independently from the primary Administration Server. Also, you can assign primary Server users the rights to manage a virtual Server.
• Kaspersky Security Center now supports work with the following DBMSs:
  • PostgreSQL 13.x
  • PostgreSQL 14.x
  • Postgres Pro 13.x (all editions)
  • Postgres Pro 14.x (all editions)
  • MariaDB 10.1, 10.4, 10.5
• You can use Kaspersky Security Center Web Console to export policies and tasks to a file, and then import the policies and tasks to Kaspersky Security Center Windows or Kaspersky Security Center Linux.
• The Do not use proxy server option has been removed from the following tasks:
  • Download updates to the Administration Server repository
  • Download updates to the repositories of distribution points
• To protect client devices in a cloud environment, you can deploy Kaspersky Endpoint Security for Windows instead of Kaspersky Security for Windows Server. This feature is now available after the release of Kaspersky Endpoint Security 12.0 for Windows.
• Work with the encryption keys is now limited by the access rights for the General features: Encryption Key Management functional area. Users of Kaspersky Security Center can now export encryption keys if they have the Read right, and can import encryption keys if they have the Write right.

Kaspersky Security Center 14

Kaspersky Security Center 14 has several new features and improvements:

• You can install updates and fix vulnerabilities of third-party software (excluding Microsoft software) in an isolated network. Such networks include Administration Servers and managed devices that have no internet access. To fix vulnerabilities in this kind of network, you need to download required updates by using an Administration Server with internet access, and then transmit the patches to the isolated Administration Servers.
• Connection profiles for out-of-office users have been added for macOS devices. By using connection profiles, you can configure the rules for Network Agents on macOS devices to connect to the same or different Administration Servers, depending on the device location.
• Network Agent can now be installed on devices running Microsoft Windows 10 IoT Enterprise.
• In the Report on threats, you can now filter the threat list to view only those threats that were detected by Cloud Sandbox.
• Kaspersky Security Center now supports Kaspersky Industrial CyberSecurity for Linux Nodes 1.3 as a managed application.

Kaspersky Security Center Web Console has several new features and improvements:

• You can configure the Dashboard-only mode for employees who do not manage the network but who want to view the network protection statistics in Kaspersky Security Center (for example, a top manager). When a user has this mode enabled, only a dashboard with a predefined set of widgets is displayed. Thus, he or she can monitor the statistics specified in the widgets, for example, the protection status of all managed devices, the number of recently detected threats, or the list of the most frequent threats in the network.
• Kaspersky Security Center Web Console now supports Kaspersky Security for iOS as a security application.
• In the task properties, you can specify whether or not you want to apply the task to subgroups and secondary Administration Servers (including virtual ones).
• Kaspersky Security Center now supports Kaspersky Industrial CyberSecurity for Linux Nodes 1.3 as a managed application.

Kaspersky Security Center 13.2

Kaspersky Security Center 13.2 has several new features and improvements:

• You can now install Administration Server, Administration Console, Kaspersky Security Center 13.2 Web Console, and Network Agent on the following new operation systems (see the software requirements for details):
  • Microsoft Windows 11
  • Microsoft Windows 10 21H2 (October 2021 Update)
  • Windows Server 2022
• You can use MySQL 8.0 as the database.
• You can deploy Kaspersky Security Center on a Kaspersky Security Center failover cluster, to provide high availability of Kaspersky Security Center.
• Kaspersky Security Center now works with IPv6 addresses, as well as IPv4 addresses. Administration Server can poll networks that have devices with IPv6 addresses.

Kaspersky Security Center 13.2 Web Console has several new features and improvements:

• You can now manage mobile devices running Android via Kaspersky Security Center 13.2 Web Console.
• Kaspersky marketplace is available as a new menu section: you can search for a Kaspersky application via Kaspersky Security Center 13.2 Web Console.
• Kaspersky Security Center now supports the following Kaspersky applications:
  • Kaspersky Endpoint Detection and Response Optimum 2.0
  • Kaspersky Sandbox 2.0
  • Kaspersky Industrial CyberSecurity for Networks 3.1

Kaspersky Security Center 13.1

Kaspersky Security Center 13.1 has several new features and improvements:

• The integration with SIEM systems has been improved. You can now export events to SIEM systems via the encrypted channel (TLS). The feature is available for Kaspersky Security Center Web Console and MMC-based Administration Console.
• You can now receive patches for the Administration Server as a distribution package, which you can use for future updates to later versions.
• A new section, Alerts, has been added for Kaspersky Endpoint Detection and Response Optimum to Kaspersky Security Center 13.1 Web Console. Several new widgets are also added for working with the threats detected by Kaspersky Endpoint Detection and Response Optimum.
• In Kaspersky Security Center 13.1 Web Console, you can now receive notifications about expiring licenses for Kaspersky applications.
• The response time for Kaspersky Security Center 13.1 Web Console has been decreased.

Kaspersky Security Center 13

The following features are added to Kaspersky Security Center 13 Web Console:

• Implemented two-step verification. You can enable two-step verification to reduce the risk of unauthorized access to Kaspersky Security Center 13 Web Console.
• Implemented domain authentication by using the NTLM and Kerberos protocols (single sign-on). The single sign-on feature allows a Windows user to enable secure authentication in Kaspersky Security Center 13 Web Console without having to re-enter the password on the corporate network.
• You can now configure a plug-in to work with Kaspersky Managed Detection and Response. You can use this integration to view incidents and manage workstations.
• You can now specify settings for Kaspersky Security Center 13 Web Console in the installation wizard of Administration Server.
• Notifications are displayed about new releases of updates and patches. You can install an update immediately or later at any time. You can now install patches for Administration Server via Kaspersky Security Center 13 Web Console.
• When working with tables, you can now specify the order and the width of columns, sort data, and specify the page size.
• You can now open any report by clicking its name.
• Kaspersky Security Center 13 Web Console is now available in the Korean language.
• A new section, Kaspersky announcements, is available in the Monitoring & reporting menu. This section keeps you informed by providing information related to your version of Kaspersky Security Center and the managed applications installed on the managed devices. Kaspersky Security Center periodically updates the information in this section by removing outdated announcements and adding new information. However, you can disable Kaspersky announcements if you want.
• Implemented additional authentication after changing the settings of a user account. You can enable protecting a user account from unauthorized modification. If this option is enabled, modifying user account settings requires authorization by a user with modification rights.

The following features are added to Kaspersky Security Center 13:

• Implemented two-step verification. You can enable two-step verification to reduce the risk of unauthorized access to the Administration Console. If this option is enabled, modifying user account settings requires authorization of the user with the rights for modification. You can now enable or disable two-step verification for KES devices.
• You can send messages to Administration Server over HTTP. A reference guide and a Python library for working with the OpenAPI of Administration Server are now available.
• You can issue a reserve certificate for use in iOS MDM profiles, to ensure seamless switching of managed iOS devices after the iOS MDM Server certificate expires.
• The multi-tenancy applications folder is no longer displayed in Administration Console.

Page top