This section describes the steps to be performed by the administrator when configuring devices running Kaspersky Thin Client for management via a new Kaspersky Security Center Administration Server (hereinafter also referred to as "the Server") if these devices were previously managed via a different Kaspersky Security Center Server.
The scenario for configuring Kaspersky Thin Client management when migrating thin clients to a new Kaspersky Security Center Server consists of the following steps:
Download the Kaspersky Security Center distribution package and install the full version of Kaspersky Security Center on the server. The distribution package for the full version of Kaspersky Security Center includes the Kaspersky Security Center Web Console. We recommend selecting the standard installation. For details on installing Kaspersky Security Center, please refer to the Installation of Kaspersky Security Center section of the Kaspersky Security Center Online Help Guide.
If you plan to use the default port to connect the thin client to Kaspersky Security Center, set the rules allowing TCP connections through port 13292 for the operating system firewall of the server on which Kaspersky Security Center is installed. If you plan to use a port other than 13292, set the permissions accordingly. For detailed information on configuring firewall rules, please refer to the relevant documentation on the operating system you are using.
In the Web Console, install the Kaspersky Security Management Suite web plug-in for the new Kaspersky Security Center Administration Server.
Kaspersky Thin Client uses a mobile protocol to connect to Kaspersky Security Center. On the Kaspersky Security Center Administration Server, enable use of the TCP port that you set up access to in step 2. For details on TCP port enabling on the Kaspersky Security Center Administration Server, see the Modifying the Mobile Device Management settings section of the Kaspersky Security Center Online Help Guide.
Turn on Kaspersky Thin Client and wait for the system to load.
In the previously used Web Console, create an active policy for the group of devices that will be managed through the new Kaspersky Security Center Server.
Issue a certificate, save it on the current Kaspersky Security Center Administration Server as a reserve one, and then use it on the new Server as the primary certificate.
If a DHCP server is deployed in your enterprise infrastructure and the settings for connecting Kaspersky Thin Client to Kaspersky Security Center are received automatically, use option 224 to define the IP address or domain name of the new Kaspersky Security Center Administration Server and wait for all devices running Kaspersky Thin Client to finish synchronizing with Kaspersky Security Center.
If a DHCP server is not deployed in your enterprise infrastructure, manually configure the connection to the new Kaspersky Security Center in the Kaspersky Thin Client interface.
Thin client administration groups are connected to the new Kaspersky Security Center Server, and you can manage them using the Web Console interface.
Page top