Policy creation

To configure Kaspersky Thin Client installed on thin clients from an administration group, create a policy for that group in the Web Console.

By default, immediately after installing Kaspersky Security Center, there is one group in the hierarchy of administration groups—Managed devices. Any groups you create will be its child groups. In the policy created for the Managed devices group, you can configure devices across all administration groups. For example, we recommend using the policy to add certificates in a centralized manner. For more information about the hierarchy of groups and policies, see the Kaspersky Security Center Online Help.

To create a policy:

  1. In the main window of the Web Console, select Assets (Devices)Policies & profiles.
  2. Select the required administration group. To do this, click the current path at the top of the window and, in the panel that opens, click the required administration group.
  3. Click the Add button.
  4. In the list of applications displayed in the opened window, select the Kaspersky Thin Client administration web plug-in and click Next.
  5. In the new policy configuration window, on the General tab, specify the following settings:
    • In the Name field, enter the policy name.
    • In the Policy status block, select one of the following statuses:
      • Active

        The policy that is currently applied to devices in the administration group. If this option is selected, the next time you synchronize Kaspersky Thin Client and Kaspersky Security Center, this policy will become active. Each administration group can have only one active policy.

        This status is selected by default.

      • Inactive

        The policy that is not currently applied to devices in the administration group. If this option is selected, the policy becomes inactive but remains in the list of policies. You can later activate an inactive policy.

      • Out-of-office

        The policy is activated when the device leaves the organization's network perimeter.

    • Turn on or off the toggles in the Settings inheritance block:
      • Inherit settings from parent policy

        If the toggle is enabled, the policy settings are inherited from the policy for the top-level group and cannot be modified.

        By default, the option is enabled.

      • Force inheritance of settings in child policies

        The policy settings will be propagated to the policies of nested administration groups (child policies), and in the Settings Inheritance block, in the General section of each child policy properties window, the Inherit settings from parent policy option will be enabled automatically.

        When this setting is enabled, the child policy settings cannot be modified.

        By default, the option is disabled.

      For more information about the hierarchy of groups and policies, see the Kaspersky Security Center Online Help.

  6. If you want to customize other settings, select the Application settings tab and make the necessary changes.
  7. Click Save in the lower part of the page.

The policy is created and appears in the list of policies.

Page top