Logging in for the first time and accepting agreements

To begin using the Kaspersky NGFW solution, you must change the default password, read the End User License Agreement, the Privacy Policy, and the Kaspersky Security Network Statement and accept the mandatory agreements or all agreements.

To get started with Kaspersky NGFW:

  1. Go to the directory with distribution kit of the solution.
  2. Read the following agreements:
    • End User License Agreement and Privacy Policy for Kaspersky products and services (in the license_NGFW_en.rtf file).

      You cannot continue to use Kaspersky NGFW without accepting these agreements.

    • Kaspersky Security Network Statement (in the ksn_NGFW_en.rtf file).

      You must accept this agreement if you want to send data (requests and statistics) to Kaspersky Security Network. If this is not the case, you do not need to accept this agreement.

  3. Connect to the Kaspersky NGFW device.

    A welcome message is displayed, followed by a prompt asking you to enter your user name and password.

  4. Enter the default user name and password:
    • User name: root
    • Password: ngfwadmin

    After 4 attempts to log in with a password, the user account is locked out. A locked-out user account can be unlocked by the OSMP administrator or automatically after a specified time. You can configure the number of attempts before lockout and the automatic unlock timeout on the command line. The stored authentication information is protected from unauthorized access.

    A message is displayed prompting you to change the password, followed by a prompt for the current password:

    Changing password for root

    Current password:

  5. Enter the default password.

    After 4 attempts to log in with a password, the user account is locked out. A locked-out user account can be unlocked by the OSMP administrator or automatically after a specified time. You can configure the number of attempts before lockout and the automatic unlock timeout on the command line. The stored authentication information is protected from unauthorized access.

    A prompt to enter a new password is displayed:

    New password:

  6. Enter the new password.

    The password must satisfy the following requirements:

    • At least 8 characters long.
    • Must contain at least one uppercase letter, lowercase letter, numeral, and special character.
    • Must not be a palindrome.
    • Must not be derived from the previous password by changing the character case.
    • Must differ from the old one by at least one character (character replacement, deletion, or addition).
    • Must not be the previous password spelled backwards.
    • Must not contain the user name.
    • Must not contain words that are present in the standard cracklib dictionary (for example, qwerty, password).

    A prompt to re-enter the new password is displayed:

    Retype new password:

  7. Enter the new password again.

    The password is changed.

    Later you will be able to change the root password in the Open Single Management Platform Console or on the command line.

    A welcome message is displayed, followed by a request to accept the End User License Agreement:

    Do you confirm that you have fully read, understand, and accept the terms and conditions of End User License Agreement? (Yes/No)

  8. If you accept the End User License Agreement, enter Yes.

    If you refuse to accept the End User License Agreement, enter No. In this case, you cannot continue using Kaspersky NGFW.

    A prompt to accept the Privacy Policy is displayed:

    Do you confirm that you have fully read, understand, and accept the terms and conditions of Privacy Policy? (Yes/No)

  9. If you accept the Privacy Policy, enter Yes.

    If you refuse to accept the Privacy Policy, enter No. In this case, you cannot continue using Kaspersky NGFW.

    A prompt to accept the Kaspersky Security Network Statement is displayed:

    Do you confirm that you have fully read, understand, and accept the terms and conditions of Kaspersky Security Network Statement, and agree to send all types of data mentioned in KSN Statement (security requests, statistical data) to KSN services?

  10. If you accept the Kaspersky Security Network Statement, enter Yes.

    If you refuse to accept the Kaspersky Security Network Statement, enter No. In this case, you can continue to use Kaspersky NGFW, but data (requests and statistics) cannot be sent to Kaspersky Security Network.

Agreements are accepted. You can start managing Kaspersky NGFW.

In the future, you can accept the Kaspersky Security Network Statement or withdraw your acceptance of the Statement using the ksn family of commands on the command line. To accept the Kaspersky Security Network Statement, use the ksn statistics command. To withdraw your acceptance of the Kaspersky Security Network Statement, use the no ksn statistics command. For a description of command families for configuring Kaspersky NGFW, see the Managing Kaspersky NGFW using the command line document.

When installing the orchestrator and the user identity service, you must also accept the Kaspersky NGFW End User License Agreement. If you refuse to accept the End User License Agreement, you cannot use these components.

Page top