Requirements for the virtual infrastructure

File Threat Protection and Network Threat Protection requirements

For the File Threat Protection and the Network Threat Protection components to work properly, the virtual infrastructure must meet the following software requirements:

• VMware ESXi hypervisor 8.0 or later, 7.0 Update 1c or later, 6.7 Update 3 or later, 6.5 Update 3 or later.
• VMware vCenter Server 8.0 or later, 7.0 Update 1d or later, 6.7 Update 3 or later, 6.5 Update 3 or later.

  All hypervisors must be managed by VMware vCenter Server. Kaspersky Security does not protect virtual machines running on a stand-alone hypervisor.

• VMware NSX Manager of one of the following types:
  • VMware NSX-V Manager from the VMware NSX Data Center for vSphere 6.4.10 package.
  • VMware NSX-T Manager from the VMware NSX 4.0.1.1, VMware NSX 4.0.0.1, VMware NSX-T Data Center 3.2.0.1, VMware NSX-T Data Center 3.1.3, VMware NSX-T Data Center 3.1.1 or VMware NSX-T Data Center 3.0.3 package—for installation and operation of the File Threat Protection component.
  • VMware NSX-T Manager from the VMware NSX 4.0.1.1, VMware NSX 4.0.0.1, VMware NSX-T Data Center 3.2.0.1 or VMware NSX-T Data Center 3.0.3 package—for installation and operation of the Network Threat Protection component.

  Simultaneous use of VMware NSX-V Manager and VMware NSX-T Manager for the same VMware vCenter Server is not supported.

  Kaspersky Security operation is not supported in the infrastructure managed by VMware NSX Manager, to which several VMware vCenter Servers are connected.

Kaspersky Security components protect virtual machines that have the following guest operating systems installed:

• Windows desktop operating systems:
  • Windows 10
  • Windows 8.1
  • Windows 8
  • Windows 7 Service Pack 1
• Windows server operating systems:
  • Windows Server 2019
  • Windows Server 2016
  • Windows Server 2012 R2 without ReFS (Resilient File System) support
  • Windows Server 2012 without ReFS (Resilient File System) support
  • Windows Server 2008 R2 Service Pack 1

  On protected virtual machines running Windows operating systems, one of the following file systems must be used: FAT, FAT32, NTFS, ISO9660, UDF, CIFS.

• Linux server operating systems:
  • Ubuntu Server 18.04 GA (64-bit)
  • Ubuntu Server 16.04 GA (64-bit)
  • Ubuntu Server 14.04 GA (64-bit)
  • Red Hat Enterprise Linux Server 7.7 GA (64-bit)
  • Red Hat Enterprise Linux Server 7.4 GA (64-bit)
  • Red Hat Enterprise Linux Server 7.0 GA (64-bit)
  • SUSE Linux Enterprise Server 12 GA (64-bit)
  • CentOS 7.7 GA (64-bit)
  • CentOS 7.4 GA (64-bit)
  • CentOS 7.0 GA (64-bit)

  On protected virtual machines running Linux operating systems, one of the following file systems must be used:

  • Local file systems: EXT2, EXT3, EXT4, XFS, BTRFS, VFAT, ISO9660.
  • Network file systems: NFS, CIFS.

To protect virtual machines against file threats, install the Guest Introspection Thin Agent component.

• On the virtual machines running Windows, the NSX File Introspection Driver, which is included in VMware Tools version 11.2.5 package acts as the Guest Introspection Thin Agent component. By default, NSX File Introspection Driver is not installed, so when installing the VMware Tools package, select NSX File Introspection Driver to install.
• On virtual machines running Linux, special packages are provided for installing the Guest Introspection Thin Agent component. There is no need to install VMware Tools.

To protect virtual machines against network threats, install the VMware Tools kit version 11.2.5 or open-vm-tools.

A current license for NSX for vSphere Advanced or NSX for vSphere Enterprise is required in order for the Network Threat Protection component to work.

The Network Threat Protection component protects only those virtual machines that use the E1000 or VMXNET3 network adapter.

The instructions on how to install and update VMware components, and the hardware requirements for VMware virtual infrastructure are described in VMware product documentation.

Requirements for the application operation in multitenancy mode

VMware Cloud Director 10.4, VMware Cloud Director 10.3.3.2, VMware Cloud Director 10.3.2.1, VMware Cloud Director 10.3.0 or VMware Cloud Director 10.1.2 must be installed in the virtual infrastructure for Kaspersky Security to operate in multitenancy mode.

There are limitations on the application installation and operation in a virtual infrastructure managed by VMware Cloud Director 10.3.0 or later. See the Knowledge Base for details.

Page top