Disabling file threat protection for virtual infrastructure objects

You can disable file threat protection for virtual infrastructure objects in the following ways:

• If the file protection settings were defined by assigning protection profiles to virtual infrastructure objects, you can cancel assignment of the protection profile to a virtual machine or other virtual infrastructure object. Virtual machines that have no protection profile assigned are excluded from protection.
• If file protection settings are defined using NSX Vendor Templates / NSX Profile Configurations, you can cancel mapping between the protection profile and the NSX Vendor Template / NSX Profile Configuration. The following virtual machines will be excluded from protection:
  • Virtual machines managed by the NSX Policy that uses the NSX Service Profile based on this NSX Vendor Template (in the infrastructure managed by VMware NSX-T Manager).
  • Virtual machines managed by the NSX Policy that uses this NSX Profile Configuration or NSX Service Profile, based on it (in the infrastructure managed by VMware NSX-V Manager).
• You can disable protection for all virtual machines that are within Kaspersky Security policy scope.

If the file protection settings were defined by assigning protection profiles to virtual infrastructure objects, you can disable protection for one or more virtual machines by doing the following:

1. In the properties of the policy whose scope includes the relevant virtual machines, select the Protected infrastructure subsection.
2. If you are configuring a policy for one VMware vCenter Server, make sure that the Use virtual infrastructure tree option is selected in the drop-down list located in the upper part of the window.
3. Select one or multiple objects of the virtual infrastructure in the Name column.

   To disable protection for multiple virtual machines that are child objects of a single virtual infrastructure object, select that object. You can simultaneously select multiple virtual machines or other virtual infrastructure objects in the table by holding down the CTRL key.

4. Click the Select protection profile button.

   The Selecting protection profile window opens.

5. Select the Do not use protection profile option.
6. If the selected virtual infrastructure object has child objects, by default protection will be disabled for the selected object and for all its child objects, including objects that have been assigned their own protection profile. If you want to disable protection only for the selected virtual infrastructure object and for those of its child objects that inherit the protection profile, clear the Apply to all child objects check box.

   Protection will be removed from the parent object and from those of its child objects that inherited their protection profile from the parent object. The application will continue protecting the child objects that have been assigned their own protection profile.

7. Click OK.

   The Selecting protection profile window closes. In the table in the Protected infrastructure subsection, the value shown in the Protection profile column for objects that have been excluded from protection is (Not assigned).

8. In the Properties: <Policy name> window, click OK.

If the file protection settings are defined using NSX Vendor Templates / NSX Profile Configurations, you can disable virtual machine protection by doing the following:

1. In the properties of the policy whose scope includes the relevant virtual machines, select the Protected infrastructure subsection.
2. In the drop-down list located in the upper part of the window, select the Use NSX Vendor Templates / NSX Profile Configurations option.
3. In the table, select NSX Vendor Template or NSX Profile Configuration, depending on the type of VMware NSX Manager you use (VMware NSX-T Manager or VMware NSX-V Manager):
   • If Kaspersky Security is deployed in the infrastructure managed by VMware NSX-T Manager, select the NSX Vendor Template, on the basis of which the NSX Service Profile is created, that is used in the NSX Policy that manages the virtual machines.
   • If Kaspersky Security is deployed in the infrastructure managed by VMware NSX-V Manager, select the NSX Profile Configuration used in the NSX Policy that manages the virtual machines.
4. Double-click to open the Selecting protection profile window.
5. In the opened window, select the Do not use protection profile option.
6. Click OK.

   The Selecting protection profile window closes. In the table in the Protected infrastructure subsection, the (Not assigned) value is displayed in the Protection profile column for the selected NSX Vendor Template / NSX Profile Configuration.

7. In the Properties: <Policy name> window, click OK.

To disable protection for all virtual machines that are managed by Kaspersky Security policy:

1. In the properties of the policy whose scope includes the relevant virtual machines, select the Protected infrastructure subsection.
2. Clear the Use File Threat Protection check box located in the upper part of the window.
3. In the Properties: <Policy name> window, click OK.

Page top