Issues when upgrading Kaspersky Endpoint Agent 3.9 for Windows to version 3.10
Latest update: June 24, 2021
ID: 15738
When upgrading Kaspersky Endpoint Agent 3.9 for Windows to version 3.10, the following issues can occur:
- Kaspersky Endpoint Agent 3.10 for Windows cannot be installed remotely on top of version 3.9 if Kaspersky Endpoint Agent 3.9 for Windows is password-protected. Use the guide below to solve this issue.
- Telemetry exclusions that are required for an RDP connection and some other services become unavailable after upgrading Kaspersky Endpoint Agent 3.9 for Windows to version 3.10. Use the guide below to solve this issue.
How to upgrade Kaspersky Endpoint Agent 3.9 for Windows remotely
- Download the install_props.zip archive.
- Unpack the archive. Add to the extracted file your password for Kaspersky Endpoint Agent 3.9 for Windows that is already installed on your computer.
- Put the edited file on the computer with Kaspersky Security Center installed to the folder that contains files for creating an installation package for Kaspersky Endpoint Agent 3.10 for Windows:
<the path to the folder with the unpacked distributives>\SOYUZ_3.10.0.1436\exec - Create the remote installation package for Kaspersky Endpoint Agent 3.10 for Windows.
Start a remote installation task for Kaspersky Endpoint Agent 3.10 for Windows in Kaspersky Security Center.
Kaspersky Endpoint Agent 3.9 for Windows will be upgraded to version 3.10.
How to solve an RDP connection issue
By default, the Kaspersky Endpoint Agent 3.10 for Windows policy does not contain the following exclusions for system processes:
- %SystemRoot%\System32\lsass.exe
- %SystemRoot%\System32\csrss.exe
- %SystemRoot%\System32\smss.exe
To add the required exclusions, follow one of the following recommendations:
- Re-create the Kaspersky Endpoint Agent 3.10 for Windows policy with the default exclusions settings.
- Add to the existing Kaspersky Endpoint Agent 3.10 for Windows policy the following process exclusions:
- %SystemRoot%\System32\WerFault.exe
- %SystemRoot%\System32\ServerManager.exe
- %SystemRoot%\System32\lsass.exe
- %SystemRoot%\System32\csrss.exe
- %SystemRoot%\System32\smss.exe
- %SystemRoot%\System32\vmconnect.exe
- %SystemRoot%\System32\vmcompute.exe
- %SystemRoot%\System32\vmwp.exe
- %SystemRoot%\System32\wuauclt.exe
- *\bin\bash.exe
- %SystemDrive%\Program Files(x86)\Kaspersky Lab\Kaspersky Endpoint Security for Windows\avp.exe
- %SystemDrive%\Program Files(x86)\Kaspersky Lab\Kaspersky Endpoint Security for Windows\avpsus.exe
- %SystemDrive%\Program Files(x86)\Kaspersky Lab\Kaspersky Security for Virtualization 5.2 Light Agent\avp.exe
- %SystemDrive%\Program Files(x86)\Kaspersky Lab\Kaspersky Security for Virtualization 5.2 Light Agent\avpsus.exe
- %SystemDrive%\Program Files(x86)\Kaspersky Lab\Kaspersky Security for Virtualization 5.1 Light Agent\avp.exe
- %SystemDrive%\Program Files(x86)\Kaspersky Lab\Kaspersky Security for Virtualization 5.1 Light Agent\avpsus.exe
- *\libexec\git-core\git-remote-https.exe
For instructions on working with exclusions, see Online Help.
What to do if the issue persists
If the issue persists, submit a request to Kaspersky Technical Support via Kaspersky CompanyAccount. Please include a detailed description of the issue. Before sending a request, read the required information in the Knowledge Base section.
