Special considerations when setting parameter values when updating the application
If you use the Kaspersky Security Center Administration Console to manage the application and, after updating the application, you want to use the values of policy and task settings configured in Kaspersky Security Center for the previous version of the application, then you need to convert the policies and tasks (for details, please refer to the Kaspersky Security Center Help).
The procedure for converting policies and tasks is not available in Kaspersky Security Center Web Console. If you use the Web Console to manage your application, you will need to create new policies and tasks for the updated version of the application. You can migrate some settings of policies and tasks from a previous version of a policy or task to a new one by exporting and importing settings.
On the command line, most of the settings are migrated from the previous version of the application. You can also migrate application settings by exporting settings to a file and then importing them from that file.
Default values are assigned to settings that did not exist in the previous version of the application. Some settings are assigned special values.
Exclusion settings
After tasks are converted in the MMC plug-in, the Use global exclusions and Use File Threat Protection exclusions check boxes are cleared in scan tasks (of the ODS type) and Container Scan tasks. The conversion of tasks is not supported by the web plug-in.
After updating the application on the command line, the UseOASExclusions and UseGlobalExclusions settings are set to No.
Kaspersky Security Network settings
After converting a policy in the MMC plug-in, the Do not use Kaspersky Endpoint Security option is selected in the policy properties. The conversion of policies is not supported by the web plug-in.
After upgrading the application on the command line, the UseKSN setting is set to No if when updating you set KESL_USE_KSN=No, and UseKSN=Extended is applied if you set KESL_USE_KSN=Yes. In other cases, the value of the UseKSN setting does not change after the update.
To start or resume using Kaspersky Security Network, you must do the following:
- If using the MMC or web plug-in, select the Basic KSN mode or Extended KSN mode.
- If using the command line, set
UseKSNtoBasicorExtended.
Cloud mode settings
After converting a policy in the MMC plug-in, the Enable cloud mode check box is cleared. The conversion of policies is not supported by the web plug-in.
After updating the application on the command line, CloudMode is set to:
CloudMode=NoifUseKSN=Noafter the upgrade.CloudMode=YesifUseKSN=Yesafter the upgrade, andCloudMode=Yeswas set before the upgrade.
Cloud mode is available if use of KSN is enabled. To enable cloud mode:
- If using the MMC or web plug-in, select the Extended KSN mode option and select the Enable cloud mode check box.
- If using the command line, set
UseKSNandCloudModetoYes.
File operation interception mode
If the Block access to files during scans check box was cleared in the previous version of the application, after converting the policy in the MMC plug-in, the First action of the File Threat Protection task is set to Block. The conversion of policies is not supported by the web plug-in.
In the new version of the application, the name of the command line option that determines the file operation interception mode has changed from InterceptorProtectionMode=Block|Notify to FileBlockDuringScan=Yes|No. If in the previous version of the application, InterceptorProtectionMode was set to Notify, after updating the application using the command line, FileBlockDuringScan is set to No and the FirstAction setting of the File Threat Protection task is set to Block.
