Kaspersky Security can be installed on servers included in a Microsoft Exchange Database Availability Group (DAG). In this case, the Security Server and Management Console must be installed together on each Microsoft Exchange server belonging to the DAG. You can also install Management Console on any other computer in your enterprise network for remote management of Security Servers.
The application automatically identifies a DAG during installation. The order in which the application is installed on nodes within a DAG is irrelevant.
The specifics of Kaspersky Security installation in the DAG are as follows:
While the previous version of the application is being upgraded on all servers of the DAG, we recommend that you avoid connecting to these servers using the Management Console, or editing the application settings. Doing so may cause the update to end in an error, which may result in application malfunctions. If the connection needs to be established during an update, before connecting make sure that the Security Server version matches the version of the Management Console used for establishing the connection.
When the application is installed on all servers of a DAG, most of the application settings are stored in Active Directory, and all the DAG servers use those settings. Kaspersky Security automatically detects active servers and applies the Active Directory settings to them. However, the individual settings of the Microsoft Exchange Server have to be defined manually for each server. Examples of individual settings of the Microsoft Exchange Server include: anti-virus protection settings for the Hub Transport role, anti-spam scan settings, Backup settings, settings of the Anti-Spam and Anti-Virus reports for the Hub Transport role, and Anti-Spam database update settings.
Using profiles to configure DAG servers has the following particularities:
After Kaspersky Security is uninstalled from DAG servers, the configuration is stored in Active Directory and can be used to reinstall the application.
Page top