What's new

Kaspersky Security Center 15.1 Linux

Kaspersky Security Center 15.1 Linux has several new features and improvements:

• Vulnerability and patch management for Windows-based managed devices. You can manage the updates of third-party software installed on Windows-based managed devices and fix vulnerabilities in such software through the installation of required updates.
• Kaspersky Security Center Linux now polls domain controllers page by page instead of polling the entire domain controller at once. This allows you to poll domain controllers that include a large number of entries.
• Adaptive Anomaly Control. This is a Kaspersky Endpoint Security for Windows feature that uses a set of rules to track non-typical behavior on client devices and allows you to block anomalous actions.
• Seamless updates for managed Kaspersky applications installed on Windows devices and Network Agent for Linux. You can manage the update installation process by approving updates that must be installed and declining updates that must not be installed.
• Extended policy audit. You can now view the contents of a policy revision and save a policy revision to a file. Currently, these features are only available for the Administration Server policy and Network Agent policy.
• Cloud Discovery. This is a new feature that allows you to monitor the use of cloud services on managed devices running Windows and to block access to cloud services that you consider unwanted.
• New Alerts subsection in the Monitoring & reporting section of the main menu. In the Alerts subsection, you can view information about detected threats on the endpoint devices. The threats are detected by Kaspersky security applications.
• Kaspersky Security Center Linux can now act as a component of the Kaspersky Managed Detection and Response solution.
• Upgrade from Kaspersky Endpoint Security for Windows to Kaspersky Security for Windows Server no longer requires the target device to restart.
• Support for Kaspersky Security for Virtualization Light Agent.
• Extended hardware inventory of macOS devices. Network Agent on a macOS device sends the MAC address and device serial number to Administration Server.
• You can now receive a report on remote installation when you install software on the managed devices through custom scripts.
• When you execute several custom scripts on a managed device, you can set a priority for each script to define the execution order. The scripts will be executed from the one with the highest priority to the one with the lowest priority.
• To reduce the amount of RAM consumed by Kaspersky Endpoint Security for Linux and Network Agent for Linux, you can enable a special work mode for Network Agent for Linux. In this mode, Network Agent for Linux requires less RAM, but its functionality is limited.
• You can uninstall incompatible software from the managed devices through the Uninstall application remotely task.
• Report on network attacks now includes the MAC address and port of the attacking device.
• The maximum password length for an internal user was increased to 256 characters.
• User experience improvements, including:
  • Main menu personalization by pinning sections of Kaspersky Security Center Web Console for quick access from the Pinned section.
  • Optimized work with tables. The default view of each table now contains the most frequently used columns. Also, you can now select all items on the current page or in the entire table, as well as sort items in the entire table.
  • Improved report delivery configuration. You can now specify up to 20 email addresses to send the report to, and the report delivery schedule.
• Support for a wide range of operating systems and new operating system versions.
• A new sizing guide was developed and published in the Online Help.
• As a result of a user interface review, an issue that led to the Remote diagnostics section appearing in the Administration Server properties window was resolved.
• You can create an Execute scripts remotely task to execute an installation package on a client device and to install an application remotely.
• A user can be assigned as a device owner during or after installation of Network Agent on a client device on Linux.
• You can configure a device selection or create a device moving rule based on a device owner, device owner's membership in a security group, and device owner's role.
• You can revoke local administrator rights from accounts. This provides you with an extra layer of control of user accounts. For example, you can revoke local administrator rights after a one-time assignment is complete.
• You can change the local account password, for example, when the user forgets the local account password or to perform a scheduled password change.
• In the User certificates management subsection, you can specify which root certificates to install. These certificates can be used, for example, to verify the authenticity of websites or web servers.

Kaspersky Security Center 15 Linux

Kaspersky Security Center 15 Linux has several new features and improvements:

• Domain controller polling allows you to poll a Microsoft Active Directory domain controller and a Samba domain controller. You can use Administration Server or a distribution point to poll Microsoft Active Directory. You can poll a Samba domain controller only through a Linux-based distribution point. When you poll a domain controller, Administration Server or a distribution point retrieves information about the domain structure, user accounts, security groups, and DNS names of the devices that are included in the domain.
• Kaspersky Security Center Linux now supports work with the following DBMSs:
  • PostgreSQL 15.х
  • Postgres Pro 15.х
• If you use PostgreSQL or Postgres Pro as a DBMS, Kaspersky Security Center Linux supports up to 50,000 managed devices.
• Migration from Kaspersky Security Center Windows to Kaspersky Security Center Linux. You can run a wizard to migrate Kaspersky Security Center objects, including tasks, policies, and administration group structure. After that, you can move the imported managed devices to be under management of Kaspersky Security Center Linux.
• Kaspersky Security Center Linux now supports work with the following Kaspersky applications:
  • Kaspersky Security for Virtualization Light Agent
  • Kaspersky Embedded Systems Security for Windows
  • Kaspersky Embedded Systems Security for Linux
  • Kaspersky Industrial CyberSecurity for Nodes
  • Kaspersky Industrial CyberSecurity for Networks
  • Kaspersky Endpoint Security for Mac
  • Kaspersky Endpoint Agent
  • Kaspersky Security for Virtualization Light Agent
• Remote diagnostics of Windows-based and Linux-based managed devices.
• Improved Application Control component. You can now create an application category based on the list of executable files from a selected folder or based on a Kaspersky application category. Then you can specify whether you want to allow or block the applications from the created category in your organization.
• Export and import of event selections. You can export a user-defined event selection and its settings to a KLO file, and then import the saved event selection to Kaspersky Security Center Windows or Kaspersky Security Center Linux.
• In the Report on threats, you can now open a threat development chain by clicking the View alert link.
• Kaspersky Security Center Linux now supports cluster technology. If an administration group contains clusters or server arrays, the Managed devices page displays two tabs—one for individual devices, and one for clusters and server arrays. After the managed devices are detected as cluster nodes, the cluster is added as an individual object to the Clusters and server arrays tab. The cluster nodes are listed on the Devices tab, along with other managed devices.
• Support for some platforms by Kaspersky Security Center Linux has ended because these platforms are no longer supported by their vendors.

Kaspersky Security Center 14.2 Linux

Kaspersky Security Center 14.2 Linux has several new features and improvements:

• In an Administration Server hierarchy, a Linux-based Administration Server can now act as a primary Server and can manage Linux-based or Windows-based Servers acting as a secondary one.
• Kaspersky Security Center Linux now supports Kaspersky Security Network (KSN), KSN Proxy service, and Kaspersky Private Security Network (KPSN).
• Kaspersky Security Center Linux now supports Kaspersky Endpoint Security for Windows as a managed application.

  Remote installation of Network Agent for Windows on client devices is possible only by using operating system tools through Windows-based distribution points.

• Data on Windows-based managed devices can now be encrypted to reduce the risk of unintentional leakage of sensitive and corporate data if a laptop or hard drive is stolen or lost. This feature is implemented through Kaspersky Endpoint Security for Windows.
• Kaspersky Security Center Linux allows you to download and update both distribution packages of Kaspersky applications and management web plug-ins right in the user interface of Kaspersky Security Center Linux.
• By default, information about applications installed on the Linux-based and Windows-based managed devices is sent to Administration Server.
• Access to Kaspersky servers is now verified automatically. If access to the servers by using the system DNS is not possible, the application uses the public DNS.
• Sensitive data that is transferred between the primary Administration Server, secondary Administration Servers, and Network Agents is now protected with the AES encryption algorithm.
• User rights on a virtual Administration Server are available for configuration any time, independently from the primary Administration Server. Also, you can assign primary Server users the rights to manage a virtual Server.
• Kaspersky Security Center Linux now supports work with the following DBMSs:
  • PostgreSQL 13.x
  • PostgreSQL 14.x
  • Postgres Pro 13.x (all editions)
  • Postgres Pro 14.x (all editions)
• You can use Kaspersky Security Center Web Console to export policies and tasks to a file, and then import the policies and tasks to Kaspersky Security Center Windows or Kaspersky Security Center Linux.
• The Do not use proxy server option has been removed from the following tasks:
  • Download updates to the Administration Server repository
  • Download updates to the repositories of distribution points

Kaspersky Security Center 14 Linux

Kaspersky Security Center Linux has several new features and improvements:

• Besides the Download updates to the Administration Server repository task, anti-virus databases for Kaspersky security applications can now be downloaded through the Download updates to the repositories of distribution points task.
• Anti-virus databases and application modules on the managed devices can be propagated and updated through Administration Server or distribution points. You can choose an update scheme optimal for your organization, to reduce the load on Administration Server and optimize data traffic on the corporate network.
• Kaspersky Security Center Linux downloads from Kaspersky update servers only those updates that are requested by the Kaspersky security applications. This reduces the size of the downloaded data.
• You can now use the diff files feature to download anti-virus databases and software modules. A diff file describes the differences between two versions of a file of a database or software module. The usage of diff files saves traffic inside your company's network because diff files occupy less space than entire files of databases and software modules.
• The Update verification task was added. By using this task, you can automatically check the downloaded updates for operability and errors before you install the updates on the managed devices.
• Kaspersky Security Center Linux now supports Kaspersky Industrial CyberSecurity for Linux Nodes 1.3 as a managed application.