What's new

Kaspersky Security Center Administration Server and Administration Console and Kaspersky Security Center Web Console have the following new features and improvements:

Kaspersky Security Center Web Console

Kaspersky Security Center Web Console has the following new features and improvements:

Kaspersky Security Center 11.1 Web Console

Kaspersky Security Center 11 Web Console

You can use Kaspersky Security Center 11 Web Console together with, or instead of, Microsoft Management Console-based Administration Console. Kaspersky Security Center 11 Web Console is a multi-platform, touchscreen-friendly web application that only requires a browser (Google Chrome 62 or later). In Kaspersky Security Center 11, both Microsoft Management Console-based Administration Console and Kaspersky Security Center 11 Web Console are installed during the installation procedure; however, you can install Kaspersky Security Center 11 Web Console on a separate device at any time.

Kaspersky Security Center 11 Web Console supports:

The support of other Kaspersky Lab applications managed by Kaspersky Security Center is limited to monitoring only.

Kaspersky Security Center Administration Server and Administration Console

Kaspersky Security Center Administration Server and Administration Console have the following new features and improvements:

Visibility of devices in Kaspersky Security Center Administration Server hierarchy

If you have more than one Administration Server in your network, these Administration Servers can "see" the same client devices. This may result, for example, in remote installation of the same application to one and the same client device from more than one Server, and other conflicts. To avoid such a situation, you can prevent an application from being installed on a device managed by another Administration Server. The Behavior for devices managed through other Administration Servers setting is present in the following places:

You can use the Managed by a different Administration Server criterion for finding and selecting devices. It is displayed in the following places:

User roles and rights

Kaspersky Security Center now supports the role-based access control (RBAC) roles for the Administration Server hierarchy.

All the roles defined on the master Administration Server can be used on its slave Administration Servers. By default, this new option is disabled, but you can enable it at any time. With the Relay list of roles to slave Administration Servers option enabled, when you add a role (or make changes in the role rights) on the master Administration Server, these changes are instantly propagated to all of the slave Servers. You can disable this option at any time; in this case, the roles stay on the slave Administration Servers, but the changes made on the master Administration Server are not propagated to the Slave Servers any more. You might want to use this option if you have at least one slave Administration Server in your organization.

The following new areas of rights are implemented in Kaspersky Security Center 11:

To run a report, you now need only the Read permission in the Enforced report management area.

The following new built-in roles are implemented:

By default, these new roles are not assigned to any users. You can assign these roles to users manually.

Creation of new roles is now available within the basic functionality.

Standalone KSN Proxy

Standalone KSN Proxy is implemented. KSN Proxy is now included in the Network Agent. You can make a distribution point function as a KSN Proxy, if it is in the same network as the Administration Server. You might want to do this if, for example, the distribution point connects to the Administration Server through a VPN. To make a distribution point function as a KSN Proxy, select the Enable KSN Proxy on distribution point side option in the KSN Proxy section of the distribution point properties window.

Deleted objects

Information about policies, tasks, Administration Servers, users, security groups, administration groups, and installation packages is now saved even after these objects are deleted. This information is displayed in the Deleted objects folder (by default, a subfolder of the Advanced folder in the console tree) to users with Read permission in the Deleted objects area of rights.

By default, the storage period for information about the deleted objects is 90 days.

Microsoft Azure support

Kaspersky Security Center works with Microsoft Azure. You can now deploy the Administration Server in the Microsoft Azure cloud environment, create a database using Microsoft Azure SQL Server, and protect Azure virtual machines.

Management of updates

You can allow or disallow the client device users to install Microsoft Windows updates. In the Network Agent policy, in the Software updates and vulnerabilities section, you can specify which updates can be installed by users:

You can also view the list of updates and patches unrelated to client devices, that is, update is listed only once if it meets the task rules for at least one target device. The list of updates for the Install required updates and fix vulnerabilities task is based on the currently applied settings, not on the settings that have been modified but not yet taken effect after this modification. File duplication is eliminated, and therefore updates downloaded to a device take up half the space than with earlier versions of the application.

Monitoring and reporting

Troubleshooting

Implemented advanced diagnostics in the settings of the Find vulnerabilities and required updates task. The Enable advanced diagnostics check box is cleared by default; if you select the check box, Network Agent writes traces to files in the %WINDIR%\Temp folder during the task run. The files are available for download through the remote diagnostics utility. This utility also allows you to delete these files.

Performance

Integration

Usability

Other improvements

New operating systems and other 3rd-party software versions support:

Page top