Monitoring traffic lights and logged events in Administration Console

April 17, 2023

ID 92536

Administration Console allows you to quickly assess the current status of Kaspersky Security Center and managed devices by checking traffic lights. The traffic lights are shown in the workspace of the Administration Server node, on the Monitoring tab. The tab provides six information panels with traffic lights and logged events. A traffic light is a colored vertical bar on the left side of a panel. Each panel with a traffic light corresponds to a specific functional scope of Kaspersky Security Center (see the table below).

Scopes covered by traffic lights in Administration Console

Panel name

Traffic light scope

Deployment

Installing Network Agent and security applications on devices on an organization's network

Management scheme

Structure of administration groups. Network scanning. Device moving rules

Protection settings

Security application functionality: protection status, virus scanning

Update

Updates and patches

Monitoring

Protection status

Administration Server

Administration Server features and properties

Each traffic light can be any of these five colors (see the table below). The color of a traffic light depends on the current status of Kaspersky Security Center and on events that were logged.

Color codes of traffic lights

Status

Traffic light color

Traffic light color meaning

Informational

Green

Administrator's intervention is not required.

Warning

Yellow

Administrator's intervention is required.

Critical

Red

Serious problems have been encountered. Administrator's intervention is required to solve them.

Informational

Light blue

Events have been logged that are unrelated to potential or actual threats to the security of managed devices.

Informational

Gray

The details of events are not available or have not yet been retrieved.

The administrator's goal is to keep traffic lights on all of the information panels on the Monitoring tab green.

The information panels also show logged events that affect traffic lights and the status of Kaspersky Security Center (see the table below).

Name, description, and traffic light colors of logged events

Traffic light color

Event type display name

Event type

Description

Red

License expired on %1 device(s)

IDS_AK_STATUS_LIC_EXPAIRED

Events of this type occur when the commercial license has expired.

Once a day Kaspersky Security Center checks whether the license has expired on the devices.

When the commercial license expires, Kaspersky Security Center provides only basic functionality.

To continue using Kaspersky Security Center, renew your commercial license.

Red

Security application is not running on: %1 device(s)

IDS_AK_STATUS_AV_NOT_RUNNING

Events of this type occur when the security application installed on the device is not running.

Make sure that Kaspersky Endpoint Security is running on the device.

Red

Protection is disabled on: %1 device(s)

IDS_AK_STATUS_RTP_NOT_RUNNING

Events of this type occur when the security application on the device has been disabled for longer than the specified time interval.

Check the current status of real-time protection on the device and make sure that all the protection components that you need are enabled.

Red

A software vulnerability has been detected on devices

IDS_AK_STATUS_VULNERABILITIES_FOUND

Events of this type occur when the Find vulnerabilities and required updates task has detected vulnerabilities with the severity level specified in applications installed on the device.

Check the list of available updates in the Software updates subfolder included in the Application management folder. This folder contains a list of updates for Microsoft applications and other software vendors products retrieved by Administration Server, which can be distributed to devices.

After viewing information about available updates, install them on the device.

Red

Critical events have been registered on the Administration Server

IDS_AK_STATUS_EVENTS_OCCURED

Events of this type occur when Administration Server critical events are detected.

Check the list of events stored on the Administration Server, and then fix the critical events one by one.

Red

Errors have been logged in events on the Administration Server

IDS_AK_STATUS_ERROR_EVENTS_OCCURED

Events of this type occur when unexpected errors are logged on the Administration Server side.

Check the list of events stored on the Administration Server, and then fix the errors one by one.

Red

Lost connection to %1 device(s)

IDS_AK_STATUS_ADM_LOST_CONTROL1

Events of this type occur when the connection between the Administration Server and the device is lost.

View the list of disconnected devices and try to reconnect them.

Red

%1 device (s) have not connected to the Administration Server in a long time

IDS_AK_STATUS_ADM_NOT_CONNECTED1

Events of this type occur when the device has not connected to the Administration Server within the specified time interval, because the device was turned off.

Make sure that the device is turned on and that Network Agent is running.

Red

%1 device(s) have a status other than OK

IDS_AK_STATUS_HOST_NOT_OK

Events of this type occur when the OK status of the device connected to the Administration Server changes to Critical or Warning.

You can troubleshoot the problem by using the Kaspersky Security Center remote diagnostics utility.

Red

Databases are outdated on: %1 device(s)

IDS_AK_STATUS_UPD_HOSTS_NOT_UPDATED

Events of this type occur when the anti-virus databases have not been updated on the device within the specified time interval.

Follow the instructions to update Kaspersky databases.

Red

Device(s) where check for Windows Update updates has not been performed in a long time: %1

IDS_AK_STATUS_WUA_DATA_OBSOLETE

Events of this type occur when the Perform Windows Update synchronization task has not been run within the specified time interval.

Follow the instructions to synchronize updates from Windows Update with Administration Server.

Red

%n plug-in(s) for Kaspersky Security Center 13.2 must be installed

IDS_AK_STATUS_PLUGINS_REQUIRED

Events of this type occur when you need to install additional plug-ins for Kaspersky applications.

Download and install the required management plug-ins for the Kaspersky application from the Kaspersky Technical Support webpage.

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.