Enabling and disabling connection protection on an SVM

You can enable and disable connection protection on an SVM in one of the following ways:

• In Kaspersky Security Center Administration Console, in the Protection Server policy properties.
• In the Web Console when creating or editing Protection Server policy settings (Application settings → Connection protection).

This section describes how to configure settings using the Administration Console.

To enable or disable connection protection on SVMs in the Administration Console:

1. Open Kaspersky Security Center Administration Console.
2. In the Managed devices folder in the console tree, open the folder with the name of the administration group to which the required SVMs belong.
3. In the workspace, select the Policies tab.
4. Select a Protection Server policy in the list of policies and right-click to open the Properties: <Policy name> window.
5. In the policy properties window, select the Connection protection section in the list on the left.
6. In the right part of the window, do one of the following:
   • If you want to enable encryption of the connection between Light Agents and SVMs, select the Encrypt data channel between Light Agent and SVMs check box.

     Only Light Agents for which connection encryption is configured will connect to SVMs managed by this policy.

   • If you want to disable encryption of the connection between Light Agents and SVMs, clear the Encrypt data channel between Light Agent and SVMs check box.
7. If you have enabled connection encryption, you can allow connections to Light Agents for which a secure connection could not be established, or for which connection encryption is not enabled. To do so, select the Allow nonsecure connection if secure connection cannot be established check box.
8. Click the Apply button.