Creating and modifying Light Agent for Windows policy in Web Console

To create a Light Agent for Windows policy in the Web Console:

1. Start the Web Console.
2. If you want to create a policy for virtual machines belonging to a specific administration group, select the name of this group in the tree, in the section with the Administration Server name.
3. In the Devices section, select Policies and policy profiles.

   A list of policies opens.

4. Click the Add button.

   The New Policy Wizard starts.

5. At the first step of the wizard, in the list of applications select Kaspersky Security for Virtualization 5.1 Light Agent for Windows.

   Proceed to the next step of the wizard.

6. Configure SVM discovery settings for Light Agents:
   • If you want to use the Integration Server, do the following:
     1. Select the Use Integration Server option.
     2. In the window that opens verify the address and port used for connecting SVMs to the Integration Server. You can change the port and specify the IP address in IPv4 format or the fully qualified domain name (FQDN) of the computer on which the Integration Server is installed.

        If the address is specified as localhost or 127.0.0.1, connection to the Integration Server ends with an error.

        Click the Next button.

        The New Policy Wizard checks the SSL certificate received from the Integration Server. If the certificate contains errors or is not trusted, click the View the received certificate link to view information about the received certificate. If there are problems with the SSL certificate, it is recommended to make sure that the utilized data transfer channel is secure. To continue connecting to the Integration Server, select the Ignore option.

     3. In the window that opens, specify the Integration Server administrator password (password for the admin account) and click the Validate button.
   • If you want to use the list of SVM addresses, do the following:
     1. Select the Use a custom list of SVM addresses option.
     2. Enter one or more addresses using the Add button.

        If you selected the Use a custom list of SVM addresses option and the extended SVM selection algorithm is used, the value of the SVM path parameter in the SVM selection algorithm section must be set to Ignore SVM path. If any other value is set, the Light Agents will not be available to connect to SVM.

   Proceed to the next step of the wizard.

7. On the General tab, specify the name of the new policy, define its status and configure inheritance settings. For details, please refer to the Kaspersky Security Center documentation.
8. If required, modify the default policy settings on the Application settings tab.
9. Click Save to complete the policy creation.

The created policy will be displayed in the list of policies on the Policies and policy profiles tab.

The policy will be applied to protected virtual machines after the Kaspersky Security Center Administration Server relays the information to Kaspersky Security. Kaspersky Security starts protecting virtual machines on the hypervisor according to the policy settings.

If Network Agent is not running on a protected virtual machine, the created policy is not applied on this protected virtual machine.

If on the General tab you specified the Inactive policy status, the created policy is not applied to the virtual machines.

To modify the Light Agent for Windows policy in the Web Console:

1. Start the Web Console.
2. If you want to modify the policy settings for protected virtual machines belonging to a specific administration group, select the name of this group in the tree, in the section with the Administration Server name.
3. Select Devices → Policies and policy profiles.

   A list of policies opens.

4. Open the properties of the required policy using the link in the policy name.
5. Modify the policy settings on the Application settings tab.
6. To save changes, click the Save button.

Page top