Kaspersky Security for Virtualization 5.2 Light Agent

Kaspersky Security for Virtualization 5.2 Light Agent

Support Send link

About this Help Guide
About Kaspersky Security for Virtualization 5.2 Light Agent
- Distribution kit
- Hardware and software requirements
- Light Agent functional components
- Advanced features of the application
What’s new
Application architecture
- SVM deployment options
- Connecting Light Agent to SVM
  - About SVM discovery
  - About the SVM selection algorithms
- About data processing
Preparing for application installation
- Files required for installing the application
- Downloading SVM images
- Unpacking the Light Agent distribution packages
- Configuring ports used by the application
- Accounts for installing and using the application
- Configuring rules for moving virtual machines to administration groups
Installing the application
- Considerations for deploying the application when using Kaspersky Security Center 15 Linux
- Installing Kaspersky Security management MMC plug-ins and the Integration Server
- Automatic creating of tasks and default policy for Protection Server
- Starting the Integration Server Console
- Installing the Protection Server
- Preparing the Protection Server for operation
- Installing Kaspersky Security Center Network Agent on virtual machines
- Installing Light Agent for Windows
- Installing Light Agent for Linux
  - Installing Light Agent for Linux from the command line
    - Installing Light Agent for Linux in silent mode
    - Installing Light Agent for Linux in interactive mode
  - Installing Light Agent for Linux via Kaspersky Security Center
    - Creating a Light Agent for Linux installation package
    - Configuring Network Agent settings in the Light Agent for Linux installation package properties
- Preparing Light Agents for operation
- Changes in the Kaspersky Security Center Administration Console after installing Kaspersky Security
- Installing Kaspersky Security web plug-ins
- Viewing the list of SVMs connected to the Integration Server
- Viewing the list of Light Agents connected to SVMs
Upgrading from a previous version of the application
- About the upgrade of Kaspersky Security MMC plug-ins and Integration Server
- About the upgrade of the Protection Server
- Upgrading the Light Agent for Windows component
- Converting Kaspersky Security policies and tasks
Removing the application
- Removing the Protection Server component
- Uninstalling the Light Agent for Windows component
- Uninstalling the Light Agent for Linux component
- Removing Kaspersky Security Center Network Agent on virtual machines
- Removing Kaspersky Security management plug-ins and the Integration Server
Application management concept
- About managing the application using Kaspersky Security Center
  - Kaspersky Security management plug-ins
  - Available application functionalities depending on the Management console
- About managing the application using the Light Agent for Windows local interface
- Managing the application using Kaspersky Security Center policies
- Managing the application using tasks
- Managing the application using Kaspersky Security Center Web Console
- About access rights to the settings of policies and tasks in Kaspersky Security Center
- About Integration Server Console
Licensing of the application
- About the End User License Agreement
- About data provision
- About the license
- About the License Certificate
- About license key
- About the activation code
- About the key file
- About subscription
- About application activation
  - Conditions for activating the application using the activation code
  - Important considerations when adding keys
- Application activation procedure
- Renewing a license
- Renewing subscription
- Viewing information about the license keys used in Kaspersky Security Center
- Viewing information about the license key in a local interface
Starting and stopping the application
- Enabling and disabling automatic startup of the Light Agent for Windows component
- Manually starting and stopping the application in a local interface
- Pausing and resuming virtual machine protection and control in a local interface
Virtual machine protection status
- Statuses of client devices in Kaspersky Security Center
- Statuses of Light Agent functional components on virtual machines
- Protection status of a virtual machine in the local interface of Light Agent for Windows
- About security tags
Configuring the Integration Server connection settings
- Configuring the settings for connecting SVMs to the Integration Server
- Configuring the settings for connecting Light Agents to the Integration Server
Configuring the settings for connecting Light Agents to SVMs
- Configuring SVM discovery settings
- Configuring the use of connection tags
  - Assigning connection tags to Light Agents
  - Configuring the use of connection tags for an SVM
- Encrypting the connection between a Light Agent and SVM
  - Enabling and disabling connection protection on an SVM
  - Enabling and disabling connection protection on a Light Agent
- Configuring the SVM selection algorithm
Configuring the general anti-virus protection settings
- Selecting types of detectable objects
- Configuring the trusted zone
  - Configuring a trusted zone of Light Agent for Windows
  - Creating the Light Agent for Linux exclusions
- Advanced Disinfection technology
  - Configuring Advanced Disinfection via Kaspersky Security Center
  - Configuring the use of Advanced Disinfection technology in the local interface
Protecting the file system of a virtual machine. File Anti-Virus
- Configuring File Anti-Virus of Light Agent for Windows
- Configuring File Anti-Virus of Light Agent for Linux via Kaspersky Security Center
AMSI Protection
- Enabling and disabling AMSI Protection
- Configuring object scan settings by AMSI requests
Mail protection. Mail Anti-Virus
- Enabling and disabling Mail Anti-Virus
- Changing the mail security level
- Changing the action to take on infected email messages
- Editing the protection scope of Mail Anti-Virus
- Scan compound files that are attached to messages
- Filtering attachments in messages
- Using Heuristic Analyzer with Mail Anti-Virus
- Scanning emails in Microsoft Office Outlook
  - Configuring the mail scan mode using Kaspersky Security Center
  - Configuring email scanning in Microsoft Office Outlook
Protecting virtual machine web traffic. Web Anti-Virus
- Enabling and disabling Web Anti-Virus
- Changing the web traffic security level
- Changing the action to take on malicious web traffic objects
- Checking web addresses against the database of phishing and malicious web addresses
- Using Heuristic Analyzer with Web Anti-Virus
- Editing the list of trusted web addresses
Monitoring network traffic
- Network ports monitoring
- Scanning secure connections
Firewall
- Enabling or disabling Firewall
- Changing the network connection status
- Managing network packet rules
- Managing network rules for applications and application groups
Network Attack Blocker
- Enabling and disabling Network Attack Blocker
- Editing the settings used in blocking an attacking device
- Configuring a list of IP addresses excluded from blocking
System Watcher
- Enabling and disabling System Watcher
- Enabling and disabling exploit prevention
- Changing the action taken when malware activity is detected
- Rolling back malware actions during disinfection
- Configuring protection of shared folders against external encryption
Application Startup Control
- About Application Startup Control rules
- Enabling and disabling Application Startup Control
- Getting information about applications that are installed on protected virtual machines
- Creating the Inventory task
- Creating and editing the Application Startup Control rule
- Changing the operating status of an Application Startup Control rule
- Removing the Application Startup Control rule
- Configuring startup control of executable modules and drivers
- Editing Application Startup Control message templates
Application Privilege Control
- Enabling and disabling Application Privilege Control
- Managing trust groups
  - Placing applications into groups
  - Moving an application to a trust group in a local interface
- Working with application control rules
- Protecting operating system resources and personal data
Device Control
- About rules of access to devices and connection buses
- Standard decisions on access to devices
- Enabling and disabling Device Control
- Editing a device access rule
- Editing a connection bus access rule
- Actions with trusted devices
- Editing templates of Device Control messages
- Providing access to a blocked device
Web Control
- About web resource access rules
- Web resource content categories
- Enabling and disabling Web Control
- Actions with web resource access rules
- Rules for creating masks for web resource addresses
- Exporting and importing the list of web resource addresses
- Editing templates of Web Control messages
System Integrity Monitoring
- Enabling and disabling Real-Time System Integrity Monitoring
- Configuring the system integrity monitoring scope and the System Integrity Check scope
- Creating and updating the baseline
- Checking system integrity by schedule or on demand
- Viewing information about system integrity on a virtual machine
- System integrity status reset
  - System integrity status reset for one virtual machine
  - Creating a system integrity status reset task
Network Monitor
Scanning the virtual machine
- Creating a Virus scan task
- Configuring virus scan task settings for Light Agent for Windows
- Configuring virus scan task settings for Light Agent for Linux
- Configuring scan task settings in a local interface
- Specifics of scanning symbolic and hard links
- Scanning removable drives when they are connected to the virtual machine
- Managing unprocessed objects
Interaction with other Kaspersky solutions
- Kaspersky Endpoint Agent
- Managed Detection and Response
Updating databases and application modules
- Enabling and disabling application module updates
- Automatically downloading the application module and database update package to SVMs
- Creating a Protection Server database update task
- Creating an SVM application module update task
- Configuring the update task run mode in a local interface
- Updating Light Agent for Windows databases and modules on a virtual machine template
- Rolling back the last update of databases and application modules
  - Creating a Protection Server database update rollback task
  - Rolling back application module updates on SVMs and virtual machines
Participating in Kaspersky Security Network
- About data provision when Kaspersky Security Network is being used
- Viewing the Kaspersky Security Network Statement
- Configuring the use of KSN in the Protection Server policy
- Checking the connection to Kaspersky Security Network in a local interface
Configuration of additional application settings
- Configuring the display of advanced policy properties for the Protection Server
- Configuring advanced settings of SVM operation
- Application Self-Defense
- Password-protecting access to application settings in a local interface
  - Enabling and disabling password protection
  - Changing the application access password
- Specifying a reason when terminating the application or disabling protection components in a local interface
- Configuring user interaction with the local interface
- Restoring the standard application settings in a local interface
- Using a configuration file
  - Exporting and importing Light Agent for Linux settings from the command line
  - Exporting and importing Light Agent for Windows settings in a local interface
Backup
- Configuring Backup settings
- Working with Backup in a local interface
  - Restoring files from Backup in a local interface
  - Deleting backup copies of files from Backup in a local interface
Reports and notifications
- Configuring event and notification settings for Light Agent for Windows
- Configuring report settings
- Managing reports in a local interface
SVM reconfiguration
- Selecting an action
- Selecting SVM for reconfiguration
- Entering the configuration password
- Editing SVM network settings
- Editing SVM network settings (infrastructures based on OpenStack)
- Changing SVM IP settings
- Changing Kaspersky Security Center connection settings
- Changing the configuration password and root account settings
- Starting SVM reconfiguration
- Starting SVM reconfiguration (infrastructures based on OpenStack)
- SVM reconfiguration
- Finishing SVM reconfiguration
Viewing and editing Integration Server settings
- Viewing Integration Server settings in the Integration Server Console
- Changing passwords of Integration Server accounts
- Changing and deleting the settings for connection of the Integration Server to the virtual infrastructure
  - Changing the settings for connection of the Integration Server to the virtual infrastructure
  - Deleting the settings for connection of the Integration Server to the virtual infrastructure
Monitoring SVM status
Application components integrity check
Using Kaspersky Security for Virtualization 5.2 Light Agent in multitenancy mode
- Deploying tenant protection infrastructure
- Registering existing tenants and their virtual machines
- Enabling and disabling tenant protection
- Getting tenant information
- Receiving tenant protection reports
- Removing virtual machines from the protected infrastructure
- Removing tenants
- Using Integration Server REST API in multi-tenancy scenarios
Managing Light Agent for Linux from the command line
- Viewing license information
- Viewing information about the application
- Viewing SVM information
- Viewing information about the Integration Server
- Starting and stopping a task
- Viewing the status of the task
- Viewing task performance statistics
- Scanning the virtual machine
- Database update
- Managing Backup
Managing Light Agent for Windows from the command line
- EXIT command
- EXPORT command
- IMPORT command
- LICENSE command
- RESTORE command
- SCAN command
- START command
- STATISTICS command
- STATUS command
- STOP command
- SVMINFO command
- TRACES command
- UPDATE command
Contacting Technical Support
- How to get technical support
- Technical Support via Kaspersky CompanyAccount
- Getting information for Technical Support
Appendices
- Using the klconfig script API to define SVM configuration settings
- Settings in the setup.ini file
- Settings in the ScanServer.conf file
- Settings in the LightAgent.conf file
- Object ID values for SNMP
Sources of information about the application
Glossary
- Activation code
- Active key
- Administration Server
- Application activation
- Application databases
- Backup
- Backup copy of a file
- Compound file
- Database of malicious web addresses
- Database of phishing web addresses
- Desktop key
- End User License Agreement
- Heuristic Analysis
- Infectable file
- Integration Server
- Kaspersky CompanyAccount
- Kaspersky Security Network (KSN)
- Key file
- Key with a limitation on the number of processor cores
- Key with a limitation on the number of processors
- Keylogger
- License
- License certificate
- License key (key)
- Light Agent
- OLE object
- OpenStack domain
- OpenStack project
- Phishing
- Protected virtual machine
- Reserve key
- Server key
- Signature Analysis
- Startup objects
- SVM
- SVM Management Wizard
- Update source
Information about third-party code
Trademark notices

Licensing of the application

This section contains information about basic concepts related to Kaspersky Security licensing.

In this Help section

About the End-User License Agreement

About data provision

About the license

About the License Certificate

About license key

About the activation code

About the key file

About subscription

About application activation

Application activation procedure

Renewing a license

Renewing subscription

Viewing information about the license keys used in Kaspersky Security Center

Viewing information about the license key in a local interface

Article ID: 69238, Last review: Mar 17, 2025

Page top