Support

Support for business applications

Kaspersky Thin Client

Data provision

Kaspersky Thin Client
Нет результатов
Knowledge Base Online Help
FAQ Forum Contact support Recovery tools Product videos

Data provision

October 23, 2023

ID 186468

Get as PDF

Kaspersky Thin Client does not send any data to Kaspersky. Data is processed on the devices with Kaspersky Thin Client installed, and on the local infrastructure servers that interact with Kaspersky Thin Client.

Kaspersky Thin Client saves the following information on the device:

  • Event log containing technical data on system operation and information about Kaspersky Thin Client events sent to the Kaspersky Security Center Server.
  • Audit log containing data on certificates uploaded to Kaspersky Thin Client and information on instances of enabling and disabling management of thin clients via Kaspersky Security Center.
  • Thin client settings:
    • Date and time when Kaspersky Thin Client was installed on the device.
    • Thin client name.
    • Currently installed version of Kaspersky Thin Client.
    • Kaspersky Thin Client interface language.
    • List of languages available when switching the keyboard input language.
    • Information about primary and secondary monitors.
    • Primary monitor ID.
    • Location (coordinates) of the connection panel.
    • Time when certificates were last used for authenticating connections: to Kaspersky Security Center, to remote desktops via RDP or via Basis.WorkPlace, and to the log server.
  • Settings for working with Kaspersky Security Center:
    • Address (name or IP address and port) of Kaspersky Security Center Administration Server.
    • Kaspersky Security Center connection method (manually or via DHCP).
    • Set of Kaspersky Thin Client identifiers for connecting to Kaspersky Security Center.
    • Heartbeat interval (minutes) for synchronizing Kaspersky Thin Client with Kaspersky Security Center.
    • Number of certificates received from Kaspersky Security Center to authenticate the connections between Kaspersky Thin Client and remote desktops, the Basis.WorkPlace connection manager, and the log server.
    • Current certificate fingerprint for authenticating Kaspersky Thin Client connection to Kaspersky Security Center.
    • Kaspersky Thin Client naming settings (name, device ID, and additional information) specified by the Kaspersky Security Center administrator.
    • Set of secrets for confirming user actions in the Kaspersky Thin Client interface: resetting data and settings, disconnecting the thin client from Kaspersky Security Center, and replacing the certificate for connecting the thin client to Kaspersky Security Center.
    • Technical support contact details.
    • Certificate files for authenticating Kaspersky Thin Client connection to Kaspersky Security Center.
  • Basis.WorkPlace connection settings:
    • Address (name or IP address and port) of the Basis.WorkPlace connection manager.
    • User name for connecting to the Basis.WorkPlace connection manager.
    • Certificate files for authenticating the connection broker when connecting to a remote desktop managed by Basis.WorkPlace.
    • Number of reconnection attempts.
    • Type of connection between Kaspersky Thin Client and the Basis.WorkPlace connection broker.
    • Settings for redirecting local devices to the remote desktop: whether redirection of USB devices and smart cards is enabled or disabled.
    • Whether use of two monitors is enabled or disabled.
  • RDP server connection settings:
    • Address (name or IP address and port) of the RDP server.
    • Domain and user name for connecting to the RDP server.
    • Remote Desktop Connection Broker collection ID.
    • Certificate files for authenticating the RDP server when connecting to a remote desktop via RDP.
    • Settings for redirecting local devices to the remote desktop:
      • Whether USB devices redirection is enabled or disabled.
      • Whether smart cards redirection is enabled or disabled.
      • Whether redirection of printers is enabled or disabled.
    • Whether use of two monitors is enabled or disabled.
    • Whether automatic connection to the remote desktop after unexpected disconnection is enabled or disabled.
    • Image quality settings:
      • Whether font smoothing is enabled or disabled.
      • Whether menu animation is enabled or disabled.
      • Whether the desktop background is displayed.
      • Whether window contents are rendered while dragging.
      • Whether Windows themes are enabled or disabled.
  • Network settings:
    • Whether automatic network configuration via DHCP is enabled or disabled.
    • Thin client IP address.
    • Subnet mask.
    • List of IP addresses of DNS servers.
    • IP address of the network gateway.
  • Power-saving mode settings: the number of minutes before the monitor turns off and the number of minutes before the thin client turns off when Kaspersky Thin Client is idle.
  • Log server connection settings:
    • Address (name or IP address and port) of the log server used for forwarding audit and event logs.
    • Certificate files for authenticating the log server when Kaspersky Thin Client connects to this server.
  • Date and time settings:
    • Date and time received from the Administration Server during the last synchronization with Kaspersky Security Center.
    • Time zone.
  • Information about available and downloaded Kaspersky Thin Client updates:
    • Update availability status.
    • Update installation status.
    • Update delivery status.
    • Available update data: Kaspersky Thin Client version, release name, date and time, importance.
    • Time of the last successful update check.
    • Time of the last successful update installation.
  • Information about Kaspersky Thin Client End User License Agreements:
    • End User License Agreement IDs.
    • Texts of the End User License Agreements in English and in Russian.
    • Information about whether or not the End User License Agreements were accepted.
    • Information about the release dates of the End User License Agreements.

The Basis.WorkPlace virtualization system saves the following information in the database:

  • User name.
  • IP address of Kaspersky Thin Client.
  • ID of Kaspersky Thin Client.
  • Session startup events.
  • Session termination events.

The name or IP address of the RDP server and Basis.WorkPlace connection manager are overwritten each time a connection is successfully established.

The user name is overwritten upon each successful connection to the RDP server or Basis.WorkPlace connection manager.

The log server address used for audit and event log forwarding is overwritten each time system events are successfully sent to the log server. When an audit and event log is forwarded, all system events saved on the thin client are sent to the log server.

Any received information is protected by Kaspersky in accordance with the requirements established by law and in accordance with current Kaspersky regulations. Data is transmitted over encrypted communication channels.

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.