Scenario: certificate assignment for a group of thin clients
If certificates are assigned for an administration group in the Kaspersky Security Center Web Console, a user of a thin client that is included in this group will be able to connect only to the servers for which certificates have been added in the Web Console.
Kaspersky Security Center must be installed and configured in advance.
The scenario for assigning certificates to a group of thin clients includes the following steps:
- Configuring a connection to Kaspersky Security Center
In the Kaspersky Thin Client interface, configure the connection to Kaspersky Security Center.
- Adding thin clients to managed devices
In the Web Console interface, add a thin client to the managed devices group if the thin client is still in the unassigned devices group.
- Creating an active Kaspersky Security Center policy for Kaspersky Thin Client
In the Web Console interface, create an active policy for the relevant group of devices.
- Adding certificates for connection to a remote environment and a log server
In the Kaspersky Security Center Web Console interface, add required certificates and move the toggle button in the right part of the page to the Enforced position. Wait for Kaspersky Thin Client to fully synchronize with Kaspersky Security Center. You can define the synchronization period when configuring Kaspersky Thin Client through the Kaspersky Security Center Web Console. After synchronization, devices will receive the Kaspersky Security Center Administration Server certificates.
If you remove all certificates that were assigned to a group of devices, the users of thin clients from this group will be able to connect to any server, including servers that have not been assigned any certificates.
