Scenario: Switching Kaspersky Thin Client to trusted mode
Trusted mode is an operating mode of Kaspersky Thin Client in which the thin client is connected to and managed via Kaspersky Security Center. Kaspersky Security Center must be installed and configured in advance.
The scenario for switching Kaspersky Thin Client to trusted mode consists of the following steps:
- Configuring a connection to Kaspersky Security Center
In the Kaspersky Thin Client interface, configure the connection to Kaspersky Security Center.
- Creating an active Kaspersky Security Center policy for Kaspersky Thin Client
In the Kaspersky Security Center Web Console interface, create an active policy for the group of devices for which you want to enable centralized control via Kaspersky Security Center.
- Adding certificates for securely connecting to remote desktops
In the interface of the Kaspersky Security Center Web Console, add certificates for securely connecting to remote desktops (managed by Basis.WorkPlace or via RDP) and move the toggle button in the right part of the page to the Enforced position. Wait for Kaspersky Thin Client to fully synchronize with Kaspersky Security Center. The synchronization period (heartbeat) is defined when configuring Kaspersky Thin Client through the Kaspersky Security Center Web Console. After synchronization, devices will receive the Kaspersky Security Center Administration Server certificates.
When these actions are complete, Kaspersky Thin Client will operate in trusted mode.
In some cases, such as when switching to a new Kaspersky Security Center Administration Server, you can switch a device running Kaspersky Thin Client out of trusted mode by deleting the security certificates and disabling management of the group via Kaspersky Security Center.
