Kaspersky Managed Detection and Response

Hardware and software requirements

February 12, 2024

ID 196546

Required EPP applications and supported configurations

In order to use Kaspersky Managed Detection and Response, at least one of the following EPP applications must be deployed in your infrastructure:

Operating systems

Kaspersky Managed Detection and Response is compatible with the same operating systems as the EPP applications listed below. For details, please refer to the Hardware and software requirements section in the documentation of compatible EPP applications listed in the table below.

Compatible Kaspersky applications versions

Kaspersky Managed Detection and Response is compatible with the versions of Kaspersky applications listed in the table below.

Kaspersky application

Recommended versions
and their term of support

Compatible versions
and their term of support

Notes

Kaspersky Endpoint Security for Windows

12 or later

11 or later

 

Kaspersky Endpoint Security for Windows in Endpoint Detection and Response Agent (EDR Agent) configuration

12.3 or later

12.3 or later

 

Kaspersky Endpoint Security for Linux

11.4 or later

11.2 or later

If you use Kaspersky Endpoint Security for Linux and do not have the Linux Audit Daemon (also referred to as auditd) package installed, system audit events are logged to the dmesg kernel log. We recommend installing the auditd package for the convenience of Kaspersky Endpoint Security for Linux managing log rotation.

Kaspersky Endpoint Security for Mac

11.3 or later

11.2 or later

 

Kaspersky Security for Virtualization Light Agent

5.2 or later

5.2 or later

 

Kaspersky Endpoint Agent

3.15 or later

3.12 or later

Kaspersky Endpoint Agent is only required if you use Kaspersky Security for Windows Server.

 

Please note that the Kaspersky Managed Detection and Response solution is compatible with the Kaspersky Endpoint Agent versions 3.9, 3.10 and 3.11, but the technical support period for these versions is over. If you use Kaspersky Endpoint Agent versions 3.9, 3.10, and 3.11 as an agent for the Kaspersky Managed Detection and Response solution, Kaspersky recommends updating Kaspersky Endpoint Agent to version 3.15.

Working with Kaspersky Security Center Cloud Console is only available for Kaspersky Endpoint Agent for Windows 3.12 or later.

Kaspersky Security for Windows Server

We recommend to use Kaspersky Endpoint Security for Windows 12 or later

11.x

To use the MDR functionality on your servers running Windows, we recommend using Kaspersky Endpoint Security for Windows on these servers, instead of Kaspersky Security for Windows Server with Kaspersky Endpoint Agent:

Kaspersky Security Center Windows

14.2

13 or later

With MDR Plug-in for Kaspersky Security Center.

Kaspersky Security Center Cloud Console

n/a

n/a

The latest version is always used in the cloud.

MDR Plug-in for Kaspersky Security Center

Latest version

Latest version

In Kaspersky Security Center 13 Windows, the latest version available is 2.1.13.

MDR Plug-in 2.1.14 and later is available only in Kaspersky Security Center 14 Windows or later.

Kaspersky Security Center Network Agent

The version provided with Kaspersky Security Center Windows installed

13 or later

When you update Kaspersky Security Center, you must also update Kaspersky Security Center Network Agent to the corresponding version.

Kaspersky Anti Targeted Attack Platform

5.1

4.0 or later

 

Kaspersky Endpoint Detection and Response

5.1

4.0 or later

 

Kaspersky Endpoint Detection and Response Optimum

2.3

2.0

If you use Kaspersky Endpoint Security for Windows 11.7 or later, EDR Optimum must be used without Kaspersky Endpoint Agent.

 

To activate Kaspersky Endpoint Detection and Response Optimum functions, you must add one of the following license keys on your assets via Kaspersky Security Center:

  • Kaspersky Endpoint Detection and Response Optimum
  • Kaspersky Endpoint Detection and Response Optimum add-on

To learn more about the supported versions of Kaspersky applications and solutions, refer to the Product Support Lifecycle webpage.

Kaspersky Managed Detection and Response Web Console

Kaspersky Managed Detection and Response Web Console has the following hardware and software requirements:

  • Monitor that supports a display resolution of 1024x768 or higher
  • Any of the following browsers:
    • Apple Safari—15 on macOS
    • Google Chrome—100.0.4896.88 or later (official build)
    • Microsoft Edge—100 or later
    • Mozilla Firefox— 91.8.0 or later

Network channel

Based on our statistical data, for the stable operation of Kaspersky Managed Detection and Response, we recommend providing the following network channel throughput:

  • For average load conditions: a full-duplex channel with a bandwidth of at least 2 Mbps for 1000 assets.
  • For peak load conditions: a full-duplex channel with a bandwidth of at least 4 Mbps for 1000 assets.

These bandwidth values are approximate, as the necessary bandwidth greatly depends on the type of asset load generating telemetry events.

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.