Known issues and limitations

Kaspersky Endpoint Security has following known issues and limitations:

• If an application that collects information and sends it to be processed is installed on your computer, the Kaspersky Endpoint Security application may classify this application as malware. To avoid this, you can exclude the application from scanning by configuring the Kaspersky Endpoint Security application as described in this document.
• Application functional settings can be modified by editing configuration files.
• In Kaspersky Security Center, local tasks may be listed twice in the properties of managed devices.
• Changing the update source for a local update task disables automatic execution of the update task.
• If you start a computer restart task via Administration Console with a message to the user that contains a semicolon (;), the task is displayed as completed but the user is not prompted to restart their Mac.
• To exclude Safari network traffic from scanning by Kaspersky Endpoint Security, you need to add the following paths to the exclusion list:
  • /System/Library/Frameworks/WebKit.framework/Versions/A/XPCServices/com.apple.WebKit.Networking.xpc/Contents/MacOS/com.apple.WebKit.Networking
  • /System/Library/Frameworks/WebKit.framework/Versions/A/XPCServices/com.apple.WebKit.WebContent.xpc/Contents/MacOS/com.apple.WebKit.WebContent
  • /System/Library/PrivateFrameworks/SafariShared.framework/Versions/A/XPCServices/com.apple.Safari.SearchHelper.xpc/Contents/MacOS/com.apple.Safari.SearchHelper
  • /System/Library/Frameworks/webkit2.framework/versions/a/xpcservices/com.apple.webkit.networking.xpc/contents/macos/com.apple.webkit.networking
• To exclude Google Chrome network traffic from scanning by Kaspersky Endpoint Security, you need to add the following path to the exclusion list:
  • /Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/<VersionNumber>/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper
• After you create a policy profile for a Kaspersky Endpoint Security policy using Kaspersky Security Center Web Console and Cloud Console, you need to check that the settings are applied correctly on client computers.
• When enabling FileVault disk encryption in policy settings, users with administrator rights can decrypt the startup disk of their Mac from System Settings (System Preferences).
• Changes in the proxy server options will be applied only after Kaspersky Endpoint Security is restarted.
• Safari might not connect to a website with an untrusted certificate. You can add such a website to the exclusions or use another browser.
• After uninstalling Kaspersky Endpoint Security 11.2 or later remotely via Kaspersky Security Center, one of the application’s system extension may remain in computer memory. After that, in rare cases, a problem with the full disk access permission may occur when installing Kaspersky Endpoint Security. In this case, we recommend to uninstall the application locally and reinstall it.
• The applications that need Rosetta might not be installed if Kaspersky Endpoint Security is running. To resolve the problem, quit Kaspersky Endpoint Security and try to reinstall the application.