Other limitations

On-Demand Scan, Real-Time File Protection:

• Scanning of connected MTP-devices is not available.
• Archive scanning is not available without SFX-archive scanning: if archive scanning is enabled in the protection settings of Kaspersky Embedded Systems Security, the application automatically scans objects in both archives and SFX-archives. SFX-archive scanning is available without archive scanning.

Licensing:

• The application cannot be activated with a key via the Setup wizard if the key is stored on a disk created using the SUBST command, or if the path to the key file is a network path.

Updates:

• After Kaspersky Embedded Systems Security critical modules updates are installed, the application icon is hidden by default.
• KLRAMDISK is not supported on protected devices running the Windows XP or Windows Server 2003 operating system.

Interface:

• In the Application Console, filtering in the Quarantine, Backup, System audit log or Task log is case sensitive.
• When configuring a protection or scan scope in the Application Console, you can use only one mask and only at the end of the path. Some examples of correct masks include: "C:\Temp\Temp*", or "C:\Temp\Temp???.doc", and "C:\Temp\Temp*.doc". This limitation does not affect configuration of the Trusted Zone.

Security:

• If the operating system’s User Account Control feature is enabled, a user account must be part of the KAVWSEE Administrators group to open the Application Console with a double-click on the application icon in the tray notification area. Otherwise, it will be necessary to login as a user whose is allowed to open the Compact Diagnostic Interface or Microsoft Management Console snap-in.
• The application cannot be uninstalled via the Microsoft Windows Programs and Features window if User Account Control is enabled.

Integration with Kaspersky Security Center:

• Administration Server verifies database updates when update packages are received, before sending the updates to protected devices on the network. Administration Server does not verify software module updates.
• Make sure the required check boxes are selected in the Interaction with the Administration Server settings when you use components that transmit dynamic data to Kaspersky Security Center using network lists (Quarantine, Backup).

Exploit Prevention:

• Exploit Prevention is not available if the apphelp.dll libraries are not loaded in the current environment configuration.
• The Exploit Prevention component is incompatible with Microsoft’s EMET utility on protected devices running the Microsoft Windows 10 operating system: Kaspersky Embedded Systems Security blocks EMET, if the Exploit Prevention component is being installed on a protected device with EMET installed.