Support

Support for business applications

Kaspersky Embedded Systems Security 3.x

Installing and removing the application

Installing and uninstalling via Active Directory group policies

Installing Kaspersky Embedded Systems Security via Active Directory group policies

Kaspersky Embedded Systems Security 3.x
Нет результатов
Knowledge Base Online Help
FAQ Download Forum Contact support Recovery tools

Installing Kaspersky Embedded Systems Security via Active Directory group policies

March 10, 2023

ID 147731

Save as PDF

You can install Kaspersky Embedded Systems Security on several protected devices via the Active Directory group policy. You can install the Application Console the same way.

The protected devices on which you want to install Kaspersky Embedded Systems Security or the Application Console must be in the same domain and a single organizational unit.

The operating systems on the protected devices on which you want to install Kaspersky Embedded Systems Security using the policy must be of the same bitness (32-bit or 64-bit).

You must have domain administrator rights.

To install Kaspersky Embedded Systems Security, use the ess_x86.msi or ess_x64.msi installation package. To install the Application Console, use the esstools.msi installation package.

Detailed information about the use of Active Directory group policies is provided in the documentation supplied by Microsoft.

To install Kaspersky Embedded Systems Security (or the Application Console):

  1. Save the msi file corresponding to the bitness (32- or 64-bit) of the installed version of the Microsoft Windows operating system in the public folder on the domain controller.
  2. Save the key file in the same public folder on the domain controller.
  3. In the same public folder on the domain controller, create an install_props.json file with the contents below, which means that you accept the terms of the License Agreement and the Privacy Policy.

    {

    "EULA": "1",

    "PRIVACYPOLICY": "1"

    }

  4. On the domain controller create a new policy for the group that the protected devices belong to.
  5. Using the Group Policy Object Editor, create a new installation package in the Computer Configuration node. Specify the path to the msi file for Kaspersky Embedded Systems Security (or Application Console) in UNC (Universal Naming Convention) format.
  6. Select the Windows Installer's Always install with elevated privileges check box in both the Computer Configuration node and in the User Configuration node of the selected group.
  7. Apply the changes using the gpupdate /force command.

Kaspersky Embedded Systems Security will be installed on the protected devices of the group after they have been restarted.

Kaspersky Professional Services
Implementation services. Health check and security system configuration. Contact us if you need expert help.
Kaspersky Premium Support (MSA): High‑priority incident processing
Telephone and web ticket support. Fast response, monitoring and health check. Submit a request and activate the contract (MSA).
Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.