Light Agent for Windows policy
July 3, 2024
ID 74263
You can use a Light Agent for Windows policy to configure the following application settings:
- Automatically starting the application on a virtual machine.
- Settings of the following control components:
- General anti-virus protection settings.
- Settings of the following protection components:
- Settings for connecting Light Agents to SVMs and the Integration Server:
- SVM discovery settings for SVMs running in the network, and settings for receiving information about them.
- Settings for connecting Light Agents to the Integration Server. You must configure a connection if you are using the Integration Server to receive information about SVMs running in the network, and if you are using tags for connecting Light Agents to SVMs.
- Using tags for connecting to SVMs.
- Settings for encrypting the connection between Light Agents and SVM.
- Algorithm used by Light Agents when selecting SVMs.
All settings for connecting Light Agents to SVMs and to the Integration Server, except SVM discovery settings, cannot be configured when creating a policy for Light Agent for Windows. You can configure these settings in the policy properties window.
- Other settings of the application:
- Network traffic monitoring settings.
- Application Self-Defense settings.
- Settings for managing local and group tasks (except for the custom scan task) through the local interface.
- Scan mode when the virtual machine is idle.
- Settings for scanning removable drives on the virtual machine.
- Settings for reports and Backup.
- Settings for interaction between the Light Agent local interface and the user.
- Settings for protecting access to application features and settings in the local interface.
- Notification settings in the local interface regarding events occurring during Light Agent operation.
For information about configuring general policy settings and event settings, please refer to the Kaspersky Security Center help.
The user of a protected virtual machine can also configure the settings of the Light Agent for Windows policy in the local interface of the application, if this is not blocked by the policy.
The capability to locally edit an application setting on a protected virtual machine is determined by the "lock" status:
- When a setting is "locked" (), the user cannot edit the setting locally, and the policy-defined setting is applied to all protected virtual machines within the administration group.
- When a setting is "unlocked" (), the user can edit the setting locally on each protected virtual machine within the administration group.
You can create and modify the Light Agent for Windows policy settings using the Administration Console and using the Web Console.