Other limitations

On-Demand Scan, Real-Time File Protection:

• Scanning of connected MTP-devices is not available.
• Archive scanning is not available without SFX-archive scanning: if archive scanning is enabled in the protection settings of Kaspersky Security for Windows Server, the application automatically scans objects in both archives and SFX-archives. SFX-archive scanning is available without archive scanning.

Licensing:

• The application cannot be activated with a key via the Setup wizard if the key is stored on a disk created using the SUBST command, or if the path to the key file is a network path.

Updates:

• After Kaspersky Security for Windows Server critical modules updates are installed, the application icon is hidden by default.
• KLRAMDISK is not supported on protected devices running the Windows XP or Windows Server 2003 operating system.

Interface:

• In the Application Console, filtering in the Quarantine, Backup, System audit log or Task log is case sensitive.
• When configuring a protection or scan scope in the Application Console, you can use only one mask and only at the end of the path. Some examples of correct masks include: "C:\Temp\Temp*", or "C:\Temp\Temp???.doc", and "C:\Temp\Temp*.doc". This limitation does not affect configuration of the Trusted Zone.

Security:

• If the operating system’s User Account Control feature is enabled, a user account must be part of the KAVWSEE Administrators group to open the Application Console with a double-click on the application icon in the tray notification area. Otherwise, it will be necessary to login as a user whose is allowed to open the Compact Diagnostic Interface or Microsoft Management Console snap-in.
• The application cannot be uninstalled via the Microsoft Windows Programs and Features window if User Account Control is enabled.

Integration with Kaspersky Security Center:

• Administration Server verifies database updates when update packages are received, before sending the updates to protected devices on the network. Administration Server does not verify software module updates.
• Make sure the required check boxes are selected in the Interaction with the Administration Server settings when you use components that transmit dynamic data to Kaspersky Security Center using network lists (Quarantine, Backup, Blocked hosts).

Exploit prevention:

• Exploit Prevention is not available if the apphelp.dll libraries are not loaded in the current environment configuration.
• The Exploit Prevention component is incompatible with Microsoft’s EMET utility on protected devices running the Microsoft Windows 10 operating system: Kaspersky Security for Windows Server blocks EMET, if the Exploit Prevention component is being installed on a protected device with EMET installed.

Anti-Cryptor for NetApp:

• Anti-Cryptor protection cannot be provided for NASes running new operating systems (ONTAP 9 and higher) if FlexGroup containers are used for these servers.
• File threat detection is limited on NetApp network attached storages in 7 Mode.
• Anti-Cryptor for NetApp is only available in cluster mode.
• A server can use only one network interface and only one IPv4 address.

Blocked Host storage: runs continuously when the Anti-Cryptor or Real-Time File Protection components are enabled.

ICAP Network Storage Protection:

• Management of the contents of protected storage depends on the storage settings. For example, detected infected objects cannot be deleted if the storage does not allow this action.
• HPE 3PAR storage only works in block access mode.
• If an exclusion rule for not-a-virus objects is active within the Trusted Zone, it is also applied to the ICAP Network Storage Protection task.

RPC Network Storage Protection: Active Directory is required for cluster mode.

KSN Usage: For Windows Vista and earlier versions of Windows operating systems, this component does not support statistics for web threat protection and mail threat protection.