Creating a service management task

Support

Support for business applications

Kaspersky Anti Targeted Attack (KATA) Platform

For security officers: Getting started with the application web interface

Managing tasks

Creating a service management task

8 November 2023

ID 247378

You can remotely start, stop, pause, or resume a service, as well as remove a service or change its start type on selected hosts with the Endpoint Agent component. To do so, you must create a service management task.

To create a service management task:

Select the Tasks section in the application web interface window.
This opens the task table.
Click Add and select Service management.
This opens the task creation window.
Configure the following settings:
1. In the Service name field, enter the name of the service.
2. In the MD5/SHA256 field, enter the MD5 or SHA256 hash of the service. This field is optional.
  If you enter the hash of a service that is loaded from a DLL, Kaspersky Anti Targeted Attack Platform simultaneously compares the specified hash with the hash of the service DLL and the hash of the svchost process.
3. In the Action field, select the operation that you want to perform on the service.
  The application supports the following operations with services:
  - Start.
  - Stop.
  - Pause.
  - Resume.
  - Delete.
  - Modify startup type.
  When you remove a service, processes that the service has started keep running until the system is restarted or the process is terminated.
4. If you selected Modify startup type, in the Startup type, select the start type for the service.
5. Description is the task description. This field is optional.
6. Task for—Task scope:
  - If you want to run the task on all hosts of all servers, select the All hosts option.
  - If you want to run the task on selected servers, select the Specified servers option and on the right of the Servers parameter name select the check boxes next to the names of the servers on which you want to run the task.
    This option is available only when distributed solution and multitenancy mode is enabled.
    
    Operation mode in which Kaspersky Anti Targeted Attack Platform is used to protect the infrastructure of multiple organizations or branch offices of the same organization simultaneously.
    
    Two-level hierarchy of servers with Central Node components installed. This hierarchy allocates a primary control server (Primary Central Node (PCN)) and secondary servers (Secondary Central Nodes (SCN)).
  - If you want to run the task on selected hosts, select the Specified hosts option and list these hosts in the Hosts field.
  If you are using Kaspersky Endpoint Agent as the Endpoint Agent component, the task can be assigned only to hosts running Kaspersky Endpoint Agent for Windows version 3.12 and later. Host with earlier versions of Kaspersky Endpoint Agent for Windows and Kaspersky Endpoint Agent for Linux hosts are displayed in the list of hosts but cannot be selected.
Click Add.

The service management task is created. The task runs automatically after it is created.

Stopping, pausing, deleting services or changing the start type of services that affect the functioning on the host is strongly discouraged.

List of services for which management is not recommended

Users with the Security auditor role cannot create service management tasks.

Users with the Security officer role do not have access to tasks.

Kaspersky Professional Services

Implementation services. Health check and security system configuration. Contact us if you need expert help.

Kaspersky Premium Support (MSA): High‑priority incident processing

Telephone and web ticket support. Fast response, monitoring and health check. Submit a request and activate the contract (MSA).

Did you find this article helpful?

What can we do better?

Thank you for your feedback! You're helping us improve.