Enabling options in the policy of Kaspersky Endpoint Agent for Linux
8 November 2023
ID 257354
To enable settings in a policy for Kaspersky Endpoint Agent for Linux using Kaspersky Security Center Web Console:
- Log in to the Kaspersky Security Center Web Console.
- On the Devices tab, select Policies & Profiles.
- Click a previously created Kaspersky Endpoint Agent policy.
This opens the policy settings window.
- Select the Application settings section.
- Select the Other settings subsection.
- Select one of the following options for using a proxy server:
- Do not use proxy server.
- Use proxy server with specified settings.
If you selected Use proxy server with specified settings, in the Server name or IP address and Port, enter the address and port of the proxy server to which you want to connect. Port 8080 is used by default.
Kaspersky Endpoint Agent for Linux does not encrypt the connection with the proxy server. You must take steps to make sure the network connection between your proxy server and Kaspersky Endpoint Agent for Linux is secure.
If you want to use NTLM authentication when connecting to the proxy server:
- Select the Use NTLM authentication by user name and password.
- In the User name field, enter the name of the user whose account will be used for authorization at the proxy server.
- In the Password field, enter the password to obtain connection to the proxy server.
To reveal password characters, click Show to the right of the Password field.
If you do not want to use the proxy server for addresses internal to the organization, select the Bypass proxy server for local addresses check box.
If you are configuring policy settings, in the upper right corner of the group of settings, move the toggle switch from Undefined to Enforce.
- Click OK.
- In the KATA integration section:
- Go to the General Settings subsection.
- In the Data transmission settings group, move the Enforce toggle switch to active.
- In the Event transmission period (sec.) field, type 30.
- In the Event limit per one package, type 1024.
- In the Throttling settings group, select the Enable throttling check box.
- Enter the maximum number of events per hour and the percentage value for events exceeding the limit.
- Click OK.
- Go to the KATA integration settings subsection.
- In the Connection settings group, move the Enforce toggle switch to active.
- Select the Enable KATA integration check box.
- Enter the address and port of the KATA server in the Server and Port fields.
- Select the Use pinned certificate to secure connection check box.
- Click Add new TLS certificate.
- In the opened tab, click Upload and select the server certificate file to set up a secure connection or enter certificate data in the TLS certificate data field.
- Click OK.
- In the Additional security of the connection group, select the Secure with client certificate check box.
- Click Upload cryptographic container and select a client certificate file to set up a secure connection.
- In the Cryptographic container password field, enter the password of the client certificate to set up a secure connection.
- In the Advanced group:
- In the Send sync request to KATA server every (min.) field, enter the synchronization interval in minutes.
- Select the Apply TTL period for events transmission.
- In the TTL period (min.) field, enter the interval for sending synchronization requests.
- Click OK.
- Click Save.
Policy settings required by Kaspersky Endpoint Agent for Linux are enabled.
