Installation of the Kaspersky Security administration plug-in and Integration Server

You can install the Kaspersky Security administration plug-in, Integration Server, and the Integration Server Management Console by using one of the following methods:

• In interactive mode using the Wizard
• In silent mode via the command line

Installation of the Kaspersky Security administration plug-in and Integration Server components should be performed under a user account that belongs to the group of local administrators.

The Kaspersky Security administration plug-in and Integration Server Management Console must be installed on the computer on which the Kaspersky Security Center Administration Console is installed. The Integration Server must be installed on the computer on which the Administration Server of Kaspersky Security Center is installed.

The Microsoft .NET Framework 4.6.1 platform is required for installation of the Integration Server, Integration Server Management Console, and Kaspersky Security administration plug-in. You can install the Microsoft .NET Framework 4.6.1 platform in advance or it will be installed automatically during the installation of Kaspersky Security application components. If there are any problems with the installation of Microsoft .NET Framework 4.6.1, make sure that Windows updates KB2919442 and KB2919355 have been installed on the computer.

Depending on the availability of Kaspersky Security Center components installed on the computer, the following operations are performed once installation is started:

• If only the Administration Console of Kaspersky Security Center is installed on the computer, the Kaspersky Security administration plug-in and the Integration Server Management Console are installed.
• If the Kaspersky Security Center Administration Server and the Administration Console of Kaspersky Security Center are installed on the computer, the Kaspersky Security administration plug-in, the Integration Server, and the Integration Server Management Console are installed.

A secure SSL connection is used for interaction between the Integration Server and the Management Console, SVMs, the VMware vCenter Server, and VMware NSX Manager. To eliminate known vulnerabilities in the operating system for the SSL protocol, during installation of the Integration Server changes described in the Microsoft technical support database are made to the operating system registry. These changes result in the disabling of the following encryption ciphers and protocols:

• SSL 3.0
• SSL 2.0
• AES 128
• RC2 40/56/128
• RC4 40/56/64/128
• 3DES 168

While the Integration Server is being installed, the Integration Server's self-signed SSL certificate used for establishing a secure connection with the Integration Server is installed in the operating system registry. If the Integration Server certificate is lost or if you want to use a more secure certificate, you can replace the Integration Server's SSL certificate (the certificate replacement procedure is described in the Knowledge Base).

If the Integration Server was previously installed in your virtual infrastructure and you removed it but saved data used in the operation of the Integration Server, this data is used automatically when you install the Integration Server again.

After installation, the Kaspersky Security administration plug-in appears in the list of installed administration plug-ins in the properties of the Kaspersky Security Center Administration Server.