Setting up access to Kaspersky Security Network

You can set up access to Kaspersky Security Network (KSN) on the Administration Server and on a distribution point.

To set up Administration Server access to Kaspersky Security Network (KSN):

  1. In the console tree, select the Administration Server for which you want to configure access to KSN.
  2. In the context menu of the Administration Server, select Properties.
  3. In the Administration Server properties window, in the Sections pane, select KSN ProxyKSN Proxy settings.
  4. In the workspace, select the Use Administration Server as proxy server check box to enable the KSN Proxy service.

    Data is sent from client devices to KSN in accordance with the Kaspersky Endpoint Security policy, which is active on those client devices. If this check box is cleared, no data will be sent to KSN from the Administration Server and client devices through Kaspersky Security Center. However, client devices can send data to KSN directly (bypassing Kaspersky Security Center), in accordance with their respective settings. The Kaspersky Endpoint Security for Windows policy, which is active on client devices, determines which data will be sent directly (bypassing Kaspersky Security Center) from those devices to KSN.

  5. Select the I agree to use Kaspersky Security Network check box.

    If this check box is selected, client devices send patch installation results to Kaspersky Lab. When selecting this check box, make sure to read and accept the terms of the KSN Statement.

    If you are using Private KSN, select the Configure Private KSN check box and click the Select file with KSN settings button to download the settings of Private KSN (files with the extensions pkcs7 and pem). After the settings are downloaded, the interface displays the provider's name and contacts, as well as the creation date of the file with the settings of Private KSN.

    When you select the Configure Private KSN check box, a message appears with details about Private KSN.

    The following Kaspersky Lab applications support Private KSN:

    • Kaspersky Security Center 10 Service Pack 1 or later
    • Kaspersky Endpoint Security 10 Service Pack 1 for Windows or later
    • Kaspersky Security for Virtualization 3.0 Agentless Service Pack 2
    • Kaspersky Security for Virtualization 3.0 Service Pack 1 Light Agent

    If you enable the Configure Private KSN option in Kaspersky Security Center, these applications receive information about supporting Private KSN. In the settings window of the application, in the Kaspersky Security Network subsection of the Advanced Threat Protection section, KSN provider: Private KSN is displayed. Otherwise, KSN provider: Global KSN is displayed.

    If you use application versions earlier than Kaspersky Security for Virtualization 3.0 Agentless Service Pack 2 or earlier than Kaspersky Security for Virtualization 3.0 Service Pack 1 Light Agent when running Private KSN, we recommend that you use slave Administration Servers for which the use of Private KSN has not been enabled.

    Kaspersky Security Center does not send any statistical data to Kaspersky Security Network if Private KSN is configured in the KSN Proxy KSN Proxy settings section of the Administration Server properties window.

    If you have the proxy server settings configured in the Administration Server properties, but your network architecture requires that you use Private KSN directly, enable (select) the Ignore KSC proxy server settings when connecting to Private KSN option. Otherwise, requests from the managed applications cannot reach Private KSN.

  6. Configure the Administration Server connection to the KSN Proxy service:
    • Under Connection settings, for the TCP port, specify the number of the TCP port that will be used for connecting to the KSN Proxy server. The default port to connect to the KSN Proxy server is 13111.
    • If you want the Administration Server to connect to the KSN Proxy server through a UDP port, select the Use UDP port check box and specify a port number for the UDP port. By default, this check box is cleared, and UDP port 15111 is used for connecting to the KSN Proxy server.
  7. Select the Connect slave Administration Servers to KSN through master Administration Server check box.

    If this check box is selected, slave Administration Servers use the master Administration Server as the KSN proxy server. If this check box is cleared, slave Administration Servers connect to KSN on their own. In this case, managed devices use slave Administration Servers as KSN proxy servers.

    Slave Administration Servers use the master Administration Server as a proxy server if in the right pane of the KSN Proxy settings section, in the properties of slave Administration Servers the Use Administration Server as proxy server check box is selected.

  8. Click OK.

The KSN access settings will be saved.

You can also set up distribution point access to KSN, for example, if you want to reduce the load on the Administration Server. The distribution point that acts as a KSN proxy server sends KSN requests from managed devices to Kaspersky Lab directly, without using the Administration Server.

To set up distribution point access to Kaspersky Security Network (KSN):

  1. Make sure that the distribution point is assigned manually.
  2. In the console tree, select the Administration Server node.
  3. In the context menu of the Administration Server, select Properties.
  4. In the Administration Server properties window, select the Distribution points section.
  5. Select the distribution point in the list and click the Properties button to open its properties window.
  6. In the distribution point properties window, in the KSN Proxy section, select Access KSN Cloud directly over Internet.
  7. Click OK.

The distribution point will act as a KSN Proxy server.

Page top