KASPERSKY LAB Kaspersky® Administration Kit version 6.
KASPERSKY® ADMINISTRATION KIT VERSION 6.0 Administrator’s manual © Kaspersky Lab Visit our website: http://www.kaspersky.
Contents CHAPTER 1. KASPERSKY ADMINISTRATION KIT .................................................... 6 1.1. About Kaspersky Administration Kit...................................................................... 6 1.2. Hardware and software requirements .................................................................. 7 1.3. Distribution kit ........................................................................................................ 9 1.4. Help desk for registered users ......................
Kaspersky Administration Kit 2.10.2. Main window............................................................................................... 26 2.10.3. Console tree................................................................................................ 27 2.10.4. Shortcut menu ............................................................................................ 29 CHAPTER 3. USING THE APPLICATION................................................................... 33 3.1.
Table of Contents 5 APPENDIX A. GLOSSARY........................................................................................... 87 APPENDIX B. KASPERSKY LAB................................................................................. 93 B.1. Other Kaspersky Lab Products .......................................................................... 94 B.2. Contact Us........................................................................................................... 98 APPENDIX C.
CHAPTER 1. KASPERSKY ADMINISTRATION KIT 1.1. About Kaspersky Administration Kit Kaspersky® Administration Kit is designed for centralized performance of key administrative tasks. It gives you complete control over your enterprise antivirus policy, built on the Kaspersky Anti-Virus Business Optimal and Kaspersky AntiVirus Corporate Suite applications. Kaspersky Administration Kit supports all network configurations that use TCP/IP protocol.
Kaspersky Administration Kit 7 directly connect to Kaspersky Lab update servers. You can schedule updating to run automatically at a specified time to constantly keep your protection current and monitor the update process on client computers. • Gather reports from all installations. Using the enhanced reporting capabilities of Kaspersky Administration Kit, you can collect statistics about the operation of all installations and create reports based on the most recent statistics.
Kaspersky Administration Kit • • Microsoft Windows 2000 SP 1 or higher; Microsoft Windows XP Professional SP 1 or higher; Microsoft Windows XP Professional x64 and higher, Microsoft Windows Server 2003 or higher; Microsoft Windows Server 2003x64 or higher Microsoft Windows NT4 SP 6a or higher, MDAC 2.8 or higher.
Kaspersky Administration Kit 9 1.3. Distribution kit This software product is supplied free-of-charge with any Kaspersky Lab's application included into the package of Kaspersky Anti-Virus Business Optimal and Kaspersky Corporate Suite (retail box version) and also available for download from Kaspersky Lab's corporate website at www.kaspersky.com. 1.4.
Kaspersky Administration Kit 1.6. Conventions Various formatting features and icons are used throughout this document depending on the purpose and the meaning of the text. The table below lists the conventions used in the text. Convention Bold font Meaning Menu titles, commands, window titles, dialog elements, etc. Note Additional information, notes. Attention Critical information. To perform an action: Description of the successive user's steps and possible actions 1. 2. Step 1.
CHAPTER 2. UNDERSTANDING KASPERSKY ADMINISTRATION KIT 2.1. Logical network 2.1.1. Logical network. Administration Server. Logical network is a hierarchical structure of administration groups consisting of client computers. Kaspersky Lab applications installed on client computers are managed through Kaspersky Administration Kit. Administration Server is a computer on which the Administration Server component is installed.
Kaspersky Administration Kit • Distribute license keys across the computers in the logical network, store information about license keys; • Send alerts from tasks running on the computers in the logical network. You can be notified, for example, about detection of a virus on a client computer. 2.1.2. Hierarchy of the Administration servers The Administration servers may form hierarchy of type "main server - slave server".
Understanding Kaspersky Administration Kit 13 • sending and receiving of control commands; • synchronization of the configuration information; • sending information about events in the applications' operation to the Server; • functioning of the updating agent; is ensured by the Network agent. This component must be installed on all computers where the control of the Kaspersky Lab's applications is performed using Kaspersky Administration Kit.
Kaspersky Administration Kit 2.1.4. Administrator's workstations Corporate network computers running the administration console are referred to as administrator workstations. From these workstations, administrators can remotely manage all Kaspersky Anti-Virus components installed across the logical network. After the installation of the Administration Console an icon for this application will appear in menu Start/Programs/Kaspersky Administration Kit.
Understanding Kaspersky Administration Kit 15 parameters specific for each type of tasks form the task settings. The application settings and task settings do not overlap. For more information about task types, refer to the documentation for Kaspersky Lab applications. To have an application to perform an action, you should configure application settings, create and configure a corresponding task and run it.
Kaspersky Administration Kit In a group each application will have its own policy defined for it. Several policies with different settings value may be defined for one application. However each application may only have one active policy. There is a provision that allows the user to activate an inactive policy based on an event, which allows, for instance, to establish stricter anti-virus protection settings during the periods of virus outbreaks. You can also create policies for mobile users.
Understanding Kaspersky Administration Kit 17 2.1.7. Relationship between the policies and the local application settings Using policies for all computers included into a group, you can set same values for the application's operating settings. Values of the settings set by a policy can be redefined for individual computers in a group using local application's settings.
Kaspersky Administration Kit How the local application settings will change after the first time the policy is applied, will be determined in the application policy. If the Change optional application settings after the policy is first enforced box (see Figure 12): • is unchecked, then the settings that are not allowed to be edited will be changed after the policy has been enforced; after the policy has been removed the original values of these settings will not be restored.
Understanding Kaspersky Administration Kit 19 In the client settings, you can check/uncheck the Keep connection checkbox to keep or terminate the client–server connection after the above operations are over. Permanent connection is preferred if connecting to a client is impaired for some reasons (the client is behind a firewall, client ports cannot be opened, the client IP address is unknown, etc.) or you need to constantly monitor the performance of Kaspersky Lab applications.
Kaspersky Administration Kit 2.3.2. Administration Server authentication (when the Administration Console connects to the server) When the Administration Console connects to the Administration Server for the first time, it requests the certificate from the server and saves it locally, on the administrator workstation. Upon subsequent connections of the Console to the server with this name, the server will be authenticated using this certificate. If the server does not pass authentication (i.e.
Understanding Kaspersky Administration Kit 21 installed on a client connects to the Server for the first time after the installation. By default, the host name coincides with the name of this computer on the Windows network (NetBIOS name). If a host with this name already exists, the Server will assign to this host a name ending in a numeral, for example, Name-1, Name-2, etc. This host name will be used to identify the computer on the logical network.
Kaspersky Administration Kit • granting to users and groups of users access rights to access the functionality of Kaspersky Administration Kit. After installation of the Administration server, users included into groups KLAdmins and KLOperators will be by default granted rights to connect to the Server and to work with the logical network.
Understanding Kaspersky Administration Kit 23 After the installation of the application, the logical network administrator can (see section 3.2 on page 34): • change rights, granted to groups KLOperators; • grant rights to access the functionality of Kaspersky Administration Kit application to other groups of users and to individual users registered on the computer on which the Administration Console is installed; grant various access rights for working with each administration group. 2.6.
Kaspersky Administration Kit Select isolated sections within the network and determine the number of Administration servers that must be installed. It is recommended to ensure interaction between the main and the slave Administration servers using fast communication channels that will allow to considerably decrease the load on the communication channels and increase the system reliability.
Understanding Kaspersky Administration Kit 25 2.8. Maintaining a logical network After you have created a logical network and installed and configured antivirus applications, it is recommended that you regularly perform the following operations: • View reports on the results of application performance on client computers. • Read alerts sent from client computers and the administration server to the administrator’s mailbox.
Kaspersky Administration Kit Management Console (MMC). The Kaspersky Administration Kit interface complies with MMC standards. In order to ensure local interaction with the client computers, the application includes the ability to establish remote connection with the computer via the Administration Console suing the standard Connect to the remote desktop Microsoft Windows utility. In order to use this possibility, you have to allow remote connection to the desktop on client computer. 2.10.1.
Understanding Kaspersky Administration Kit Figure 3. Kaspersky Administration Kit main window 2.10.3. Console tree The console tree displays logical networks created within a corporate network and provides access to the logical network settings and properties of the local computer where the Administration Console is installed.
Kaspersky Administration Kit • Events • Tasks • Licenses • Storages The Protection status folder is used for providing information about the antivirus protection state both at the client computers and in the computer network as a whole.
Understanding Kaspersky Administration Kit The Licenses folder shows licenses installed on client computers. The Storages folder is used to manage objects placed by the anti-virus applications into the quarantine folders on the client computers and backup copies of objects placed into the backup storage. However, the objects themselves are not copied to the Administration server. Information presented in the Administration Console is updated automatically only for nodes.
Kaspersky Administration Kit Object Groups Command Action View/Domains Display the computer network structure as the hierarchy of Windows domains and workgroups View/Active Directory Display the computer network structure according to the Active Directory structure New/IP subnetwork Create an IP sub-network to display computers View/Administrati on server Switch to the Administration server node that includes the Network folder New/IP subnetwork Create an IP sub-network to display computer
Understanding Kaspersky Administration Kit Object Policies Group Tasks Remote install Reports Computers selections Command All tasks / Tasks Switch to folder Group tasks for the selected group All tasks / Slave servers Switch to folder Administration servers for the selected group New/Policy Create a new group policy New/Task Create a new group task All tasks / import Import a task from a file Deployment wizard Create an application deployment task Applications versions report Create
Kaspersky Administration Kit Object Command Applications Action Open a local computer properties configuration window on the Applications tab In the details panel, each item selected in the console tree also has a specific shortcut menu with options of how to treat it. The main elements and the corresponding shortcut menu commands are listed in the table below.
CHAPTER 3. USING THE APPLICATION 3.1. Connecting to the administration server After the startup, the program main application window displays the console tree with the Kaspersky Administration Kit namespace at the highest level. To have the program display the logical network structure and settings, you must add the server object to the console tree and connect to the required administration server (see Figure 4).
Kaspersky Administration Kit 3.2. Granting rights After the installation of the Administration server, the rights for connecting to the server and working with the logical network will be granted to the users included into KLAdmins and KLOperators groups of the logical network (see section 2.5 on page 21).
Using the application 35 3.3. Viewing information about the computer network IP subnetworks Information about the structure of the computer network and about computers within this network is displayed in the Network folder of the console tree. After the installation of Kaspersky Administration Kit the Network folder will contain the hierarchy of folders reflecting the structure of domains and workgroups of the corporate Windows network.
Kaspersky Administration Kit • Last update – the date of the last update of the anti-virus database or the applications on the computer. • Status – the current computer status (OK / Warning / Critical) based on the criteria established by the administrator. • Information update – date of the last update of the information about the computer. • DNS domain – a DNS domain to which the computer is related. • Domain name –computer's DNS name. • IP address – computer's IP address.
Using the application 37 Creating a logical network using the Quick Start Wizard does not disturb network integrity: new groups are added; they do not replace the existing groups. A client computer that has been already assigned to an existing group will not be added this time because the Unassigned group displays only computers that are not included in the logical network.
Kaspersky Administration Kit manage the slave Administration servers, policies and tasks of the particular group; • when client computers are added to a group, information about the will be displayed as a table in the results pane; • when a nested group is added a folder with identical structure will be created. Figure 6. Viewing the logical network objects When a folder is selected in the console tree, its contest will be reflected in the results pane.
Using the application • Connection IP address – IP address of the connection between the client computer and the Administration server. Objects in the Groups folder are managed using the shortcut menu commands (see section 2.10.4 on page 29) and links in the tasks pane. In order to create a logical network that has a structure identical to the structure of domains and workgroups of the Windows network, you can use the Initial Configuration Wizard (see section 3.2 on page 34).
Kaspersky Administration Kit In order to obtain information about specific client computers, you can utilize the find computer function in the logical network, based on the specified criteria. You can use information about the logical networks of the slave administration servers for the purposes of this search. In order to perform such search and display information about computers in a separate folder of the console tree, use the Create filter function.
Using the application 41 In the future you can change the name of the group, move it to another group or delete it. A group is moved along with all nested groups, slave Administration servers, client computers, group policies and tasks. All settings corresponding to its new status in the hierarchy of the logical network objects will be applied to this group. A group can be moved using standard shortcut menu commands Cut / Paste or similar items in the Action menu and also using a mouse.
Kaspersky Administration Kit Figure 8. Client computers in a group Adding client computers to the logical networks can be configured in such a way that the Administration server will be automatically including all computers detected into the specified administration group. For this the corresponding settings must be configured in the Network group properties (see Figure 9).
Using the application 43 Figure 9. Configuring automatic moving of new computers to a group You can move client computers from one group to another by excluding them from the logical network using standard shortcut commands Cut / Paste and Delete or analogous items from the Action menu. Computers deleted from the logical network will be moved to the Network group. The moving operation can also be performed using the mouse. Client computers can be moved from one logical network to another.
Kaspersky Administration Kit old logical network and added to a new logical network manually using the Administration Console. You can connect a client computer to a different Administration Server locally from the client computer. This operation is performed using utility klmover.exe included into the Network Agent distribution package. After the installation of the Network Agent this utility will be located in the root installation folder of the component. 3.5.3.
Using the application Figure 10. Configuring settings for connection to the main Administration server You can manage the logical network of the slave Administration server via the Administration servers node of the main Server's logical network or directly by adding the Server to the console tree as a new Administration server. • The slave Server is a full-fledged Administration server and performs all functions of the Administration server within its logical network.
Kaspersky Administration Kit was not "locked" in the slave Server policy, it can be changed in the application or task settings (see section 2.1.7 on page 17). • Icon will be displayed next to the group task name received from the main Administration server. (The regular task icon is ). Global deployment tasks cannot be transferred to the slave Servers. The transfer of group tasks is configured in the task properties.
CHAPTER 4. REMOTE POLICY MANAGEMENT Kaspersky Administration Kit supports administration of only those Kaspersky Lab's applications that have a specialized component - application administration plugin included into their distribution package. 4.1. Configuring the application settings 4.1.1. Managing policies You can only create a policy for an application if the plug-in for this application is installed on the administrator workstation.
Kaspersky Administration Kit Figure 11. Editing policies Settings, governed by the policy, modification of which is prohibited, will be marked by icon. In order to prohibit changes, left-click it. The icon will be changed to. These settings will then become inaccessible for changes using the application's settings, tasks settings and policies of the nested groups and slave Administration servers. Local settings have higher priority as compared to the policy settings (see section 2.1.7 on page 17).
Remote Policy management Figure 12. The Policies folder You can delete, copy, export or import crated policies from one group to another using the shortcut menu commands of the policy selected in the results pane. Several group policies may be created for each application, however there can be only one active policy. Such policy must have the Active policy parameter selected in its settings. The policy can be activated automatically, triggered by a certain event.
Kaspersky Administration Kit Figure 13. Policy enforcement settings configuration The policy will be applied in the following way. If resident tasks (real-time protection) were running on a client, they will seamlessly switch to the new settings' values. If there are periodic tasks currently running on a client (ondemand scans, database updates), they will continue working with old values. The new settings' values will be applied upon the next startup of these tasks.
Remote Policy management 51 You can similarly view the results of the policy deployment on the client computers in the policy properties window of the slave administration server after you connect to it. A detailed description of the policy settings for Kaspersky Lab's applications is provided in the applications' Guides. Policy configuration for the Network Agent and the Administration server is described in the Reference Book for Kaspersky Administration Kit. 4.1.2.
Kaspersky Administration Kit Figure 14. Local application settings configuration window 4.2. Managing the application Managing of the operation of applications installed on the client computers in the logical network is performed by creating and launching tasks implementing all major functionality: installation of applications and license keys, scanning of files, updating of anti-virus database and application modules, etc.
Remote Policy management 53 In order to ensure network protection the administrator can create any number of various tasks (except tasks that can be created only once) for all applications that are managed using Kaspersky Administration Kit. For example, in order to scan client computers that are workstations, for malware, you have to create an On-demand scan task for Kaspersky Anti-Virus for Windows Workstations.
Kaspersky Administration Kit Figure 15. Group tasks Exchange of information about tasks between the local application and Kaspersky Administration Kit information database takes place at the moment when the Network Agent connects to the Server: The information about locally created tasks will be transferred to the Administration server database.
Remote Policy management Figure 16. Task settings locked in the policy However, a part of the settings is specific to a particular task: schedule for launching a task, account under which the task is launched, scan scope for ondemand scan tasks, etc. Values of these settings are set for each task in its settings and can be changed after the task is created (see Figure 17).
Kaspersky Administration Kit Figure 17. Task launch schedule Tasks will be launched in accordance with the schedule On computers that are going to be turned off during the scheduled launch time, the operating system can be automatically loaded using the Wake On Lan function. In order to use this function, you must check the corresponding box (see Figure 18) on the Schedule tab (see Figure 17) that opens by pressing the Advanced button. Figure 18.
Remote Policy management You also can enable automatic computer turn off after the scheduled task has been completed. The task execution time can be restricted; in this case the task will be stopped once the time period specified in the time settings has been elapsed. There is a possibility to disable scheduled task launch. In this case the task will not be deleted, but it will not be launched either.
Kaspersky Administration Kit Results of tasks execution are registered and saved in accordance with the settings in the Windows event logs and Kaspersky Administration Kit events logs either in a centralized location on the Administration server or on each client computer locally. The administrator and other user can be notified about the results of the tasks execution; the form and the method of notification will also be determined by the task settings.
CHAPTER 5. UPDATING THE ANTI-VIRUS DATABASE AND PROGRAM MODULES Regularly updating the anti-virus database, installing updated program modules (patches), and upgrading program versions are critical factors for keeping your network constantly protected from any threats. The Kaspersky Lab web-based anti-virus database is updated on an hourly basis. We strongly recommend that you update your anti-virus database with the same frequency and install all program patches in a timely fashion.
Kaspersky Administration Kit which the task is created select Kaspersky Administration Kit, as the type of the task - Receiving updates by the Administration server (see Figure 20). Figure 20. Creating an updating task.
Updating the Anti-Virus database and program modules 61 Figure 21. Configuring the task for receiving updates: As the result of the execution of the task for receiving updates by the Administration server, the anti-virus database and the application modules updates will be downloaded from the updates source and placed into the public access folder. From the public access folders the downloads will be distributed to the client computers (see section 5.
Kaspersky Administration Kit If the updates are performed from ftp- /http- servers or from the network folder, then in order to ensure correct updating of the server the structure of the folders with updates matching the structure created by the Kaspersky Lab's tools when the updates are copied, must be copied to these resources. You can review information about received updates in the Updates container of the console tree; the list of updates is displayed in the results pane (seeFigure 22).
Updating the Anti-Virus database and program modules 63 If the Administration server is selected as the updates source in the application updating task, then, given the hierarchal structure of the Servers, the client computers will be updated from the server to which they are connected, that is from the slave server rather than from the main server. The procedure used to create the application updating tasks is described in the Guides for the corresponding applications. 5.2.2.
Kaspersky Administration Kit Figure 23. Configuration of automatic updating of the client computers We recommend that you use automatic distribution of updates in order to decrease the traffic and the number of client computers' calls to the Administration server and in order to avoid mistakes and errors when creating the update tasks for the logical networks with a large number of client computers.
Updating the Anti-Virus database and program modules 65 In the settings of the Automatic updating - Anti-virus Signatures task the Administration server was selected as the updates source. In order to ensure that the client computers of the slave Servers receive updates in timely fashion using this task, you have to enable the mode of automatic updating of the slave Servers in the settings of the main Server updating task.
Kaspersky Administration Kit Figure 24. Updating from the main Administration server 5.4. Updates distribution using the updating agents In order to distribute the updates to the client computers in the group you can use updating agents - computers that act as intermediate centers for distributing updates and installation packages within administration groups. They receive updates from the Administration server and place them into the application installation folder.
Updating the Anti-Virus database and program modules Figure 25.
CHAPTER 6. MAINTENANCE 6.1. Renewing your license The right to use Kaspersky Lab's software is granted based on the license agreement entered into when you purchase the software product.
Maintenance A full list of license keys installed on clients is shown in the Licenses node. The following data is available for each key: • Serial number – License key serial number • Type – Type of the license key (for example, commercial or trial) • Limit – License restrictions imposed by the license key • License period – License key expiration period Figure 26.
Kaspersky Administration Kit folders arranged locally on each computer. The quarantine storage is used to place suspicious objects while the backup storage - backup copies of infected objects before such objects are treated or deleted. The Kaspersky Administration Kit application provides for the ability to maintain a centralized list of objects placed into storage areas by the Kaspersky Lab's applications.
Maintenance Figure 27. Configuring remotes storage areas Figure 28.
Kaspersky Administration Kit 6.3. Event logs. Event filters. Kaspersky Administration Kit application provides the user with various options of monitoring the operation of the anti-virus protection system. There is a provision for maintaining event logs about the operation of the Administration server and all applications managed using Kaspersky Administration Kit. Data can be saved either in the Microsoft Windows system log or in the Kaspersky Administration Kit event log.
Maintenance 73 The procedure used for saving the task execution results, the form and the method of notification about them is determined in the task settings. The notification can be performed by sending message by e-mail or via the network or by launching a certain application or a script. Information about registered events and results of task execution may be stored in a centralized location on the Administration server or, for each client computer, locally on the computer.
Kaspersky Administration Kit tain all events and results for performing the task. In order to modify the information, configure the filter parameters (see Figure 31). Figure 31. Configuring an event filter Registered events are deleted automatically after the expiration of the storage period specified by the policy or manually using the shortcut command menu Purge. You can delete an individual event selected in the results pane, all events or events that satisfy certain conditions.
Maintenance Figure 32. Viewing events stored on the Administration server The Kaspersky Administration Kit event log stored locally on a client computer can be viewed via a local Administration Console installed on this computer. 6.4. Reports You can receive reports about the status of the anti-virus protection system based on the information stored on the Administration server.
Kaspersky Administration Kit • Anti-virus database version report - contains information about version of the anti-virus database used by the applications. • Errors report - contains information about errors (functional failures) registered during the operation of applications installed on the client computers. • License key reports - contains information about the status of the license keys used by the applications and about observing the restrictions imposed by these licenses.
Maintenance 77 Figure 33. Viewing task execution results stored on the Administration server There is a provision for nine (9) standard templates that match the corresponding types of reports about the anti-virus protection status. You can create new templates, delete existing templates, view or edit their parameters. Reports are viewed using the default browser.
Kaspersky Administration Kit • computers not included into a logical network but included into the structure of computer networks where the Administration server and its slave Servers are installed; • all computers within networks in which the Administration server and its slave Servers are installed irrespective of whether the particular computer is included into the structure of the logical network For finding computers use the Find computer command from the shortcut menu for the Administration se
Maintenance clude data from the slave Servers box is checked in the search parameters). • The Network group – search for computers within the network in which the Administration server not included into the logical network structure is installed. The search is performed based on the data obtained as the result of the polling of the computer network by the Administration server and the slave Servers (if the Include data from the slave Servers box is checked in the search parameters).
Kaspersky Administration Kit configured for each administration group individually on the Computer status tab (see Figure 36). Information about new computers is provided based on the results of the poll of the computers network by the Administration server. Figure 35.
Maintenance Figure 36. Client computer diagnostic settings There is a provision for creating additional filters. In order to create a filter, use the New / New filter item from the shortcut menu for the Computer filters node. As the result a new folder with the name you have specified for the filter will appear in the console tree will appear in the Computer Selections in the console tree. In order to add computers to the selection, configure the filter parameters (see Figure 37).
Kaspersky Administration Kit Figure 37. Configuring a computer filter 6.7. Virus outbreaks monitoring Kaspersky Administration Kit allows monitoring the virus activities on the client computers within the logical networks using the Virus attack event registered in the operation of the Administration server component. This feature is of great significance in the periods of virus outbreaks as it helps timely react on the emerging threats of virus attacks.
Maintenance Figure 38. Configuring virus attack detection settings In order to enable the virus attack detection mechanism check the Register a virus attack if the total number of viruses detected on the computers within the logical network exceeds box and specify the values for the parameters that determine the threshold of the virus activity level exceeding of which will be considered increased virus activities and will cause the Virus attack event.
Kaspersky Administration Kit Figure 39. Configuring the event registration on the Administration server The procedure for notification about event Virus attack is determined in the Administration server settings on the Events tab (see Figure 40). Additionally, an automatic change of the current policy can be set as the reaction for the occurrence of the virus outbreak.
Maintenance Figure 40. Configuring the settings for the notification of event 6.8. Backup copying and restoration of the Administration server data Backup copying allows transferring the Administration server from one computer to another with no information loss and to restore data during the transfer of the information database of the Administration server to another computer or when upgrading to a new version of Kaspersky Administration Kit.
Kaspersky Administration Kit • configuration information about the structure of the logical network and client computers; • storage of the applications' deployment packages (the content of the Packages, Uninstall and Updates folders); • Administration server certificate. Restoration of the data during the upgrading to a newer application version is supported starting with Kaspersky Administration Kit version 5.
APPENDIX A. GLOSSARY This documentation uses some specific terms related to anti-virus protection. Glossary is a list of definitions of these terms. The glossary entries are arranged in alphabetical order to facilitate using the glossary. A Available updates – Service Packs that contain urgent updates accumulated over time and latest changes in the application architecture. Administration group – Computers grouped in accordance with their functional and installed Kaspersky Lab applications.
Kaspersky Administration Kit B Block object – Prevent external applications from accessing an object. The blocked object cannot be read, executed, modified, or deleted. Backing up – copying data of the Administration server for storage and subsequent restoration performed by the backup utility.
Appendix A 89 E-mail databases – Databases that contain e-mail messages stored on your computer. Every incoming/outgoing message is saved in the database after you receive/send it. Such databases are scanned in the on-demand scanning mode. G Global task – A task defined for and running on a number of clients from different administration groups. Group Task – A task defined for and running on all clients in a group.
Kaspersky Administration Kit via e-mail. Without the license key, Kaspersky Anti-Virus DOES NOT WORK. Logical network operator – A user that monitors the system of anti-virus protection managed by Kaspersky Administration Kit. Local management – Management of an application through a local interface. Local task – A task created for and running on a single client. License period – A period during which you have the right to take advantage of the full functionality of Kaspersky Anti-Virus.
Appendix A 91 Q Quarantining – A method of handling a suspicious object. Access to this object is blocked and the file is moved to the quarantine for further processing. Quarantine – A special storage that isolates infected and suspicious objects. R Real-time protection – A scanning mode in which an anti-virus application is memory resident. In the real-time protection mode, the application scans all objects when you open them for reading, writing, or executing.
Kaspersky Administration Kit Startup objects – A set of programs that are necessary for launching and smooth operation of the operating system and other software installed on your computer. Your operating system launches these objects during each startup. Some viruses attempt to infect the startup objects and can cause a startup failure. Suspicious object – An object that contains either a modified code of a well-known virus or a code reminiscent of a virus yet unknown to Kaspersky Lab specialists.
APPENDIX B. KASPERSKY LAB Founded in 1997, Kaspersky Lab has become a recognized leader in information security technologies. It produces a wide range of data security software and delivers high-performance, comprehensive solutions to protect computers and networks against all types of malicious programs, unsolicited and unwanted email messages, and hacker attacks. Kaspersky Lab is an international company.
Kaspersky Administration Kit B.1. Other Kaspersky Lab Products Kaspersky Anti-Virus® Personal Kaspersky Anti-Virus® Personal has been designed to provide anti-virus protection to personal computers running Microsoft Windows 98/ME or Microsoft Windows 2000/NT/XP against all known viruses, including potentially dangerous software. Kaspersky Anti-Virus Personal provides real-time monitoring of all sources of virus intrusion - e-mail, internet, CD, etc.
Appendix B 95 • On-demand scan of local disks; • Real-time automatic protection of all accessed files from viruses; • Mail Filter automatically scans and disinfects all incoming and outgoing mail for any mail client that uses POP3 and SMTP protocols and effectively detects viruses in mail databases; • Behavior blocker that provides maximum protection of MS Office applications from viruses; • Archive scans – Kaspersky Anti-Virus recognizes over 700 formats of archived and compressed files and ensu
Kaspersky Administration Kit • protection for your computer from unauthorized access, and also from network hacker attacks from your LAN or the Internet. Kaspersky® OnLine Scanner This program is a free service available to visitors of the corporate website allowing to perform efficient anti-virus scan of your computer and disinfection of infected files online. Kaspersky OnLine Scanner is executed in the web browser ® using the Microsoft ActiveX technology.
Appendix B • Workstations running Microsoft Windows 98/ME, Microsoft Windows NT/2000/XP Workstation and Linux; • File servers running Microsoft Windows NT 4.
Kaspersky Administration Kit Kaspersky® Anti-Spam is a cutting-edge software suite that is designed to help organizations with small- and medium-sized networks wage war against the onslaught of undesired e-mail (spam). The product combines the revolutionary technology of linguistic analysis with modern methods of e-mail filtration, including RBL lists and formal letter features. Its unique combination of services allows users to identify and wipe out up to 95% of unwanted traffic.
Appendix B any matters related to our product by phone or via email. All of your recommendations and suggestions will be thoroughly reviewed and considered. Technical support Please find the technical support information at http://www.kaspersky.com/supportinter.html General information WWW: http://www.kaspersky.com http://www.viruslist.com Email: sales@kaspersky.
APPENDIX C. LICENSE AGREEMENT NOTICE TO ALL USERS: CAREFULLY READ THE FOLLOWING LEGAL AGREEMENT (“AGREEMENT”) FOR THE LICENSE OF SPECIFIED SOFTWARE (“SOFTWARE”) PRODUCED BY KASPERSKY LAB. (“KASPERSKY LAB”). IF YOU HAVE PURCHASED THIS SOFTWARE VIA INTERNET BY CLICKING THE ACCEPT BUTTON, YOU (EITHER AN INDIVIDUAL OR A SINGLE LEGAL ENTITY) CONSENT TO BE BOUND BY AND BECOME A PARTY TO THIS AGREEMENT.
Appendix C 101 usage terms specified on the applicable price list or application packaging that apply to any such Software applications individually. 1.1 Use. The Software is licensed as a single application; it may not be used on more than one Client Device or by more than one user at a time, except as set forth in this Section. 1.1.1 The Software is “in use” on a Client Device when it is loaded into the temporary memory (i.e., random-access memory or RAM) or installed into the permanent memory (e.g.
Kaspersky Administration Kit “front end”). If the number of Client Devices or seats that can connect to the Software exceeds the number of licenses you have obtained, then you must have a reasonable mechanism in place to ensure that your use of the Software does not exceed the use limits specified for the license you have obtained.
Appendix C 103 (iv) “Support Services” means (a) Daily updates of anti-virus database; (b) Free software updates, including version upgrades; (c) Extended technical support via E-mail and phone hotline provided by Vendor and/or Reseller; (d) Virus detection and curing updates in 24-hours period. 4. Ownership Rights. The Software is protected by copyright laws.
Kaspersky Administration Kit supply of, failure to supply or delay in supplying the Software or the Documentation which might but for this paragraph (v) have effect between the Kaspersky Lab and your or would otherwise be implied into or incorporated into this Agreement or any collateral contract, whether by statute, common law or otherwise, all of which are hereby excluded (including, without limitation, the implied conditions, warranties or other terms as to satisfactory quality, fitness for purpose
Appendix C 105 whether oral or in writing, which have been given or may be implied from anything written or said in negotiations between us or our representatives prior to this Agreement and all prior agreements between the parties relating to the matters aforesaid shall cease to have effect as from the Effective Date.
