10.2.1
English

Contents

Configure policy settings

You can make changes to the policy that you created in Kaspersky Security Center and block any changes to its settings in the policies of subgroups and in task settings.

Kaspersky Endpoint Security policy settings include application settings and task settings.

Configure policy settings

  1. Start Administration Console of Kaspersky Security Center.
  2. Expand the Administration Server <Server name> node.
  3. Open the Managed devices folder.
  4. In the workspace, select the Policies tab.
  5. Right-click the policy you want to configure and choose Properties.
  6. In the Properties: <Policy name> window, configure policy settings as necessary:

    Configure the following protection settings in the Protection section

    • Enable or disable real-time protection of the client computer.
    • Enable or disable the start of Kaspersky Endpoint Security when the client computer starts.
    • Configure Trusted Zone.
    • Select types of objects to be detected.
    • Disable or enable the start of scheduled tasks when the computer is running on battery power.

    Configure the following settings in the File Anti-Virus section

    • Enable or disable Web Anti-Virus.
    • Select one of the preset security levels or configure security settings manually.
    • Enable or disable checking of web addresses against the database of malicious web addresses.
    • Configure Anti-Phishing settings.
    • Add trusted addresses whose traffic will not be scanned by Web Anti-Virus.
    • Select the action to be performed upon detecting a malicious object in web traffic.
    • Enable or disable scanning of inbound and outbound HTTPS traffic.

    Configure the following settings in the Network Attack Blocker section

    • Enable or disable Network Attack Blocker.
    • Configure Network Attack Blocker settings.
    • Specify the IP addresses of computers whose network activity will not be blocked.

    Configure the following settings in the FileVault Disk Encryption section

    • Enable or disable FileVault disk encryption management for client computers.
    • Encrypt or decrypt startup disk on client computers.

      If the Enable FileVault disk encryption management checkbox is unselected, users with administrator rights can encrypt and decrypt their Mac startup disks from System Preferences.

      If the Enable FileVault disk encryption management checkbox and the Encrypt disk option are selected, users with administrator rights can't decrypt the startup disk of their Mac from System Preferences.

      If the Enable FileVault disk encryption management checkbox and the Decrypt disk option are selected, users with administrator rights can't encrypt the startup disk of their Mac from System Preferences.

    Configure the following settings in the Update section

    • Enable or disable updating application modules.
    • Enable or disable copying of update files to a specific folder.
    • Specify the folder to which the application will copy update files.
    • Specify update sources.

    Configure the following settings in the KSN section

    • Read the full text of the Kaspersky Security Network Statement by clicking the KSN Statement button.
    • Enable or disable the use of Kaspersky Security Network.
    • Enable or disable extended KSN mode.
    • Enable or disable the use of KSN proxy.

    Configure the following settings in the User Interaction section

    • Enable or disable event notifications.
    • Select how Kaspersky Endpoint Security will notify the user about events.
    • Enable or disable displaying the Kaspersky Endpoint Security icon in the menu bar.
    • Enable or disable displaying the Quit item in the shortcut menu of the Kaspersky Endpoint Security icon on the client computer.
    • Select the language used to display Kaspersky Security Center events.
    • Configure Kaspersky Endpoint Security settings available to users of the client computer.

    Configure the following settings in the Network section

    • Enable or disable the use of a proxy server.
    • Specify the proxy server address.
    • Enable or disable the use of a proxy server for local addresses.
    • Specify the user name and password for proxy server authentication.

    Configure the following settings in the Reports section

    • Enable or disable saving of non-critical events in the report.
    • Enable or disable saving of recent events only.
    • Enable or disable removal of events after the specified period.
    • Specify the period for storing events.
    • Enable or disable removal of objects from Backup after the specified period.
    • Specify the period for storing objects in Backup.
  7. Click OK to save changes and close the policy properties window.
Page top
[Topic kes127777]