Contents
Create and manage tasks
This section describes how to use Kaspersky Security Center to create and configure tasks that Kaspersky Endpoint Security performs on a client computer or a group of computers.
A task is a set of configurable actions which Kaspersky Endpoint Security performs on a client computer.
In Kaspersky Security Center, you can create the following tasks:
- Virus Scan
- Update
- Rollback
- Add key
You can take the following actions on tasks:
- Start and stop tasks.
- Configure task settings.
- Track the progress of a task.
- Copy and move tasks from one group to another.
- Delete tasks.
- Import and export tasks.
For detailed information about tasks, see Kaspersky Security Center Help.
Page topCreate tasks
When managing Kaspersky Endpoint Security via Kaspersky Security Center, you can create the following types of tasks:
- Local tasks. A local task is a task that is created to be run on a single client computer.
- Group tasks. A group task is a task that is run on computers in an administration group.
- Tasks for an arbitrary set of computers. You can create a task to be run on any computers regardless of whether they belong to an administration group or a computer selection.
Create a local task for a separate client computer
- Start Administration Console of Kaspersky Security Center.
- Expand the Administration Server <Server name> node.
- In the console tree, select the Managed devices node.
- Select the administration group that contains the required client computer.
- In the workspace, select the Devices tab.
- Select the computer from the list of client computers.
- Open the Properties: <Computer name> window in one of the following ways:
- Double-click the name of the client computer.
- Right-click the client computer and choose Properties from the context menu.
- In the Properties: <Computer name> window, select the Tasks section.
The list of system tasks and custom tasks for the selected client computer is displayed in the workspace on the right.
- Click the Add button in the lower part of the workspace.
The New Task Wizard starts.
- Follow the steps of the New Task Wizard to create a local task for a separate client computer.
Create a task for client computers in an administration group
- Start Administration Console of Kaspersky Security Center.
- Expand the Administration Server <Server name> node.
- In the console tree, select the Managed devices node.
- Select the administration group that contains the required client computer.
- In the workspace, select the Tasks tab.
- In the workspace, start the New Task Wizard by clicking the Create a task button.
- Follow the steps of the New Task Wizard to create a task for client computers included in the administration group.
For detailed information on how to create group tasks, see Kaspersky Security Center Help.
Create a task for an arbitrary set of computers
- Start Administration Console of Kaspersky Security Center.
- Maximize the Administration Server <Server name> node.
- In the console tree, select the Tasks node.
- In the workspace, start the New Task Wizard by clicking the Create a task button.
- Follow the steps of the New Task Wizard to create a task for an arbitrary set of computers.
To proceed to the next step of the wizard, click the Next button. To return to the previous step of the wizard, click the
button. To exit the wizard at any step, click the Cancel button.
The appearance of buttons may vary depending on your version of Windows.
Note: Depending on the task type, this step might appear either at the beginning or at the end of the wizard.
In the Define the task name window, in the Name field, specify the name of the task that you are creating.
Step 2. Select an application and define the task type
- In the Select the task type window, maximize the Kaspersky Endpoint Security 10 Service Pack 2 Maintenance Release 1 for Mac node.
- Select the type of the task you want to create:
- To create a task for adding a key, select Add key.
- To create a task to roll back the latest update, select Rollback.
- To create an update task, select Update.
- To create a virus scan task, select Virus Scan.
Step 3. Configure settings for the selected task type
Depending on the task type selected during the previous step, the contents of the settings window may vary. This window is not displayed for the Rollback task.
Application activation
In the Application activation window, do the following:
- Select an activation code or key file from Kaspersky Security Center storage or add a key file stored on your computer.
- If you want to add the specified key as a reserve key, select the Add as reserve key checkbox.
The reserve key becomes active when the current active key expires.
Information about the specified key (key, key type, and key expiration date) is displayed in the Application activation window.
Update
By default, Kaspersky Endpoint Security updates databases and application modules and uses Kaspersky Security Center Administration Server and Kaspersky Lab update servers as updates sources.
If necessary, edit the Update task settings in the Update window:
- To disable updates of application modules, deselect the Update application modules checkbox.
- If you want Kaspersky Endpoint Security to copy the downloaded update files to the specified folder, select the Copy update files to folder checkbox and enter the path to the folder.
- To change the update sources:
- Click the Settings button.
The Settings: Update window opens.
- Select the checkboxes next to the update sources that you want to use.
- To specify a different update source, click the Add button.
The Update source window opens.
- Specify the web address of the update source or the path to a local or network folder that is an update source and click OK.
- Click OK to save changes and close the Settings: Update window.
- Click the Settings button.
Virus Scan
By default, Kaspersky Endpoint Security uses the Recommended security level, prompts the user for an action when it detects an infected object after the scan, and scans the following objects:
- All removable drives
- All internal drives
- All network drives
- Memory
If necessary, edit the Virus Scan settings in the Virus Scan window:
- Select one of the preset security levels or customize security settings.
- Specify the action that Kaspersky Endpoint Security performs on detecting an infected object.
- Define a scan scope.
Step 4. Define how to select client computers for which the task will be created
Note: This step is not relevant for local or group tasks.
In the Select devices to which the task will be assigned window, select the method you want to use to specify client computers:
- To select from among computers detected on the network by Administration Server, select the Select networked devices detected by Administration Server option.
- To specify the IP addresses of computers manually or import the IP addresses of computers from a file, select the Specify device addresses manually, or import addresses from list option.
- To create a task for a selection of devices based on a preset criterion, select the Assign task to a device selection option.
- To select computers from a specific administration group, select the Assign task to an administration group option.
Step 5. Select client computers
Note: This step is not relevant for local or group tasks.
In the window that opens (Select devices, Device selection, or Select Administration group, depending on the option you selected in the previous step), select the client computers, specify the IP addresses of computers, specify a computer selection, or select the administration group to which the task will be applied.
Step 6. Configure the task schedule
- In the Configure task scheduling settings window, select the start mode in the Scheduled start drop-down list.
- If necessary, configure a scheduled task to start automatically (by specifying the task start date and time).
- If you want to run tasks that the application was unable to start according to schedule (for example, because the computer was turned off at the scheduled time), select the Run missed tasks checkbox.
Kaspersky Endpoint Security starts the task as soon as the obstacle preventing the task from being started is eliminated.
- If you want Kaspersky Security Center to automatically determine the interval between task launches on different computers, select the Define task launch delay automatically checkbox.
This helps to reduce the load on Kaspersky Security Center Administration Server.
- To set the interval between task launches on different computers manually, select the Randomize the task start with interval (min) checkbox and specify the number of minutes.
This helps to reduce the load on Kaspersky Security Center Administration Server.
Step 7. Finish creating the task
In the Finishing creating the task window, do the following:
- If you want the task to start as soon as the wizard is finished, select the Run task after Wizard finishes checkbox.
- Click the Finish button to close the wizard.
Start and stop tasks manually
Scheduled tasks are started and stopped automatically according to a schedule. However, you can start a task manually at any time.
Note: Tasks are started on a client computer only if Network Agent is running. If Network Agent stops running, all active tasks are interrupted.
- Open the list of tasks that contains the task that you want to start or stop.
- Select the task that you want to start or stop.
- Start or stop the task in one of the following ways:
- Right-click to display the context menu of the task and choose Start or Stop.
- In the workspace, click the Start or Stop button.
- Right-click to display the context menu of the task and choose Properties. In the window that opens, click the Start or Stop button.
Import and export tasks
You can export group tasks and tasks for an arbitrary set of computers into a file.
- Select the task list from which you want to export the task:
- Select the administration group and then open the Tasks tab.
- In the console tree, select the Tasks folder.
- Right-click the task you want to export and in the shortcut menu of the task choose All Tasks > Export.
- In the Save As window, specify the file name and location where the exported task will be saved.
- Click the Save button.
- Select the task list to which you want to import the task:
- Select the administration group and then open the Tasks tab.
- In the console tree, select the Tasks folder.
- Import the task in any of the following ways:
- In the shortcut menu of the task list, select All Tasks > Import.
- Click the Import task from file button.
- In the Open window, specify the path to the task file you want to import.
- Click the Open button.
The task is displayed in the task list.
View tasks
You can view the list of tasks created for a specific computer, for computers in a specific administration group, or the list of all non-local tasks.
View tasks for a specific administration group
- Start Administration Console of Kaspersky Security Center.
- Expand the Administration Server <Server name> node.
- In the console tree, select the Managed devices node.
- Select the administration group that contains the required client computer.
- In the workspace, select the Tasks tab.
The list of tasks for computers in the selected administration group is displayed.
- Start Administration Console of Kaspersky Security Center.
- Expand the Administration Server <Server name> node.
- In the console tree, select the Managed devices node.
- Select the administration group that contains the required client computer.
- In the workspace, select the Devices tab.
- Select the computer from the list of client computers.
- Open the Properties: <Computer name> window in one of the following ways:
- Double-click the name of the client computer.
- Right-click the client computer and choose Properties from the context menu.
- In the Properties: <Computer name> window, select the Tasks section.
The list of system tasks and custom tasks for the selected client computer is displayed in the workspace on the right.
- Start Administration Console of Kaspersky Security Center.
- Maximize the Administration Server <Server name> node.
- In the console tree, select the Tasks node.
The list of non-local tasks created for computers that may or may not be part of administration groups is displayed.
Manage task-specific settings
- Open the list of local tasks.
- Select a task in the list and open the task settings in one of the following ways:
- Double-click the task name.
- Right-click to display the shortcut menu of the task and select Properties.
- Open the list of group tasks for an administration group.
- Select a task in the list and open the task settings in one of the following ways:
- Double-click the task name.
- Right-click to display the shortcut menu of the task and select Properties.
- Click the Change task settings link in the workspace.
View settings of a non-local task
- Open the list of non-local tasks.
- Select a task in the list and open the task settings in one of the following ways:
- Double-click the task name.
- Right-click to display the shortcut menu of the task and select Properties.
- Click the Change task settings link in the workspace.
For more information about tasks, see Kaspersky Security Center Help.
For local tasks, group tasks, or tasks for an arbitrary set of computers
- Open the window with the settings of the Add key task.
- Select the Application activation section.
- If necessary, add another key in one of the following ways:
- To select a key or an activation code from among the activation codes added to the Kaspersky Security Center storage:
- Select the Key or activation code option.
- Click the Browse button.
The Keys and activation codes in Kaspersky Security Center storage window opens.
- Select a key or activation code.
- Click the OK button.
- To add a key file:
- Select the Key file option.
- Click the Add button.
The file selection window opens.
- Select a key file.
- Click the Open button.
Note: The current key is deleted when a different key is added.
- To select a key or an activation code from among the activation codes added to the Kaspersky Security Center storage:
- To add the specified key as a reserve key, select the Add as reserve key checkbox.
The reserve key becomes active when the current key expires.
Note: The reserve key expiration date must be later than the current key expiration date.
- Save the changes in one of the following ways:
- Click the Apply button to remain in the Properties: <Task name> window after saving changes.
- Click the OK button to close the Properties: <Task name> window after saving changes.
Manage Virus Scan task settings
- Open the window with the Virus Scan task settings.
- Select the Virus Scan section.
- To change the level of security on which Kaspersky Endpoint Security runs the Virus Scan task, do one of the following in the Security level section:
- Select a preset security level by moving the slider up or down the scale.
You can select one of the following security levels:
- Maximum Protection. Kaspersky Endpoint Security performs the maximum monitoring of files that are opened, saved, or executed.
- Recommended. Kaspersky Endpoint Security monitors files with the settings recommended by Kaspersky Lab.
This is the default security level.
- Maximum speed. Kaspersky Endpoint Security monitors a minimum set of files. You can choose this security level if you want to comfortably use other applications that require significant RAM resources.
- Configure security settings manually:
- Click the Settings button.
The Settings: Virus Scan window opens.
- On the General tab, in the File types section, select the types of files that should be scanned by Kaspersky Endpoint Security when running the Virus Scan task.
- On the General tab, in the Optimization section, configure the scan performance.
- On the General tab in the Compound files section, select which compound files you want Kaspersky Endpoint Security to analyze for detectable objects.
- On the Advanced tab, in the Advanced settings section, configure the use of iSwift technology and recording of information about detected objects in the application statistics.
- On the Advanced tab, in the Heuristic Analyzer section, configure the use of Heuristic Analyzer and select the protection level to be applied by Heuristic Analyzer during virus scans.
- Click OK to save changes and close the Settings: Virus Scan window.
The security level changes to Custom.
- Click the Settings button.
- To restore the default settings, click the Default button.
The security level changes to Recommended.
- Select a preset security level by moving the slider up or down the scale.
- If necessary, in the Action section, select the action that Kaspersky Endpoint Security should perform when an infected object is detected.
- To specify a scan scope, in the Scan scope section, click the Settings button and do the following in the window that opens:
- Click the Settings button.
The Scan scope window opens.
- If you want Kaspersky Endpoint Security to scan all removable drives, select the All removable drives checkbox.
- If you want Kaspersky Endpoint Security to scan all internal drives, select the All internal drives checkbox.
- If you want Kaspersky Endpoint Security to scan all network drives, select the All network drives checkbox.
- If you want Kaspersky Endpoint Security to scan the computer memory, select the Memory checkbox.
- If you want Kaspersky Endpoint Security to scan other files or folders, click the Add button and specify a file, folder, or name mask of a file or folder.
- Save the changes in one of the following ways:
- Click the Apply button to remain in the Properties: <Task name> window after saving changes.
- Click the OK button to close the Properties: <Task name> window after saving changes.
- Open the window with the Update task settings.
- Select the Update section.
- If you want Kaspersky Endpoint Security to update application modules along with application databases, select the Update application modules checkbox.
- If you want Kaspersky Endpoint Security to copy the update files to a local or network folder, select the Copy update files to folder checkbox and enter the path to the relevant folder.
- To choose an update source:
- Click the Settings button.
The Settings: Update window opens.
- Specify the update source in one of the following ways:
- If you want the application to download updates from Administration Server, select the Kaspersky Security Center checkbox.
- If you want the application to download updates from Kaspersky Lab update servers, select the Kaspersky Lab update servers checkbox.
- To add a different update source, click the Add button and in the window that opens type the path to the update source.
By default, Kaspersky Endpoint Security downloads updates from Administration Server and Kaspersky Lab update servers.
- Click the Settings button.
- Save the changes in one of the following ways:
- Click the Apply button to remain in the Properties: <Task name> window after saving changes.
- Click the OK button to close the Properties: <Task name> window after saving changes.
For local tasks only
Manage File Anti-Virus task settings
- Open the list of local tasks for a client computer.
- In the list of local tasks, select the File Anti-Virus task and open its properties in one of the following ways:
- Double-click the task name.
- Right-click to display the shortcut menu of the task and select Properties.
- Click the Properties button.
- Select the File Anti-Virus section.
- If necessary, configure the following settings in the File Anti-Virus section:
- Enable or disable File Anti-Virus on the client computer.
- To select one of the preset security levels, use the slider in the Security level section.
- To configure the security settings manually, click the Settings button and do the following:
- On the General tab, in the File types section, select the types of files that Kaspersky Endpoint Security should scan when they are opened, executed, or saved.
- On the General tab, in the Optimization section, configure the scan performance and select the scan technology.
- On the General tab, in the Compound files section, select which compound files should be scanned for detectable objects and set a restriction on scanning large-sized objects.
- On the Protection scope tab, specify files or folders that should be scanned by File Anti-Virus.
By default, scanning of all objects located on removable, internal, and network drives connected to the client computer is enabled. You can add an object to the protection scope, modify an object on the list, temporarily disable scanning of an object on the list, or remove an object from the list.
- Select File Anti-Virus operation mode in the Scan mode section of the Advanced tab.
- On the Advanced tab, in the Pause task section, enable or disable scheduled pausing of File Anti-Virus and configure automatic pausing of tasks according to a schedule.
- On the Advanced tab, in the Heuristic Analyzer section, configure the use of Heuristic Analyzer by File Anti-Virus.
- In the If a malicious object is detected section, select the action that File Anti-Virus performs upon detecting an infected object.
- Save the changes in one of the following ways:
- Click the Apply button to remain in the Properties: File Anti-Virus window after saving changes.
- Click the OK button to close the Properties: File Anti-Virus window after saving changes.
Manage Web Anti-Virus task settings
- Open the list of local tasks for a client computer.
- In the list of local tasks, select the Web Anti-Virus task and open its properties in one of the following ways:
- Double-click the task name.
- Right-click to display the shortcut menu of the task and select Properties.
- Click the Properties button.
- Select the Web Anti-Virus section.
- If necessary, configure the following settings in the Web Anti-Virus section:
- Enable or disable Web Anti-Virus on the client computer.
- To select one of the preset security levels, use the slider in the Security level section.
- To configure the security settings manually, click the Settings button and do the following:
- In the Scan mode section, enable or disable checking of web addresses against the database of malicious web addresses.
- In the Anti-Phishing settings section, enable or disable checking of web addresses against the database of phishing web addresses.
- In the Anti-Phishing settings section, enable or disable the use of Heuristic Analyzer for detecting phishing links.
- In the If a malicious object is detected section, select the action that Web Anti-Virus performs upon detecting a dangerous object in web traffic.
- Save the changes in one of the following ways:
- Click the Apply button to remain in the Properties: Web Anti-Virus window after saving changes.
- Click the OK button to close the Properties: Web Anti-Virus window after saving changes.
Manage Quick Scan task settings
- Open the list of local tasks for a client computer.
- In the list of local tasks, select the Quick Scan task and open its properties in one of the following ways:
- Double-click the task name.
- Right-click to display the shortcut menu of the task and select Properties.
- Click the Properties button.
- Select the Virus Scan section.
- If necessary, configure the following settings in the Virus Scan section:
- To select one of the preset security levels, use the slider in the Security level section.
- To configure the security settings manually, click the Settings button and do the following:
- On the General tab, in the File types section, select the types of files that should be scanned by Kaspersky Endpoint Security.
- On the General tab, in the Optimization section, configure the scan performance.
- On the General tab, in the Compound files section, select which compound files you want Kaspersky Endpoint Security to scan.
- On the Advanced tab, in the Advanced settings section, configure the use of iSwift technology and the saving of information about detected objects in the application statistics.
- On the Advanced tab, in the Heuristic Analyzer section, configure the use of Heuristic Analyzer and select the protection level to be applied by Heuristic Analyzer.
- In the Action section, select the action that Kaspersky Endpoint Security should perform upon detecting an infected object.
- To specify a scan scope, in the Scan scope section, click the Settings button and do the following in the window that opens:
- If you want Kaspersky Endpoint Security to scan objects in the default list, select the checkbox next to the relevant object.
- If you want Kaspersky Endpoint Security to scan other files or folders, click the Add button and specify a file, folder, or name mask of a file or folder.
- Save the changes in one of the following ways:
- Click the Apply button to remain in the Properties: Quick Scan window after saving changes
- Click the OK button to close the Properties: Quick Scan window after saving changes.
Manage Full Scan task settings
- Open the list of local tasks for a client computer.
- Open the properties of the Full Scan task in one of the following ways:
- Double-click the task name.
- Right-click to display the shortcut menu of the task and select Properties.
- Select the Virus Scan section.
- If necessary, configure the following settings in the Virus Scan section:
- To select one of the preset security levels, use the slider in the Security level section.
- To configure the security settings manually, click the Settings button and do the following
- On the General tab, in the File types section, select the types of files that should be scanned by Kaspersky Endpoint Security.
- On the General tab, in the Optimization section, configure the scan performance.
- On the General tab, in the Compound files section, select which compound files you want Kaspersky Endpoint Security to scan.
- On the Advanced tab, in the Advanced settings section, configure the use of iSwift technology and the saving of information about detected objects in the application statistics.
- On the Advanced tab, in the Heuristic Analyzer section, configure the use of Heuristic Analyzer and select the protection level to be applied by Heuristic Analyzer.
- In the Action section, select the action that Kaspersky Endpoint Security should perform upon detecting an infected object.
- To specify a scan scope, in the Scan scope section, click the Settings button and do the following in the window that opens:
- If you want Kaspersky Endpoint Security to scan objects in the default list, select the checkbox next to the relevant object
- If you want Kaspersky Endpoint Security to scan other files or folders, click the Add button and specify a file, folder, or name mask of a file or folder.
- Save the changes in one of the following ways:
- Click the Apply button to remain in the Properties: Full Scan window after saving changes.
- Click the OK button to close the Properties: Full Scan window after saving changes.
Manage Network Attack Blocker task settings
- Open the list of local tasks for a client computer.
- In the list of local tasks, select the Network Attack Blocker task and open its properties in one of the following ways:
- Double-click the task name.
- Right-click to display the shortcut menu of the task and select Properties.
- Click the Properties button.
- Select the Network Attack Blocker section.
- If necessary, configure the following settings in the Network Attack Blocker section:
- Enable or disable Network Attack Blocker on the client computer.
- In the Network Attack Blocker settings section, select or clear the Block attacking computers for <value> min checkbox and specify the value.
- You can also specify the IP addresses of computers whose network activity will not be blocked. To do this, perform the following steps:
- Click the Exclusions button.
The Exclusions window opens.
- Click the Add button.
The IP address window opens.
- Specify the IP address of the computer whose network activity will not be blocked.
- Click the Exclusions button.
- Save the changes in one of the following ways:
- Click the Apply button to remain in the Properties: Network Attack Blocker window after saving changes.
- Click the OK button to close the Properties: Network Attack Blocker window after saving changes.