- About this Help Guide
- About Kaspersky Security for Virtualization 6.1 Agentless
- What’s new
- Application architecture
- Managing the application via Kaspersky Security Center
- Preparing for application installation
- Installing the application
- Installation of the Kaspersky Security main administration plug-in and Integration Server
- Installation of the Kaspersky Security administration plug-in for tenants
- Result of installation of the Kaspersky Security administration plug-ins and Integration Server
- Configuring the Integration Server
- Registration of Kaspersky Security services
- Connecting to VMware NSX Manager
- Selecting an SVM image for the file system protection service
- Selecting an SVM image for the network protection service
- Selecting the traffic processing mode for the Network Threat Protection component
- Configuring the connection settings for an SVM
- Creating passwords for accounts on SVMs
- Selecting the time zone for SVMs
- Configuring the settings for connecting to network data storage
- Confirming Kaspersky Security settings
- Registration of Kaspersky Security services
- Exiting the wizard
- Viewing registered services
- Deploying SVMs and configuring protection settings in the infrastructure managed by VMware NSX-T Manager
- Deploying SVMs with the File Threat Protection component in the infrastructure managed by VMware NSX-T Manager
- Deploying SVMs with the Network Threat Protection component in the infrastructure managed by VMware NSX-T Manager
- Configuring NSX Groups in the infrastructure managed by VMware NSX-T Manager
- Configuring and applying NSX Policy for File Threat Protection in the Infrastructure managed by VMware NSX-T Manager
- Configuring and applying NSX Policy for Network Threat Protection in the Infrastructure managed by VMware NSX-T Manager
- Deploying SVMs and configuring protection settings in the infrastructure managed by VMware NSX-V Manager
- Preparing the application for operation and initial configuration
- Configuring protection of tenant organizations
- Creating a virtual Administration Server for a tenant
- Connecting the Integration Server to the Kaspersky Security Center Administration Server
- Configuring a list of mappings between Cloud Director organizations and virtual Administration Servers
- Working with the tenant virtual machine protection report
- Upgrading from a previous version of the application
- Application upgrade when migrating to VMware NSX-T platform
- Application upgrade in the infrastructure managed by VMware NSX-V Manager
- Upgrade of administration plug-in for Kaspersky Security, Integration Server, and Integration Server Console
- Updating SVM in the infrastructure managed by VMware NSX-V Manager
- Changing settings of Kaspersky Security
- Changing the connection settings for interaction between the Integration Server and VMware NSX Manager
- Changing the SVM image for the file system protection service
- Changing the SVM image for the network protection service
- Viewing information about the traffic processing mode for the Network Threat Protection component
- Changing the connection settings for an SVM
- Changing passwords for accounts on SVMs
- Changing the time zone for SVMs
- Changing settings for connecting to network data storage
- Starting Kaspersky Security reconfiguration
- Kaspersky Security reconfiguration process
- Exiting the wizard
- Removing the application
- Removing Kaspersky Security components in the virtual infrastructure managed by VMware NSX-T Manager
- Removing Kaspersky Security components in the virtual infrastructure managed by VMware NSX-V Manager
- Unregistering Kaspersky Security services and the Integration Server
- Removing the Kaspersky Security main administration plug-in and Integration Server
- Removing the Kaspersky Security administration plug-in for tenants
- Application licensing
- About the End User License Agreement
- About data provision
- About the license
- About the License Certificate
- About the license key
- About the key file
- About the activation code
- About subscription
- About application activation
- Application activation procedure
- Renewing a license
- Renewing subscription
- Viewing information about keys in use
- Starting and stopping the application
- Protection status
- Virtual machine file threat protection
- Conditions for protection of virtual machines against file threats
- Configuring main protection profile settings
- Managing additional protection profiles
- Creating an additional protection profile
- Viewing the protected infrastructure in a policy
- Information about the assignment of file protection settings using the virtual infrastructure tree
- Information about assigning the file protection settings using NSX Vendor Template (in infrastructure managed by VMware NSX-T Manager)
- Information about assigning the file protection settings using NSX Profile Configuration (in infrastructure managed by VMware NSX-V Manager)
- Assigning protection profiles to virtual infrastructure objects
- Assigning protection profile using NSX Vendor Templates / NSX Profile Configurations
- Changing the protected infrastructure for a policy
- Disabling file threat protection for virtual infrastructure objects
- Scanning virtual machines
- Conditions for anti-virus scan of virtual machines
- Creating a full scan task
- Creating a custom scan task by using the main plug-in
- Creating a custom scan task by using the tenant plug-in
- Configuring virtual machine scan settings in a scan task
- Configuring the scan scope in a scan task
- Configuring the Custom Scan task scope
- Configuring the scan task run schedule
- Network Threat Protection
- Application database update
- Backup
- Events, notifications, and reports
- Participating in Kaspersky Security Network
- SNMP Monitoring of SVM status
- Automatic installation of application patches
- Instructions on managing the application for a tenant organization administrator
- About Kaspersky Security for Virtualization 6.1 Agentless
- Deploying protection of the virtual infrastructure of a tenant organization
- Managing File Threat Protection
- Scanning virtual machines
- Participating in Kaspersky Security Network
- Obtaining protection status information
- Removing the Kaspersky Security administration plug-in for tenants
- Contact Technical Support
- Sources of information about the application
- Appendix. Brief instructions on installing the application
- Glossary
- Activating an application
- Activation code
- Active key
- Administration group
- Administration Server
- Application activation task
- Application database update task
- Backup
- Backup copy of a file
- Compound file
- Custom Scan task
- Database of malicious web addresses
- Database of phishing web addresses
- Desktop key
- End User License Agreement
- Full Scan task
- Kaspersky CompanyAccount
- Kaspersky Security Network (KSN)
- Key file
- Key with a limitation on the number of processor cores
- Key with a limitation on the number of processors
- KSC cluster
- KSC cluster protected infrastructure
- License
- License certificate
- License key (key)
- Main protection profile
- Multitenancy mode
- Network Agent
- OLE object
- Policy
- Protection profile
- Reserve key
- Server key
- SVM
- Update rollback task
- Updates source
- Information about third-party code
- Trademark notices
Viewing information about virtual machines within the KSC cluster protected infrastructure
To view the list of virtual machines within the KSC cluster protected infrastructure:
- In the Kaspersky Security Center Administration Console, in the Managed devices folder, select the administration group containing the KSC cluster and then select the Clusters and server arrays subfolder.
- In the workspace, select the KSC cluster and double-click the Properties: <KSC cluster name> window to open it.
- In the KSC cluster properties window, select the List of virtual machines section.
The right part of the window displays a list of all virtual machines that are part of the protected infrastructure of this KSC cluster.
The list does not show virtual machine templates and SVMs.
The list of virtual machines is displayed as a table containing the following columns:
- Status
Virtual machine status. The following icons signify the virtual machine status:
– the virtual machine is protected. A virtual machine is considered to be protected only if file protection is applied to it, which means that it is under the protection of an SVM with the File Threat Protection component installed. The presence of network protection does not affect the virtual machine status.
– the virtual machine is not protected. A virtual machine is considered to be unprotected if file protection is not applied to it. The presence of network protection does not affect the virtual machine status.
– the virtual machine is powered off or paused.
Information about network protection of a virtual machine is displayed in the detailed list of virtual machines.
- VM name
Virtual machine name within the KSC cluster protected infrastructure.
- Path to VM
Virtual infrastructure path to the virtual machine within the KSC cluster protected infrastructure.
- Status
- To view additional information about virtual machines within the KSC cluster protected infrastructure, click the Detailed information button. A table containing a detailed list of virtual machines opens in a separate window.
The table displays information about the status of protection indicated in the Protection type field located above the table. You can select one of the following values:
- File system protection. Select this option if you want to view information on the status of virtual machine file threat protection. This option is selected by default.
- Network protection. Select this option if you want to view information on the status of network protection of virtual machines.
The table columns show the following additional details of each virtual machine:
- Status
Virtual machine status.
If File system protection is selected in the Protection type field, the status is designated as follows:
- – the virtual machine is under the protection of an SVM that has the File Threat Protection component installed.
- – file protection is not applied to the virtual machine.
- – the virtual machine is powered off or paused.
If the Network protection value is selected in the Protection type field and the virtual machine is running in the infrastructure managed by VMware NSX-V Manager, the status is indicated as follows:
- – the virtual machine is under the protection of an SVM that has the Network Threat Protection component installed.
- – the virtual machine is not protected against network threats.
- – the virtual machine is powered off or paused.
If the virtual machine is running in the infrastructure managed by VMware NSX-T Manager, the
status is not displayed for the virtual machine, even if the virtual machine is under protection of an SVM that has the Network Threat Protection component installed.The virtual machine status does not depend on traffic processing mode used by the Network Threat Protection component.
- Tenant
If a virtual machine belongs to a tenant organization, the column contains the name of the virtual Administration Server of Kaspersky Security Center that is used for managing the protection of this tenant organization. If the virtual machine does not belong to any tenant organization,
Nois displayed in the column.The column is displayed only if File system protection is selected in the Protection type field.
- NSX Policy
If the File system protection value is selected in the Protection type field, the column contains information about whether the NSX Policy is applied on the virtual machine. The policy uses the file system protection service (Kaspersky File Antimalware Protection).
If the Network protection value is selected in the Protection type field and the virtual machine is running in the infrastructure managed by VMware NSX-V Manager, the column contains information on whether the NSX Policy is applied on the virtual machine. This policy redirects the virtual machine traffic to the network protection service (Kaspersky Network Protection). If the virtual machine is running in the infrastructure managed by VMware NSX-T Manager, information on whether the NSX policy is applied is not displayed (the column is empty).
If the NSX Policy is not applied on the virtual machine, Kaspersky Security does not protect this virtual machine.
- Available protection functions
If File system protection is selected in the Protection type field, the column contains information about file protection functions available for a virtual machine.
Possible values:
Protection and Scan– Kaspersky Security can protect a virtual machine, and can scan a virtual machine while performing scan tasks.Scan only– Kaspersky Security can scan a virtual machine while performing a scan task that is configured to scan powered-off virtual machines.Not available– the virtual machine is not protected; the File Threat Protection component is not receiving information about the virtual machine from the Guest Introspection service.Unknown– there is no available information on the virtual machine protection status. Possibly, the hypervisor on which the virtual machine is operating has no SVM with the File Threat Protection component.
If the Network protection value is selected in the Protection type field and the virtual machine is running in the infrastructure managed by VMware NSX-V Manager, the column contains information about network threat protection functions available for the virtual machine.
Possible values:
Standard mode protection– virtual machine network protection is operating in standard mode.Monitoring mode protection– virtual machine network protection is operating in monitoring mode (Kaspersky Security is not taking actions to prevent threats).Not available– the virtual machine is not protected; the Network Threat Protection component is not receiving information about the virtual machine from the virtual filter (VMware DVFilter).Unknown– there is no available information on the virtual machine protection status. Possibly, the hypervisor on which the virtual machine is operating has no SVM with the Network Threat Protection component.
If the virtual machine is running in the infrastructure managed by VMware NSX-V Manager, information about the available network threat protection functions is not displayed (the column always displays the
Undefinedvalue). - OS type
Type of operating system installed on the virtual machine. Possible values:
Server– if a server operating system is installed on the virtual machine.Desktop– if a desktop operating system is installed on the virtual machine.Not defined– if the virtual machine is powered off, or the operating system is not installed on the virtual machine, or Guest Introspection Thin Agent is not installed.
The column is displayed only if File system protection is selected in the Protection type field.
- Protection profile
The protection profile assigned to the virtual machine. Possible values:
<protection profile name>– if an additional protection profile is assigned to the virtual machine.Main– if the main protection profile is assigned to the virtual machine.Not assigned– if a protection profile is not assigned to the virtual machine.No– if the virtual machine is powered off or not protected.Protection is disabled– if protection of all objects of the protected infrastructure is disabled in the policy that determines this virtual machine's protection settings.
The column is displayed only if File system protection is selected in the Protection type field.
- Key type
Information about the key added to the SVM that protects the virtual machine.
Possible values:
For servers,For desktops,With a limitation on the number of processor cores,With a limitation on the number of processors– depending the type of key added to the SVM.No– if the virtual machine is not protected or is powered off.
The column is displayed only if File system protection is selected in the Protection type field.
- Database update
The amount of time since the release of anti-virus databases installed on the SVM that protects the virtual machine. If the databases have not been updated, the virtual machine is powered off or not protected,
Nois displayed in the column.The column is displayed only if File system protection is selected in the Protection type field.
- Scan date
Date and time when any scan task for the virtual machine was last started. If a scan has not been performed on the virtual machine,
Never startedis displayed in the column.The column is displayed only if File system protection is selected in the Protection type field.
In the main and detailed lists of virtual machines, you can perform the following operations:
- Sort the list by any column of the table.
- Filter the list by protection status.
- Search for a virtual machine in the list.
- Export the list of virtual machines to a file in XML or CSV format.
The main and detailed lists of virtual machines are automatically refreshed every 5 minutes. If required, you can refresh the list at any time by clicking the Refresh list button below the list.
To filter the list of virtual machines by protection status,
click one of the following buttons above the list:
- – show protected virtual machines
- – show unprotected virtual machines
- – show turned off and paused virtual machines
You can combine filtering conditions by pressing several buttons.
To cancel filtering of the list of virtual machines, click the 
button.
To search for a virtual machine in the list,
Enter a virtual machine search condition in the search field.
In the main list of virtual machines, you can perform a search based on the value of any column except the Status column. In the detailed list of virtual machines, you can perform a search based on the value of any column except the Status, Scan date and Database update columns.
To export the list of virtual machines to a file in XML or CSV format,
Click the Export list button below the list. In the window that opens, specify the name and format of the file.
Information about virtual machines within the protected infrastructure of this KSC cluster will be saved to a file in the selected format.
If you pre-filtered the list of virtual machines or performed a search for a virtual machine, only information that matches the filter conditions or the search conditions is saved to the file.