Solution interface

The Management Console is implemented through the web interface and consists of the following elements:

• Main menu — sections and subsections of the main menu give access to the key functionalities of the solution.
• Work pane — information and controls in the work pane depend on the section or subsection that you select in the main menu.

Main menu

In the web interface, the main menu of Kaspersky Container Security in the left pane consists of sections that correspond to the basic functions of the solution.

Resources

This section contains the monitoring results of all available Kaspersky Container Security resources: clusters, registries integrated with the solution, and CI/CD processes.

Components

This section contains information about the state of solution components, that is, agents, scanners, and the kernel.

Compliance

This section contains the results of checks on cluster nodes for compliance with the Kubernetes benchmarks.

Policies

This section allows you to configure security policies when operating Kaspersky Container Security.

The Risk acceptance subsection contains a list of all detected threats and vulnerabilities, the risk of which is accepted by the user. In this subsection, you can cancel a risk acceptance or set the period during which a risk is considered accepted.

Administration

This section allows you to perform the following tasks:

• Under Access management, you can manage user access rights, define roles and access rights, and restrict access to resources and functional capabilities within specific scopes.
• Under Reports, you can view a list of generated reports on images, and download and delete reports.
• The Integrations subsection allows configuring integrations with public image registries, image signature validators, outputs, and the LDAP server, as well as getting integration status information.
• Under Events, you can view a list of application-generated events that may be useful when tracking processes and analyzing potential security threats.

Settings

This section allows you to perform the following tasks:

• Under Authentication, you can configure the settings for starting the Management Console for Kaspersky Container Security and manage the connection settings.
• The Licensing subsection allows you to manage licensing settings and view license functionality.
• The About subsection contains information about the version of the application and the latest update of the malware and vulnerabilities database. You can also view the terms and conditions of the Kaspersky Container Security License Agreement, Third party code information, and API reference as well as open the Kaspersky Container Security Help for a detailed description of the solution and its operation.

Block with the name of the current user

This block displays information about the user that logged in to the Kaspersky Container Security Management Console. Using the commands of the pop-up menu, you can go to the user profile page and exit the console.

Dashboard

On the main Kaspersky Container Security page, you can configure the dashboard to receive up-to-date analytical data on objects that are processed by the solution. This configuration is performed using filters that let you sort information by object and period.

Analytical data is displayed using widgets or specialized tools that show analytic information.

The Kaspersky Container Security dashboard opens when logging in to an account or when clicking the area containing the logo and name of the solution above the main menu.

Applying filters

Kaspersky Container Security provides the capability to configure the dashboard using the following filters:

• Filter by period:
  • For the entire period
  • For the year
  • For the quarter
  • For the month
  • For the week
  • For the past 24 hours
  • For a customized period

  For any period you select, the time count begins from the current day. By default, information is displayed for the week.

• Filter by resource:
  • All images
  • All images outside of clusters
  • All images in clusters
  • Images of a specific cluster
  • CI/CD images

  By default, information is displayed for all images.

Widgets on the dashboard

Kaspersky Container Security provides analytical data on the dashboard by using widgets that are organized into groups based on data type. The following widget groups and widgets are available in Kaspersky Container Security:

• Image compliance with security policy requirements. The solution displays the following information:
  • Total number of images.
  • Number of images with Compliant status.
  • Number of images with Non-compliant status.
• Image risk assessment. The widget provides the following information on the statuses of objects:
  • Total number of images.
  • Number of images with the Critical status.
  • Number of images with the High status.
  • Number of images with the Medium status.
  • Number of images with the Low status.
  • Number of images with the Negligible status.
  • Number of images with the Ok status.
• Top 10 object benchmarks that most frequently result in failure of cluster nodes to comply with the Kubernetes benchmarks:
  • 10 cluster node benchmarks that most frequently result in non-compliance.
  • Number of cluster nodes that failed the compliance check for the specified benchmark.
• Top 10 registries by number of images with the highest risk rating.
• Vulnerabilities
  • Top 10 detected vulnerabilities with Critical, High or Medium severity status, and the number of images containing the specified vulnerability.

    If a vulnerability contains an exploit, an exploit icon () is displayed next to the severity level. You can use the Show only Exploit toggle switch above the list of vulnerabilities to display all matching vulnerabilities or only vulnerabilities with exploits.

  • Top 10 images containing the maximum number of identified vulnerabilities with Critical and High severity status.
• Malware
  • Top 10 most frequently detected types of malware and number of images containing this malware.
  • Top 10 images with the maximum number of detected types of malware.
• Sensitive data:
  • Top 10 detected types of sensitive data with Critical, High or Medium severity status and the number of images containing this sensitive data.
  • Top 10 images containing the maximum amount of detected sensitive data with Critical and High severity status.
• Misconfigurations
  • Top 10 detected misconfigurations with Critical, High or Medium severity status, and the number of images containing such sensitive data.
  • Top 10 images with the maximum number of detected misconfigurations with Critical and High severity status.

  Object lists that specify the severity level are sorted in descending order of severity (first items on the list are objects with the highest severity status).

Page top

User profile

To go to the user profile page:

1. In the main menu, click on the block with the current user name.
2. Select My Profile.

On the My Profile page, Kaspersky Container Security displays key information about the active user account. This information is divided into the following sections:

• General information—shows the user's name and their displayed user name, a contact email address, and a list of the roles assigned to the user.

  In this section, you can also change the password to enter the Management Console by clicking the Change password button.

• API token—information about the token for connecting to and accessing the solution using API. The value of the valid API token is hidden by a mask and can be viewed by clicking the unmask icon () located to the right of the token. You can hide the token value with a mask by clicking the mask icon ().

  In this section, you can also copy the value of the active token by using the Copy button. If necessary, you can also generate a new API token by clicking the Reissue token button.

• Permissions - all rights and permissions assigned to the user are displayed.

Page top

Specific ways to set up data display

Kaspersky Container Security interface provides the following ways to set up data displaying:

• Filtering: The filter fields are located above the data tables. Filter fields and ways to manage the filter depend on the specifics of the data to be displayed.

  In some sections, you must click the filter icon to open the filter fields ().

• Sorting in ascending or descending order. In some sections, you can sort the list of data by the selected column by using the sort icon () in the column header.
• Search: You can search the displayed data by using the Search field, located above the table and designated by the search icon ().
• Menu. In some tables, you can perform actions on the objects using the menu commands in the table rows. To open the menu for the selected object, click the menu icon () in the object row.
• Select. In some tables, you can select items by clicking the check box (). To unselect a check box, click the checkbox again.
• Delete. You can delete objects in the solution by using the delete icon () or the Delete link that appears when selecting objects.
• Expand or collapse lists. In some tables, you can click the expand icon () to expand an object row and view its contents. To collapse table elements, click the collapse icon ().