- About this Help Guide
- About Kaspersky Security for Virtualization 6.0 Agentless
- What’s new
- Application architecture
- Managing the application via Kaspersky Security Center
- Preparing for application installation
- Installing the application
- Installation of the Kaspersky Security main administration plug-in and Integration Server
- Installation of the Kaspersky Security administration plug-in for tenants
- Result of installation of the Kaspersky Security administration plug-ins and Integration Server
- Configuring the Integration Server
- Registration of Kaspersky Security services
- Connecting to VMware NSX Manager
- Selecting an SVM image for the file system protection service
- Selecting an SVM image for the network protection service
- Selecting the traffic processing mode for the Network Threat Protection component
- Configuring the connection settings for an SVM
- Creating passwords for accounts on SVMs
- Selecting the time zone for SVMs
- Configuring the settings for connecting to network data storage
- Confirming Kaspersky Security settings
- Registration of Kaspersky Security services
- Exiting the wizard
- Viewing registered services in the VMware vSphere Web Client console
- Deploying SVMs with the File Threat Protection and Network Threat Protection components
- Configuring NSX Security Groups
- Configuring and applying NSX Security Policies
- Configuring protection of tenant organizations
- Preparing the application for operation and initial configuration
- Upgrading from a previous version of the application
- Upgrading the application installed in an infrastructure managed by a VMware vCenter server and VMware NSX Manager
- Upgrading the application installed in an infrastructure managed by a VMware vCenter Server and VMware vShield Manager, with migration to the VMware NSX platform
- About installing a new version of the Kaspersky Security administration plug-in and Integration Server
- SVM Update
- Converting policies and tasks
- Changing settings of Kaspersky Security
- Changing the connection settings for interaction between the Integration Server and VMware NSX Manager
- Changing the SVM image for the file system protection service
- Changing the SVM image for the network protection service
- Viewing information about the traffic processing mode for the Network Threat Protection component
- Changing the connection settings for an SVM
- Changing passwords for accounts on SVMs
- Changing the time zone for SVMs
- Changing settings for connecting to network data storage
- Starting Kaspersky Security reconfiguration
- Kaspersky Security reconfiguration process
- Exiting the wizard
- Removing the application
- Application licensing
- About the End User License Agreement
- About data provision
- About the license
- About the License Certificate
- About the license key
- About the key file
- About the activation code
- About subscription
- About application activation
- Application activation procedure
- Renewing a license
- Renewing subscription
- Viewing information about keys in use
- Starting and stopping the application
- Protection status
- Virtual machine file threat protection
- Conditions for protection of virtual machines against file threats
- Configuring main protection profile settings
- Managing additional protection profiles
- Creating an additional protection profile
- Viewing the protected infrastructure in a policy
- Assigning protection profiles to virtual infrastructure objects
- Assigning protection profiles by using NSX Profile Configurations
- Changing the protected infrastructure for a policy
- Disabling file threat protection for virtual infrastructure objects
- Scanning virtual machines
- Conditions for anti-virus scan of virtual machines
- Creating a full scan task
- Creating a custom scan task by using the main plug-in
- Creating a custom scan task by using the tenant plug-in
- Configuring virtual machine scan settings in a scan task
- Configuring the scan scope in a scan task
- Configuring the Custom Scan task scope
- Configuring the scan task run schedule
- Network Threat Protection
- Application database update
- Backup
- Events, notifications, and reports
- Participating in Kaspersky Security Network
- SNMP Monitoring of SVM status
- Automatic installation of application patches
- Application components integrity check
- Instructions on managing the application for a tenant organization administrator
- About Kaspersky Security for Virtualization 6.0 Agentless
- Deploying protection of the virtual infrastructure of a tenant organization
- Managing File Threat Protection
- Scanning virtual machines
- Participating in Kaspersky Security Network
- Obtaining protection status information
- Removing the Kaspersky Security administration plug-in for tenants
- Contacting Technical Support
- Sources of information about the application
- Appendix. Brief instructions on installing the application
- Glossary
- Activation code
- Active key
- Additional key
- Administration group
- Administration Server
- Application activation
- Application activation task
- Application database update task
- Backup
- Backup copy of a file
- Compound file
- Custom Scan task
- Database of malicious web addresses
- Database of phishing web addresses
- Desktop key
- End User License Agreement
- Full Scan task
- Kaspersky CompanyAccount
- Kaspersky Security Network (KSN)
- Key file
- Key with a limitation on the number of processor cores
- Key with a limitation on the number of processors
- KSC cluster
- KSC cluster protected infrastructure
- License
- License certificate
- License key (key)
- Main protection profile
- Multitenancy mode
- Network Agent
- OLE object
- Policy
- Protection profile
- Server key
- SVM
- Update rollback task
- Updates source
- Information about third-party code
- Trademark notices
Configuring web address scan settings
To configure web address scan settings:
- In the Kaspersky Security Center Administration Console, open the properties of the policy whose scope includes the relevant virtual machines:
- In the console tree, select the folder or administration group in which the policy was created.
- In the workspace, select the Policies tab.
- Select a policy in the list of policies and double-click the policy to open the Properties: <Policy name> window.
- In the policy properties window, in the Network threat protection section, select the Web Addresses Scan subsection.
- Select the Scan web addresses check box if Web Addresses Scan is disabled.
- Click the Settings button.
The Web addresses to detect window opens.
- Specify the categories of web addresses that you want Kaspersky Security to detect.
- Malicious
Enable / disable checking web addresses against the database of malicious web addresses.
If this check box is selected, Kaspersky Security scans web addresses requested by a user or application to check if those web addresses are categorized as malicious web addresses.
If the check box is cleared, the application does not check if web addresses belong to this category.
This check box is set by default.
- Phishing
Enables or disables checking web addresses against the database of phishing web addresses.
If this check box is selected, Kaspersky Security scans web addresses requested by a user or application to check if those web addresses are categorized as phishing web addresses.
If the check box is cleared, the application does not check if web addresses belong to this category.
This check box is set by default.
- Adware
Enables / disables scanning of web addresses to check if they belong to the category of web addresses that are used for showing advertisements or are associated with the distribution of adware.
Adware is designed to show advertising information to the user, redirect search queries to advertising websites, and send marketing information about the user to the adware developer. Unlike Trojan-Spy–type programs, adware transmits this information with the user's permission.
To detect advertising web addresses, Global KSN must be used by Kaspersky Security.
If the check box is selected and Global KSN is being used, Kaspersky Security scans web addresses requested by a user or application to check if those web addresses are categorized as advertising web addresses.
If the check box is cleared, Kaspersky Security does not check if web addresses belong to this category.
This check box is set by default.
- Other
Enables / disables scanning of web addresses to check if they belong to the category of web addresses associated with the distribution of legitimate applications that could be exploited to harm a virtual machine or user data.
These applications include file downloaders, remote administration programs, user activity monitoring programs, and password management applications. These programs are normally used for legal purposes. However, if criminals obtain access to such programs, they could use some of the program features to harm a virtual machine or user data.
To detect web addresses associated with the distribution of legitimate applications that could be exploited to harm a virtual machine or user data, Global KSN must be used by Kaspersky Security.
If the check box is selected and Global KSN is being used, Kaspersky Security scans web addresses requested by a user or application to check if those web addresses belong to this category.
If the check box is cleared, Kaspersky Security does not check if web addresses belong to this category.
This check box is cleared by default.
- In the Web Addresses to detect window, click OK.
- Select an action in the drop-down list Action on threat detection, if network protection is deployed in standard mode.
This drop-down list contains the actions that Kaspersky Security can perform if it detects a web address that belongs to one or more of the web address categories selected for detection, and network protection is deployed in standard mode. You can select one of the following options:
- Ignore. Kaspersky Security allows access to the web address. In such a case, Kaspersky Security Center generates an event with information stating that access to web address has been provided.
- Block. Kaspersky Security blocks access to the web address.
This action is selected by default.
You can select an action if the Scan web addresses check box is selected.
If network protection is deployed in monitoring mode, Kaspersky Security performs the Ignore action when it detects a web address that belongs to one or more of the selected categories.
- In the Do not block access to the following web addresses table, click Add or press INSERT and type a web address in the Web addresscolumn.
Web address that Kaspersky Security does not block, regardless of the configured web address scan settings.
Please take the following considerations into account when specifying web addresses:
- You can specify web addresses with the network protocol identifier (for example,
http://example.org/index.html) or without the protocol identifier (for example,example.org/index.html). - Masks are not supported when entering web addresses.
- You can specify the address of a specific web page or the address of a website. If you specified a website address, all web pages of this website are also excluded from blocking. For example, if the web address
http://www.example.orgis specified, the web addresseshttp://example.org/index.htmlandhttp://example.org/test/index.htmlare also excluded. - Web addresses with the prefix www and without the prefix www are considered to be different web addresses. For example, if the web address
example.orgis specified, only the web addressesexample.organdhttp://example.orgare excluded from blocking. However, the application may block the web addresseswww.example.organdhttp://www.example.org.
- You can specify web addresses with the network protocol identifier (for example,
- In the Properties: <Policy name> window, click OK.