Starting and stopping the application

After installing the Kaspersky Embedded Systems Security to a device, the application is started automatically. By default, the application then starts automatically when the operating system is booted (at the default level of execution for each operating system).

By default, when Kaspersky Embedded Systems Security is started, the following functional components of the application are started automatically:

• File Threat Protection.
• Device Control.
• Behavior Detection.
• Web Threat Protection—only if one of the supported browsers is installed in the operating system and local management of Web Threat Protection settings is allowed on the device (a policy is not applied or the "lock" is not set in the policy properties).
• Network Threat Protection—only if the Network Threat Protection settings on the device are defined through a policy. Network Threat Protection is enabled in the policy properties by default. If locally configured settings are applied on the device, Network Threat Protection is disabled by default.

When the application is started, service tasks are automatically started on the device to ensure the operation of additional application functions: the application activation function and the Backup function.

By default, the application also starts user tasks configured on the command line, for which the "after application startup" run mode (PS run mode) is configured.

If you stop the application, all tasks running on the device will be interrupted. Interrupted user tasks are not resumed automatically after the application is restarted.

Starting and stopping the application using the Web Console

To start or stop the application remotely:

1. In the main window of the Web Console, select Assets (Devices) → Managed devices.

   The list of managed devices opens.

2. In the list, select the device on which you want to start or stop the application, and click the link with the device name to open the device properties window.
3. Select the Applications tab.
4. Select the Kaspersky Embedded Systems Security 3.4 for Linux check box.
5. Do one of the following:
   • To start the application, click the Start button.
   • To stop the application, click the Stop button.

You can monitor the application operation status by using the Protection status web widget in the Monitoring and reports / Dashboard window.

Starting and stopping the application using the Administration Console

To start or stop the application on a client device:

1. In the Administration Console tree, in the Managed devices folder, select the administration group containing the necessary device.
2. In the workspace, select the Devices tab.
3. In the list of managed devices, select the device for which you want to start or stop the application. In the device context menu, select Properties.
4. In the Properties: <Device name> window, select the Applications section.

   The right part of the window displays a list of Kaspersky applications installed on the device.

5. Select Kaspersky Embedded Systems Security 3.4 for Linux.
6. Do one of the following:
   • To run the application, click the button to the right of the list of Kaspersky applications or select Start in the application context menu.
   • To stop the application, click the button to the right of the list of Kaspersky applications or select Stop in the application context menu.

Page top

Starting and stopping the application using the command line

To run the application, the root account must be the owner of the following directories and only the owner must have write access to them: /var, /var/opt, /var/opt/kaspersky, /var/log/kaspersky, /opt, /opt/kaspersky, /usr/bin, /usr/lib, /usr/lib64.

Starting, restarting, and stopping Kaspersky Embedded Systems Security

To start the application, run the following command:

systemctl start kess

To stop the application, run the following command:

systemctl stop kess

To restart the application, run the following command:

systemctl restart kess

Monitoring the status of Kaspersky Embedded Systems Security

The Kaspersky Embedded Systems Security status is monitored by the watchdog service. The watchdog service is automatically launched when the application starts.

In the event of an application crash, a dump file is generated and the application is restarted automatically.

To export application settings, run the following command:

systemctl status kess