Using the Kaspersky Endpoint Security for Android app

This Help section describes features and operations that are available to users of the Kaspersky Endpoint Security for Android app.

Articles in this section comprise all the options that can be available or visible on a mobile device. The actual layout and behavior of the app depends on the remote administration system that is implemented and how the administrator configures your device in accordance with corporate security requirements. Some functions and options described in this section may not apply to your actual experience with the app. If you have any questions about the app on your specific device, contact your administrator.

App features

Kaspersky Endpoint Security offers the following key features.

Protection against viruses and other malware

The app uses the Anti-Malware component to protect the device against viruses and other malware.

Anti-Malware performs the following functions:

• Scans the entire device, installed apps, or selected folders for threats
• Protects the device in real time
• Scans newly installed apps before they are launched for the first time
• Updates anti-malware databases

If an application that collects information and sends it to be processed is installed on a mobile device, Kaspersky Endpoint Security for Android may classify this application as malware.

Protection of stolen or lost device data

The Anti-Theft component protects your data against unauthorized access and helps you to locate the device if it gets lost or stolen.

Anti-Theft lets you perform the following operations remotely:

• Lock the device.

  To prevent a hacker from having the capability to unlock the device, Kaspersky Endpoint Security must be enabled as an Accessibility Features service on mobile devices running Android 7 or later.

• Turn on a loud alarm on the device even if the device sound is disabled.
• Get the device location coordinates.
• Wipe data stored on the device.
• Reset to factory settings.
• Secretly take a photo of the person using your device.

To enable Anti-Theft operations, Kaspersky Endpoint Security must be enabled as a device administrator. If you did not grant device administrator rights during the initial configuration of apps, you can grant administrator rights to Kaspersky Endpoint Security using the appropriate notification or in the device settings (Android Settings → Security → Device administrators).

Protection against online threats

The Web Protection component provides protection against online threats.

Web Protection blocks malicious websites that distribute malicious code, and phishing websites designed to steal your confidential data and gain access to your financial accounts. Web Protection scans websites before you open them by using the Kaspersky Security Network cloud service. Learn more.

App Control

According to corporate security requirements, the administrator of the remote administration system (hereinafter also "administrator") creates lists of recommended, forbidden, and required apps. The App Control component is used to install recommended and required apps, update them, and remove forbidden apps.

App Control lets you install recommended and required apps to your device via a direct link to the distribution package or a link to Google Play. App Control lets you remove forbidden apps that violate corporate security requirements.

Kaspersky Endpoint Security must be enabled as an Accessibility Features service to ensure proper functioning of App Control. If you did not enable this service during the Initial Configuration Wizard for the app, you can enable Kaspersky Endpoint Security as an Accessibility Features service using the appropriate notification or in the device settings (Android Settings → Accessibility → Services).

Compliance Control

The Compliance Control component automatically checks whether the device conforms to corporate security requirements. If your device does not meet corporate security requirements, the app shows a notification with the following information:

• Reason for the non-compliance (for example, forbidden apps were detected on the device or anti-malware databases are out of date).
• Time period within which you must eliminate the non-compliance (for example, 24 hours).
• Action that will be taken on the device if you do not eliminate the non-compliance within the specified time period (for example, device will be locked).
• Action performed to fix the device's non-compliance with corporate security requirements.

Main window at a glance

The appearance of the main window slightly differs for different screen resolutions.

The main window displays the overall protection status of your device. This status determines the color of the window:

• Green indicates that device protection is at an optimal level.
• Red indicates critical problems with device security.

In the main app window, you can also do the following:

• View notifications by clicking the button at the top right corner. They inform you about security issues, problems in app operation, compliance with corporate security requirements, and your license.
• Navigate between the main window and app settings using the buttons at the bottom.

Status bar icon

After the first launch wizard finishes, the icon of Kaspersky Endpoint Security appears in the status bar.

The icon reflects the operation of the app and provides access to the main window of Kaspersky Endpoint Security.

The icon signals the operation of Kaspersky Endpoint Security and reflects the protection status of your device:

– Device is protected.

– There are problems with protection (for example, the anti-malware databases are out of date or a newly installed app has not been scanned).

Device scan

Anti-Malware has a number of limitations:

• When Anti-Malware is running, a threat detected in the external memory of the device (such as an SD card) cannot be neutralized automatically in the corporate container. Kaspersky Endpoint Security for Android does not have access to external memory in the corporate container. Information about detected objects is displayed in app notifications. To neutralize objects detected in the external memory, the object files have to be deleted manually and the device scan restarted.
• Due to technical limitations, Kaspersky Endpoint Security for Android cannot scan files with a size of 2 GB or more. During a scan, the app skips such files without notifying you that such files were skipped.
• On devices running Android 11 or later, the Kaspersky Endpoint Security for Android app can't scan the "Android/data" and "Android/obb" folders and detect malware in them due to technical limitations.

To start a device scan:

1. In the main window of Kaspersky Endpoint Security, tap Settings → App settings → Anti-Malware → Start scan.
2. Select the device scan scope:
   • Scan entire device. The app scans the entire file system of the device.
   • Scan installed apps. The app scans only installed apps.
   • Custom Scan. The app scans the selected folder or individual file. You can select an individual object (folder or file) or one of the following partitions of device memory:
     • Device memory. Read-accessible memory of the entire device. This also includes the system memory partition that stores operating system files.
     • Internal memory. Device memory partition intended for installation of apps and storage of media content, documents, and other files.
     • External memory. External SD card memory. If no external SD card is installed, this option is hidden.

Access to malware scan settings may be restricted by your administrator.

To configure the malware scan:

1. In the main window of Kaspersky Endpoint Security, tap Settings → App settings → Anti-Malware → Scan settings.
2. If you want the app to detect adware and apps that could be used by hackers to cause harm to your device or data when the app performs a scan, switch on the Adware, dialers, and other toggle button.
3. Tap Action on threat detection, and then select the action taken by the app by default:
   • Quarantine

     Quarantine stores files as archives, so they cannot harm the device. The Quarantine lets you delete or restore the files that were moved to isolated storage.

   • Ask user

     The app prompts you to select an action for each detected object: skip, quarantine, or delete. When multiple objects are detected, you can apply a selected action to all objects.

   • Delete

     Detected objects will be automatically deleted. No additional actions are required. Prior to deleting an object, Kaspersky Endpoint Security will display a temporary notification about the detection of the object.

   • Skip

     If the detected objects have been skipped, Kaspersky Endpoint Security warns you about problems in device protection. For each skipped threat, the app provides actions that you can perform to eliminate the threat. The list of skipped objects may change, for example, if a malicious file was deleted or moved. To receive an up-to-date list of threats, run a full device scan. To ensure reliable protection of your data, eliminate all detected objects.

Information about detected threats and the actions taken on them is logged in app reports (Settings → Reports). You can choose to display reports on Anti-Malware operations.

Running a scheduled scan

Anti-Malware has a number of limitations:

• When Anti-Malware is running, a threat detected in the external memory of the device (such as an SD card) cannot be neutralized automatically in the corporate container. Kaspersky Endpoint Security for Android does not have access to external memory in the corporate container. Information about detected objects is displayed in app notifications. To neutralize objects detected in the external memory, the object files have to be deleted manually and the device scan restarted.
• Due to technical limitations, Kaspersky Endpoint Security for Android cannot scan files with a size of 2 GB or more. During a scan, the app skips such files without notifying you that such files were skipped.
• On devices running Android 11 or later, the Kaspersky Endpoint Security for Android app can't scan the "Android/data" and "Android/obb" folders and detect malware in them due to technical limitations.

To configure the full scan schedule for a device:

1. In the main window of Kaspersky Endpoint Security, tap Settings → App settings → Anti-Malware → Scan settings.
2. Tap Schedule, and then select the full scan frequency:
   • Weekly
   • Daily
   • Disabled
   • After database update
3. Tap Start day, and then select the day of the week when you want to start the full scan.
4. Tap Start time, and then select the time for starting the full scan.

A full scan of the device is started according to schedule.

If the device is in battery saver mode, the app may perform this task later than specified. To ensure timely responses of Android devices to the administrator's commands, enable the use of Firebase Cloud Messaging.

Changing the Protection mode

Real-Time Protection lets you detect threats in files being opened, and scan apps while they are being installed on the device in real time. The anti-malware databases and the Kaspersky Security Network cloud service (Cloud Protection) are used to ensure security automatically.

To change the device protection mode:

1. In the main window of Kaspersky Endpoint Security, tap Settings → App settings → Anti-Malware → Real-time protection mode.
2. Select the device Protection mode:
   • Disabled. Protection is disabled.
   • Recommended. Anti-Malware scans only installed apps and files from the Downloads folder. Anti-Malware scans new apps as soon as they are installed.
   • Extended. Anti-Malware scans all device files for malicious objects when any operation is performed with them (for example, when they are saved, moved, or modified). Anti-Malware also scans new apps as soon as they are installed.

Information about the current Protection mode is displayed under the description of the component.

Access to Real-Time Protection settings may be restricted by your administrator.

To enable Cloud Protection (KSN):

1. Tap Settings → App settings → Anti-Malware in the main window of Kaspersky Endpoint Security.
2. Switch on the Cloud Protection (KSN) toggle button.

   The Cloud Protection (KSN) toggle button manages the use of Kaspersky Security Network only for real-time protection of a device. If the check box is cleared, Kaspersky Endpoint Security continues to use KSN for the operation of other components of the app.

As a result, the app obtains access to the Kaspersky online knowledge base regarding the reputation of files and apps. The scan is performed for threats whose information has not yet been added to anti-malware databases but is already available in KSN. Kaspersky Security Network cloud service provides full operation of Anti-Malware and reduces the likelihood of false alarms. Only your administrator can fully disable the use of Kaspersky Security Network.

To configure Real-Time Protection:

1. In the main window of Kaspersky Endpoint Security, tap Settings → App settings → Anti-Malware → Scan settings.
2. If you want the app to detect adware and apps that could be used by hackers to cause harm to your device or data when the app performs a scan, switch on the Adware, dialers, and other toggle button.
3. Tap Action on threat detection, and then select the action taken by the app by default:
   • Quarantine

     Quarantine stores files as archives, so they cannot harm the device. Quarantine lets you delete or restore the files that were moved to isolated storage.

   • Ask user

     The app prompts you to select an action for each detected object: skip, quarantine, or delete. When multiple objects are detected, you can apply a selected action to all objects.

   • Delete

     Detected objects will be automatically deleted. No additional actions are required. Prior to deleting an object, Kaspersky Endpoint Security will display a temporary notification about the detection of the object.

   • Skip

     If the detected objects have been skipped, Kaspersky Endpoint Security warns you about problems in device protection. For each skipped threat, the app provides actions that you can perform to eliminate the threat. The list of skipped objects may change, for example, if a malicious file was deleted or moved. To receive an up-to-date list of threats, run a full device scan. To ensure reliable protection of your data, eliminate all detected objects.

Information about detected threats and the actions taken on them is logged in the app reports (Settings → Reports). You can choose to display reports on Anti-Malware operations.

Anti-malware database updates

To update anti-malware databases of the app:

In the main window of Kaspersky Endpoint Security, tap Settings → App settings → Anti-Malware → Start database update.

When you use Kaspersky Endpoint Security for Android, you may encounter a Kaspersky service domain name blocked issue, which means network issues are preventing the app from reaching Kaspersky services. This may affect the Anti-Malware protection features and put your data at risk. Changing your connection settings might fix the issue.

This section only gives general instructions. Please refer to the user guide provided by your device manufacturer for specific instructions.

To change your connection settings:

1. Go to Settings on the device.
2. Open the connection settings.
3. Go to the Private DNS section.
4. Select Private DNS provider hostname, and then type a DNS name. For example, you could type "dns.google" to use Google's public DNS server.
5. Save the changes.

The connection settings are changed.

Scheduled database update

The app can automatically update the anti-malware databases according to the schedule you specify.

To configure the update schedule:

1. In the main window of Kaspersky Endpoint Security, tap Settings → App settings → Anti-Malware → Database update settings.
2. Tap Schedule, and then select the update frequency:
   • Weekly
   • Daily
   • Disabled
3. Tap Start day, and then select the day of the week when you want to run the update.
4. Tap Start time, and then select the time for starting the update.

Anti-malware database updates are started according to schedule.

If the device is in battery saver mode, the app may perform this task later than specified. To ensure timely responses of Android devices to the administrator's commands, enable the use of Firebase Cloud Messaging.

Updates functionality (including providing anti-malware signature updates and codebase updates), as well as KSN functionality may not be available in the software in the U.S.

Things to do if your device gets lost or stolen

If your device gets lost or stolen, contact your system administrator. The administrator can execute Anti-Theft commands on your device remotely according to corporate security requirements.

If a Reset to factory settings command is sent to the device, control over the device will be lost, and the remaining Anti-Theft commands will not work.

Web Protection

The following conditions must be met to enable Web Protection:

• The Statement regarding data processing for the purpose of using Web Protection (Web Protection Statement) must be accepted. Kaspersky Endpoint Security uses Kaspersky Security Network (KSN) to scan websites. The Web Protection Statement contains the terms of data exchange with KSN.

  Your administrator can accept the Web Protection Statement for you in Kaspersky Security Center. In this case, you are not required to take any action.

  If your administrator has not accepted the Web Protection Statement and has sent you the request to do this, you must read and accept the Web Protection Statement in the app settings.

  If your administrator has not accepted the Web Protection Statement, Web Protection is not available.

Web Protection on Android devices is supported only by Google Chrome, HUAWEI Browser, Samsung Internet, and Yandex Browser.

If the Kaspersky Endpoint Security for Android app on a corporate device is not enabled as an Accessibility Features service, Web Protection is supported only by the Google Chrome browser and checks only the domain of a website. To allow other browsers (Samsung Internet, Yandex Browser, and HUAWEI Browser) support Web Protection, enable Kaspersky Endpoint Security as an Accessibility Features service. This will also enable the Custom Tabs feature operation.

The Custom Tabs feature is supported by Google Chrome, HUAWEI Browser, and Samsung Internet.

To use Web Protection in Telegram, disable opening links in the In-App Telegram browser in Telegram settings.

Web Protection for HUAWEI Browser, Samsung Internet, and Yandex Browser does not block sites on a mobile device if a corporate container is used and Web Protection is enabled only for the corporate container.

To use Web Protection at all times when you browse the web, set Google Chrome, HUAWEI Browser, Samsung Internet, or Yandex Browser as the default browser.

To set a supported browser as the default browser and use Web Protection for website scanning at all times:

1. In the main window of Kaspersky Endpoint Security, tap Settings → App settings → Web Protection.
2. Switch the Web Protection toggle button to On.
3. Tap Set default browser.

   This button is displayed when Web Protection is enabled and a supported browser has not been set as the default browser.

   The default browser selection wizard starts.

4. Follow the wizard instructions.

The wizard sets Google Chrome, HUAWEI Browser, or Samsung Internet as the default browser. Web Protection continuously scans websites while you browse the web.

Get Certificate

To obtain a certificate for accessing corporate network resources:

1. In the main window of Kaspersky Endpoint Security, tap Settings → App settings → Additional → Get certificate.
2. Specify your corporate network account credentials. The login must be specified in one of the following formats:
   • userPrincipalName@DNSDomainName
   • sAMAccountName
   • sAMADomain\sAMAccountName

   For more information on these attributes, visit the Microsoft Technical documentation website. For details, you may contact your administrator.

3. If you have received a one-time password from the administrator, select the One-time password check box, and then enter the password you received.

   The Certificate Installation Wizard starts.

4. Follow the wizard's instructions.

Synchronizing with Kaspersky Security Center

Synchronization of the mobile device with the Kaspersky Security Center remote administration system is required for protecting and configuring your device in accordance with corporate security requirements. The device is automatically synchronized with Kaspersky Security Center, and you can also start synchronization manually. After the first synchronization, your device is added to the list of mobile devices managed via Kaspersky Security Center. The administrator can then configure your device in accordance with corporate security requirements.

You can configure synchronization settings while running the Initial Configuration Wizard or in the settings of Kaspersky Endpoint Security. Request the values of synchronization settings from your system administrator.

Modify the settings of device synchronization with the Kaspersky Security Center remote administration system only when instructed to do so by the administrator.

To synchronize your device with Kaspersky Security Center:

1. In the main window of Kaspersky Endpoint Security, tap Settings → App settings → Synchronization.
2. In the Synchronization settings section, specify the values of the following settings:
   • Server
   • Port
   • Group
   • Corporate email address

   Synchronization settings can be hidden by the administrator.

3. Tap Synchronize.

Activating the Kaspersky Endpoint Security for Android app without Kaspersky Security Center

In most cases, the Kaspersky Endpoint Security for Android app that is installed on your device is activated by the administrator centrally in the Kaspersky Security Center remote administration system. If your device is not connected to Kaspersky Security Center, you can enter the activation code manually. To get the activation code, contact the administrator.

Activate the app manually only when instructed to do so by the administrator.

To enter the activation code:

1. In the error message that says that your license will soon expire or has expired and that your device is not connected to the Administration Server, tap Activate.
2. In the activation window, enter the activation code that the administrator gave you, and then tap Activate.
3. If the activation code is correct, a notification is displayed saying that the app has activated, along with the license expiration date.

The Kaspersky Endpoint Security for Android app on your device is activated.

Installing the app on corporate devices

Corporate device is the device operation mode for company-owned Android devices. This mode allows the administrator to have full control over the entire device and configure a wide range of device functions.

The Kaspersky Endpoint Security for Android app can be installed in one of the following ways:

• Using the QR code generated in Kaspersky Security Center for devices running Android 7 and later.
• Using the app installation package from Kaspersky Security Center and running the command in ADB. This method is suitable for devices running Android 5-6 and devices with later Android versions on which the QR code scanner is not available.

Configuring the app on corporate devices running Android 7 and later

To deploy the app on corporate devices, you need to reset the devices to factory settings and install the app using the QR code generated in Kaspersky Security Center. The QR code contains all the necessary data for app configuration.

To install the Kaspersky Endpoint Security for Android app on the corporate device:

1. Reset the device to factory settings.

   The device reboots, and the welcome screen appears.

2. Tap six times on an empty space of the device's welcome screen.

   The QR code reader appears.

3. Scan the QR code generated in Kaspersky Security Center for app installation.
4. Perform the initial setup of the device. The operating system installs the Kaspersky Endpoint Security for Android app in the background.

   Once the device setup completes, Kaspersky Endpoint Security for Android starts on the device.

   On Xiaomi devices running Android 12, Kaspersky Endpoint Security for Android does not start automatically. In this case, please, start the app manually.

5. Activate the app by following the instructions in the app's Initial Configuration Wizard.

   When deploying the app via the installation package downloaded from Kaspersky Security Center, after the device is reset to factory settings and the QR code is scanned, the Blocked by Play Protect message may appear on the device. The issue is caused by the installation package signing certificate being different from the one specified in Google Play. The user should continue the installation by choosing Install anyway. If OK is selected, the installation process will be interrupted and the device will be reset to factory settings.

The Kaspersky Endpoint Security for Android app is installed and activated on the corporate device.

Configuring the app on corporate devices running Android 5-6

For corporate devices running Android 5-6, the process of configuring the app differs from the standard one. You need to pre-configure the device, install the app, and use Android Debug Bridge (ADB) for additional settings.

This scenario can also be used for other Android versions and for devices on which the QR code scanner is not available.

To deploy the Kaspersky Endpoint Security for Android app on the corporate device with Android 5-6:

1. Reset the device to factory settings. You can skip this step and go to step 2 if the device has not been used before.

   If you set a screen unlock password on the device after you reset it to factory settings, you must reset the device to factory settings again before installing the app using ADB.

2. Enable the developer mode:
   1. Navigate to the Settings → About phone section.
   2. Tap the Build Number option seven times until you see the "You are now a developer!" message.

   On some devices, these sections might be located or named differently. For more details, please refer to the Android documentation.

3. Enable the USB debugging option in the Settings → Developer options section.
4. Allow app installation from the sources other than Google Play:
   1. Navigate to the Settings → Security section.
   2. Enable the Unknown sources option.
5. Install the Kaspersky Endpoint Security for Android app on the device via the app installation package from Kaspersky Security Center or using other suitable methods of installation (for example, an APK file).
6. In the window that opens on the device after installation, tap Done to exit the Installation Wizard.

   For this scenario to work correctly, do not launch the app before running the ADB command described in step 9.

7. Install ADB on your computer.
8. Connect the device to the computer using a USB cable.

   The system will show a dialog asking whether to allow the device debugging on the computer. Click OK.

9. Start ADB and run the following command:

   adb shell dpm set-device-owner com.kaspersky.kes/com.kms.selfprotection.DeviceAdmin.

10. Start the Kaspersky Endpoint Security for Android app and activate it by following the instructions in the app's Initial Configuration Wizard.

Some Xiaomi devices cannot be enrolled using ADB if MIUI optimization is turned on. To enroll these devices, turn off MIUI optimization by navigating to Settings → Build number. Tap on the build number six to eight times to enable Developer options and disable MIUI optimization. Perform the above mentioned steps again to successfully enroll these devices.

Installing root certificates on the device

A root certificate is a public key certificate issued by a trusted certificate authority (CA). Root certificates are used to verify custom certificates and guarantee their identity.

Your administrator can specify root certificates to be installed on the device. On corporate devices and devices with a corporate container, these certificates are installed automatically. On personal devices, you will get notifications and have to install each certificate manually by following the instructions below.

To manually install a root certificate on the device:

1. Open the device Settings.
2. Navigate to the security settings. The path depends on the device model and operating system version. For instance, you may need to tap Advanced settings → Security or Security & lock screen → Credential storage.
3. Tap Install from Phone Storage / Install from SD Card or a similar option.
4. Tap CA Certificate.
5. On the confirmation window, tap Install Anyway.
6. In the appeared file manager, select the required root certificate.

   On some devices, the downloaded certificates may not be displayed in Recent files. Please wait for 3-5 minutes and open the file manager again. The waiting time depends on the device model. If after 3-5 minutes no files have appeared, go to the Internal storage\Download\kesm_certs or SD card\Download\kesm_certs folder and select the required root certificate.

The root certificate will be installed on the device.

Installing and using mail and VPN certificates on the device

Your administrator can specify mail and VPN certificates to be installed on the device. On corporate devices or devices with a corporate container, such certificates are installed automatically.

A mail certificate is installed on the device only if your administrator first configures Exchange ActiveSync settings.

A VPN certificate can also be installed in a trusted certificate store in a personal space in addition to the corporate container and be used by any app. You will get a notification and have to install a VPN certificate manually by following the instructions below.

To manually install a VPN certificate on the device:

1. Open Kaspersky Endpoint Security for Android.
2. Tap Notifications.
3. In the notification about the certificate, tap Install.

   A window with the certificate password opens.

4. Remember or write down the password and tap OK.
5. When prompted, enter the certificate password and tap OK.
6. Tap OK to confirm installation of the certificate.

The VPN certificate will be installed on the device.

Enabling accessibility on Android 13 or later

On Android 13 or later, accessibility services are restricted for apps not downloaded from Google Play or HUAWEI AppGallery. You must manually allow accessibility services if you downloaded Kaspersky Endpoint Security for Android from the Kaspersky Security Center server or the Kaspersky website.

If you update the Kaspersky Endpoint Security for Android app using a Kaspersky Security Center installation package or APK file from the Kaspersky website, accessibility services will be disabled. You must manually enable accessibility services again.

Accessibility is used for the following purposes:

• Check websites and apps in Kaspersky Security Network
• Lock the device in case of theft
• Display warnings
• Block the camera when restricted by the administrator

To enable accessibility for Kaspersky Endpoint Security:

1. Open the Accessibility page in the device settings and find Kaspersky Endpoint Security.
2. Turn on the Kaspersky Endpoint Security switch. In the dialog that says that accessibility services are restricted, tap OK.

   Now you can give Kaspersky Endpoint Security access to the restricted settings.

3. Open the Kaspersky Endpoint Security info page in the device settings. For example, go to Settings > Apps and then find the app in the list of apps.
4. On the Kaspersky Endpoint Security info page, tap in the top right corner and select Allow restricted settings.

   Kaspersky Endpoint Security now has access to the restricted settings.

5. Go back to the Accessibility page in the device settings and find Kaspersky Endpoint Security.
6. Turn on the Kaspersky Endpoint Security switch. In the dialog that opens, allow the app to have full control of your device.

Accessibility services are now enabled for Kaspersky Endpoint Security.

Enabling accessibility for the app on Android 13 or later

To enable accessibility for Kaspersky Endpoint Security:

1. In the dialog that asks you to turn on accessibility services, tap Turn On.

   The Accessibility page in the device settings opens.

2. Turn on the Kaspersky Endpoint Security switch. In the dialog that says that accessibility services are restricted, tap OK.

   Now you can give Kaspersky Endpoint Security access to the restricted settings.

3. Open the Kaspersky Endpoint Security info page in the device settings. For example, go to Settings > Apps and then find the app in the list of apps.
4. On the Kaspersky Endpoint Security info page, tap in the top right corner and select Allow restricted settings.

   Kaspersky Endpoint Security now has access to the restricted settings.

5. Go back to the app and in the dialog that asks you to turn on accessibility services, tap Turn On.

   The Accessibility page in the device settings opens.

6. Turn on the Kaspersky Endpoint Security switch. In the dialog that opens, allow the app to have full control of your device.

Accessibility services are now enabled for Kaspersky Endpoint Security.

Updating the app

Kaspersky Endpoint Security can be updated in the following ways:

• Manually using the Kaspersky website. You download the new version of the app from the Kaspersky website and install it on the device.
• With the help of the administrator. The administrator can remotely update the version of the app on your device by using the Kaspersky Security Center remote administration system.

Updating the app from the Kaspersky website

To update the app from the Kaspersky website:

1. Go to the Kaspersky website.
2. Find Kaspersky Security for Mobile on the website.
3. Tap Show Downloads.
4. Select a version of the app and tap Download.
5. Open the downloaded APK file and follow the instructions on the screen.

Kaspersky Endpoint Security for Android is updated.

Updating the app via Kaspersky Security Center

Updating the app via Kaspersky Security Center consists of the following steps:

1. The administrator sends to your mobile device the distribution package of the app whose version meets the corporate security requirements.

   A prompt to install Kaspersky Endpoint Security on your device is displayed.

2. Accept the update terms and conditions.

   The new version of the app will be installed to your device. The app does not require additional configuration after the update.

Updates functionality (including providing anti-malware signature updates and codebase updates), as well as KSN functionality may not be available in the software in the U.S.

Removing the app

The administrator can block you from removing the app on your own. If this is the case, you cannot remove Kaspersky Endpoint Security.

Kaspersky Endpoint Security can be removed by the following methods:

• Manually in the device settings.
• With the help of the administrator. The administrator can remotely remove the app from your device by using the Kaspersky Security Center remote administration system.

On corporate devices, Kaspersky Endpoint Security for Android can be removed only by the administrator by resetting the device to factory settings.

Removal in the device settings

The app is removed by following the standard procedure for the Android platform. To remove the app, administrator rights for Kaspersky Endpoint Security must be disabled in the device security settings.

On devices running Android 7 or later, if the administrator has blocked removal, the device will be locked if an attempt is made to remove the app in the Android settings. To unlock the device, contact your administrator.

Removal via Kaspersky Security Center

App removal by using Kaspersky Security Center consists of the following steps:

1. The administrator sends the app removal command to your mobile device.

   Your mobile device displays a prompt to confirm removal of Kaspersky Endpoint Security.

2. Confirm app removal.

   The app will be removed from your device.

Applications with a briefcase icon

Apps marked with a briefcase icon (corporate apps) are stored on your device in the corporate container. Corporate container is a safe environment on your device in which the administrator can manage apps and accounts without restricting your capabilities to work with personal data.

The corporate container lets you store corporate data separately from personal data. This keeps corporate data confidential and protects it against malware. When a corporate container is created on your device, the following corporate apps are automatically installed in the corporate container: Google Play Market, Google Chrome, Downloads, Kaspersky Endpoint Security for Android, and others.

Knox app

Knox icon

The Knox app opens a Knox container on your device. A Knox container is a safe environment on your device that has its own desktop, launch panel, apps, and widgets. The administrator can manage apps and accounts in a Knox container without restricting your capabilities to work with personal data.

A Knox container lets you store corporate data separately from personal data. This keeps corporate data confidential and protects it against malware.

In a Knox container, you can access your company mailbox, the contact information of enterprise employees, file storage, and other applications.

For more details about working with Knox, please visit the Samsung technical support website.