Installing the app on corporate devices

Corporate device is the device operation mode for company-owned Android devices. This mode allows the administrator to have full control over the entire device and configure a wide range of device functions.

The Kaspersky Endpoint Security for Android app can be installed in one of the following ways:

• Using the QR code generated in Kaspersky Security Center for devices running Android 7 and later.
• Using the app installation package from Kaspersky Security Center and running the command in ADB. This method is suitable for devices running Android 5-6 and devices with later Android versions on which the QR code scanner is not available.

Configuring the app on corporate devices running Android 7 and later

To deploy the app on corporate devices, you need to reset the devices to factory settings and install the app using the QR code generated in Kaspersky Security Center. The QR code contains all the necessary data for app configuration.

To install the Kaspersky Endpoint Security for Android app on the corporate device:

1. Reset the device to factory settings.

   The device reboots, and the welcome screen appears.

2. Tap six times on an empty space of the device's welcome screen.

   The QR code reader appears.

3. Scan the QR code generated in Kaspersky Security Center for app installation.
4. Perform the initial setup of the device. The operating system installs the Kaspersky Endpoint Security for Android app in the background.

   Once the device setup completes, Kaspersky Endpoint Security for Android starts on the device.

   On Xiaomi devices running Android 12, Kaspersky Endpoint Security for Android does not start automatically. In this case, please, start the app manually.

5. Activate the app by following the instructions in the app's Initial Configuration Wizard.

   When deploying the app via the installation package downloaded from Kaspersky Security Center, after the device is reset to factory settings and the QR code is scanned, the Blocked by Play Protect message may appear on the device. The issue is caused by the installation package signing certificate being different from the one specified in Google Play. The user should continue the installation by choosing Install anyway. If OK is selected, the installation process will be interrupted and the device will be reset to factory settings.

The Kaspersky Endpoint Security for Android app is installed and activated on the corporate device.

Configuring the app on corporate devices running Android 5-6

For corporate devices running Android 5-6, the process of configuring the app differs from the standard one. You need to pre-configure the device, install the app, and use Android Debug Bridge (ADB) for additional settings.

This scenario can also be used for other Android versions and for devices on which the QR code scanner is not available.

To deploy the Kaspersky Endpoint Security for Android app on the corporate device with Android 5-6:

1. Reset the device to factory settings. You can skip this step and go to step 2 if the device has not been used before.

   If you set a screen unlock password on the device after you reset it to factory settings, you must reset the device to factory settings again before installing the app using ADB.

2. Enable the developer mode:
   1. Navigate to the Settings → About phone section.
   2. Tap the Build Number option seven times until you see the "You are now a developer!" message.

   On some devices, these sections might be located or named differently. For more details, please refer to the Android documentation.

3. Enable the USB debugging option in the Settings → Developer options section.
4. Allow app installation from the sources other than Google Play:
   1. Navigate to the Settings → Security section.
   2. Enable the Unknown sources option.
5. Install the Kaspersky Endpoint Security for Android app on the device via the app installation package from Kaspersky Security Center or using other suitable methods of installation (for example, an APK file).
6. In the window that opens on the device after installation, tap Done to exit the Installation Wizard.

   For this scenario to work correctly, do not launch the app before running the ADB command described in step 9.

7. Install ADB on your computer.
8. Connect the device to the computer using a USB cable.

   The system will show a dialog asking whether to allow the device debugging on the computer. Click OK.

9. Start ADB and run the following command:

   adb shell dpm set-device-owner com.kaspersky.kes/com.kms.selfprotection.DeviceAdmin.

10. Start the Kaspersky Endpoint Security for Android app and activate it by following the instructions in the app's Initial Configuration Wizard.

Some Xiaomi devices cannot be enrolled using ADB if MIUI optimization is turned on. To enroll these devices, turn off MIUI optimization by navigating to Settings → Build number. Tap on the build number six to eight times to enable Developer options and disable MIUI optimization. Perform the above mentioned steps again to successfully enroll these devices.