Configure the connection of the Light Agent to the Integration Server:

1. In the main window of Kaspersky Security Center Web Console, select Assets (Devices) → Policies and policy profiles.

   A list of policies opens.

2. Select the administration group containing the virtual machine with the Light Agent whose settings you want to configure. To do so, click the link in the Current path field located above the list of policies and policy profiles, and select an administration group in the window that opens.

   The list displays only the policies configured for the selected administration group.

3. Click on the name of the Kaspersky Endpoint Security for Linux policy in the list.
4. In the policy properties window that opens, select the Application settings tab and go to Light Agent mode → Integration Server connection settings.
5. The window displays the current connection settings. Click the Edit button and specify the following settings in the Connection to the Integration Server window that opens:
   • Address

     IP address in IPv4 format or fully qualified domain name (FQDN) of the device on which the Integration Server is installed.

     If the address is specified as a NetBIOS name, localhost or 127.0.0.1, connection to the Integration Server completes with an error.

   • Port

     Port for connecting to the Integration Server.

     By default, port number 7271 is specified.

6. Click Test in the Connection to the Integration Server window.

   Kaspersky Security web plug-in verifies the SSL certificate received from the Integration Server. If the certificate contains an error or is not trusted, a corresponding message is displayed in the Connection to the Integration Server window. You can view information about the received certificate. If there are problems with the SSL certificate, it is recommended to make sure that the utilized data transfer channel is secure. To continue connecting to the Integration Server, select the Ignore option.

7. Specify the password of the Integration Server administrator (password of the admin account) and click the Test button in the Connection to the Integration Server window.

   The connection to the Integration Server is established.

   After connecting to the Integration Server with administrator rights, the policy automatically receives the password of the agent account, which is used to connect Light Agents to the Integration Server. The password is stored in encrypted form.

   If a connection to the Integration Server cannot be established, an error is displayed in the window. Check the connection settings you have specified.

   Information about Integration Server connection errors may be saved in the Integration Server trace file (if you enabled the logging of information).

8. Click OK in the Connection to the Integration Server window.
9. Click the Save button.

Configure the connection of the Light Agent to the Integration Server:

1. In the Kaspersky Security Center Administration Console tree, in the Managed devices folder, select the administration group containing the virtual machine with the Light Agent whose settings you want to configure.
2. In the workspace, select the Policies tab.
3. Select a Kaspersky Endpoint Security policy in the list of policies and double-click to open the Properties: <Policy name> window.
4. In the policy properties window, select the Connection to the Integration Server section in the list on the left.
5. The right side of the window displays the current connection settings. Click the Edit button and specify the following settings in the Connection to the Integration Server window that opens:
   • Address

     IP address in IPv4 format or fully qualified domain name (FQDN) of the device on which the Integration Server is installed.

     If the device on which Kaspersky Security Center Administration Console is installed is part of a domain, the field indicates the domain name of this device by default.

     If the device on which the Kaspersky Security Center Administration Console is installed is not part of a domain or the Integration Server is installed on another device, the field must be filled in manually.

     If the address is specified as a NetBIOS name, localhost or 127.0.0.1, connection to the Integration Server completes with an error.

   • Port

     Port for connecting to the Integration Server.

     By default, port number 7271 is specified.

6. Click OK in the Connection to the Integration Server window.
7. If the device hosting the Kaspersky Security Center Administration Console does not belong to a domain or your account does not belong to the KLAdmins local or domain group or to the local administrator group, the Authentication on the Integration Server window opens. Specify the password of the Integration Server administrator (password of the admin account) and click the OK button. After connecting to the Integration Server with administrator rights, the policy automatically receives the password of the agent account, which is used to connect Light Agents to the Integration Server. The password is stored in encrypted form.

   Kaspersky Security MMC plug-in verifies the SSL certificate received from the Integration Server. If the certificate contains an error or is not trusted, the Verify Integration Server certificate window opens. You can view the details of the certificate received. If there are problems with the SSL certificate, it is recommended to make sure that the utilized data transfer channel is secure. To continue connecting to the Integration Server, click the Ignore button. The received certificate will be installed as a trusted certificate on the device where the Kaspersky Security Center Administration Console is installed.

   The capability to connect to the Integration Server is tested. If the connection test failed or a connection to the Integration Server could not be established, an error is displayed in the policy properties window. Check the connection settings you have specified.

Information about Integration Server connection errors may be saved in the Integration Server trace file (if you enabled the logging of information).