- Kaspersky Security for Virtualization 6.2 Light Agent Help
- About Kaspersky Security for Virtualization 6.2 Light Agent
- Solution functions
- Distribution kit
- Hardware and software requirements
- Requirements for Kaspersky Security Center components
- Requirements for installing a Windows-based Integration Server
- Requirements for installing a Linux-based Integration Server
- Requirements for the virtual infrastructure
- Requirements for SVM resources
- Virtual machine requirements for installing Light Agent
- Supported versions of applications in Light Agent mode
- What’s new
- Solution architecture
- Preparing to install the solution
- Files required for installing the solution
- Downloading SVM images using the wizard
- Configuring the ports to use
- Accounts for installing and using the solution
- Configuring the use of secure cryptographic algorithms, ciphers, and protocols
- Configuring rules for moving virtual machines to administration groups
- Installing the Kaspersky Security solution
- Installing a Windows-based Integration Server
- Installing the Linux-based Integration Server
- Installing Kaspersky Security web plug-ins
- Installing Kaspersky Security MMC plug-ins
- SVM deployment using the Integration Server Web Console
- Connecting the Integration Server and the virtual infrastructure
- Creating and running an SVM deployment task
- Selecting infrastructure for SVM deployment
- Selecting the SVM image
- Selecting the number of SVMs for deployment (infrastructures based on OpenStack)
- Specifying SVM settings
- Specifying SVM settings (infrastructures based on OpenStack)
- Configuring SVM network settings (infrastructures based on OpenStack)
- Configuring IP address settings for SVM
- Specifying Kaspersky Security Center connection settings
- Creating the configuration password and the root account password
- Start task for SVM deployment
- Starting an SVM deployment task (OpenStack-based infrastructure)
- Viewing information about task execution
- Deploying SVMs using the Integration Server Console
- Selecting an action
- Selecting infrastructure for SVM deployment
- Selecting the SVM image
- Selecting the number of SVMs for deployment (infrastructures based on OpenStack)
- Specifying SVM settings
- Specifying SVM settings (infrastructures based on OpenStack)
- Configuring SVM network settings (infrastructures based on OpenStack)
- Configuring IP address settings for SVM
- Specifying Kaspersky Security Center connection settings
- Creating the configuration password and the root account password
- Starting SVM deployment
- Starting SVM deployment (infrastructures based on OpenStack)
- SVM deployment
- Finishing SVM deployment
- Automatically creating tasks and a default policy for the Protection Server
- Preparing the Protection Server for operation
- Installing Light Agents and Network Agent
- About installing Kaspersky Security Center Network Agent on virtual machines
- About installing Light Agent for Linux
- About installing Light Agent for Windows
- Installing Light Agent on a template for non-persistent virtual machines
- Compatibility of Light Agent for Windows with virtualization solutions
- Preparing Light Agents for operation
- Displaying virtual machines and SVMs in Kaspersky Security Center
- Viewing the list of SVMs connected to the Integration Server
- Updating Kaspersky Security from the previous version
- Removing the Kaspersky Security solution
- Application management framework
- About managing the solution using Kaspersky Security Center
- About Kaspersky Security management plug-ins
- Starting and closing Kaspersky Security Center Web Console
- Managing the solution using Kaspersky Security Center policies
- Managing the solution using tasks
- About access rights to the settings of policies and tasks in Kaspersky Security Center
- About Integration Server Console
- Connecting to the Integration Server via Integration Server Console
- About the Integration Server Web Console
- Connecting to the Integration Server via Integration Server Web Console
- Licensing Kaspersky Security for Virtualization 6.2 Light Agent
- About the End User License Agreement
- About data provision
- About the license
- About the License Certificate
- About license key
- About the activation code
- About the key file
- About subscription
- License-specific solution functionality
- About activating Kaspersky Security for Virtualization 6.2 Light Agent
- Procedure for activating the solution
- Renewing a license
- Renewing subscription
- Viewing information about the license keys used in Kaspersky Security Center
- View information about the license on a secure virtual machine
- Starting and stopping Kaspersky Security
- Virtual machine protection status
- Connecting SVMs and Light Agents to the Integration Server
- Connecting Light Agents to SVMs
- Protecting large infrastructures
- Updating Kaspersky Security databases and application modules
- Using Kaspersky Security Network
- Additional Protection Server settings
- Reports and notifications
- SVM reconfiguration
- Reconfiguring SVMs using Integration Server Web Console
- Selecting SVM for reconfiguration
- Entering the configuration password
- Editing SVM network settings
- Changing SVM IP settings
- Changing Kaspersky Security Center connection settings
- Changing the configuration password and root account settings
- Start task for SVM reconfiguration
- Start task for SVM reconfiguration (OpenStack)
- SVM reconfiguration using the Integration Server Console
- Selecting an action
- Selecting SVM for reconfiguration
- Entering the configuration password
- Editing SVM network settings
- Editing SVM network settings (infrastructures based on OpenStack)
- Changing SVM IP settings
- Changing Kaspersky Security Center connection settings
- Changing the configuration password and root account settings
- Starting SVM reconfiguration
- Starting SVM reconfiguration (infrastructures based on OpenStack)
- SVM reconfiguration
- Finishing SVM reconfiguration
- Reconfiguring SVMs using Integration Server Web Console
- Configuring Integration Server settings
- Changing passwords of Integration Server accounts
- Changing the settings for connecting to the virtual infrastructure in the Integration Server Web Console
- Changing the settings for connecting to the virtual infrastructure in the Integration Server Console
- Deleting the settings for connection of the Integration Server to the virtual infrastructure
- Replacing the Integration Server and SVM certificates
- Using a backup copy of the database and the Integration Server settings
- SNMP monitoring of SVM status
- Checking the integrity of solution components
- Using Kaspersky Security for Virtualization 6.2 Light Agent in multitenancy mode
- Deploying a tenant protection infrastructure
- Configuring the Integration Server connection settings to the Kaspersky Security Center Administration Server
- Creating a tenant and virtual Administration Server
- Configuring SVM location and Protection Server settings
- Configuring settings for SVM discovery by Light Agents and general tenant protection settings
- Installing a Light Agent on tenant virtual machines
- Registering tenant virtual machines
- Activating a tenant
- Registering existing tenants and their virtual machines
- Enabling and disabling tenant protection
- Getting information about tenants
- Getting tenant protection reports
- Removing virtual machines from the protected infrastructure
- Removing tenants
- Using Integration Server REST API in multi-tenancy scenarios
- Deploying a tenant protection infrastructure
- Contacting Technical Support
- How to get technical support
- Technical Support via Kaspersky CompanyAccount
- Getting information for Technical Support
- Protection Server and Light Agent dump files
- Trace files of the Kaspersky Security Components Installation Wizard
- Trace files of the Integration Server and Integration Server Console
- Trace files of the tool for managing Integration Server and SVM certificates
- Trace files of SVMs, Light Agents and Kaspersky Security management plug-ins
- The SVM Management Wizard log
- Using the utilities and scripts from the Kaspersky Security distribution kit
- Appendices
- Using the klconfig script API to define SVM configuration settings
- Executing configuration commands
- Using the SVM first startup script
- Configuring SVM configuration settings
- Description of commands
- accept_eula_and_privacypolicy
- apiversion
- checkconfig
- connectorlang
- dhcp
- dhcprenew
- dns
- dnslookup
- dnssearch
- dnsshow
- getdnshostname
- gethypervisordetails
- hostname
- listpatches
- manageservices
- nagent
- network
- ntp
- passwd
- permitrootlogin
- productinstall
- reboot
- resetnetwork
- rollbackpatch
- setsshkey
- settracelevel
- test
- timezone
- version
- Settings in the ScanServer.conf file
- Object ID values for SNMP
- How to remove duplicate virtual machines from the list of managed devices in Kaspersky Security Center
- Using the klconfig script API to define SVM configuration settings
- Sources of information about the solution
- Glossary
- Activation code
- Active key
- Administration Server
- Application activation
- Backup
- Backup copy of a file
- Compound file
- Database of malicious web addresses
- Database of phishing web addresses
- Desktop key
- End User License Agreement
- Heuristic Analysis
- Integration Server
- Kaspersky CompanyAccount
- Kaspersky Security databases
- Kaspersky Security Network (KSN)
- Key file
- Key with a limitation on the number of processor cores
- Key with a limitation on the number of processors
- Keylogger
- License
- License certificate
- License key (key)
- Light Agent
- OLE object
- Phishing
- Protected virtual machine
- Reserve key
- Server key
- Signature Analysis
- Startup objects
- SVM
- SVM Management Wizard
- Update source
- Information about third-party code
- Trademark notices
Updating Kaspersky Security databases and application modules > Creating a Database update task
Creating a Database update task
Creating a Database update task
You can create database update tasks on the Protection Server using the Web Console as well as the Administration Console.
How to create a Database update task in Kaspersky Security Center Web Console
To create a database update task:
- In the main window of Kaspersky Security Center Web Console, select Assets (Devices) → Tasks.
A list of tasks opens.
- Click the Add button.
The New Task Wizard starts.
- At the first step of the Wizard:
- In the Application drop-down list, select Kaspersky Security for Virtualization 6.2 Light Agent – Protection Server.
- In the Task type drop-down list, select the Database update task type.
- In the Task name field, enter the name for the new task.
- In the Select devices to which the task will be assigned section, select a method for determining the task scope. A task scope is a set of SVMs on which a task will run.
- Select the Assign task to an administration group option to execute the task on all SVMs belonging to the specified administration group.
- Select the Specify device addresses manually or import from list option to execute the task on the specified SVMs.
- Select the Assign task to selected devices option to execute the task on the SVMs included in the selection of devices according to a predefined criterion. For details on creating a selection of devices, please refer to the Kaspersky Security Center help.
Proceed to the next step of the wizard.
- Depending on the selected method for defining the task scope, do one of the following:
- In the administration group tree, select the check boxes next to the required administration groups.
- In the list of devices, select the check boxes next to the required SVMs. If the required SVMs are not listed, you can add them in the following ways:
- Using the Add devices button. You can add devices by names or IP addresses, add devices from the specified IP address range, or select devices from the list of devices detected by the Administration Server when polling the organization’s local network.
- Using the Import devices from file button. Addresses are imported from a TXT file with a list of addresses of SVMs, with each address in a separate row.
If you import a list of SVMs from file or specify the addresses manually and the SVMs are identified by name, the list of SVMs for which the task is being created can be supplemented only with those SVMs whose details have already been included in the Administration Server database upon connection of SVMs or following a poll of the local area network.
- In the list, select the name of the selection containing the required SVMs.
Proceed to the next step of the wizard.
- Select the Open task properties window after creation check box to configure the task launch schedule, and click the Finish button to exit the wizard.
- In the properties window that opens for the new task, go to the Schedule tab. In the Scheduled start drop-down list, select When new updates are downloaded to the repository.
If necessary, configure other task launch schedule settings. For more information about the task schedule, see the Kaspersky Security Center Help.
- Click Save in the policy properties window.
How to create a Database update task in Kaspersky Security Center Administration Console
To create a Database update task:
- In the Kaspersky Security Center Administration Console, perform one of the following actions:
- If you want to create a task that will run on SVMs included in the selected administration group, select this administration group in the console tree. Then in the workspace, select the Tasks tab and click the New task button.
A wizard starts to create a task for devices of the selected administration group.
- If you want to create a task that will run on one or more SVMs (a task for a set of devices), select the Tasks folder in the console tree and click the New task button in the workspace.
A wizard starts to create a new task for a set of devices.
- If you want to create a task that will run on SVMs included in the selected administration group, select this administration group in the console tree. Then in the workspace, select the Tasks tab and click the New task button.
- At the first step of the wizard, select Kaspersky Security for Virtualization 6.2 Light Agent – Protection Server and the Database update task type.
Proceed to the next step of the wizard.
- If you are creating a task for a set of devices, the wizard will prompt you to define the task scope. A task scope is a set of SVMs on which a task will run.
- Specify the method for defining the task scope: select SVMs from the list of devices discovered by the Administration Server, manually specify the SVM addresses, import a list of SVMs from a file, or specify a previously configured selection of devices (for details, see the Kaspersky Security Center Help).
- Depending on the specified method for defining the scope, perform one of the following operations in the window that opens:
- In the list of detected devices, specify the SVMs on which the task will be run. To do so, select the check boxes in the list, on the left of the device names.
- Click the Add or Add IP range button and enter the addresses of SVMs manually.
- Click the Import button, and in the window that opens select a TXT file with the list of addresses of SVMs.
- Click the Browse button, and in the window that opens specify the name of the selection containing the SVMs for which you want to create the task.
Proceed to the next step of the wizard.
- In the Scheduled start drop-down list, select When new updates are downloaded to the repository.
- If necessary, configure other task launch schedule settings:
- Run skipped tasks
If you want the solution to start missed tasks immediately after an SVM appears on the network, select this check box.
If this check box is cleared, in Manually mode, the task is started only on SVMs that are visible on the network.
- Use automatically randomized delay for task starts
By default, the time of task start on SVMs is randomized with the scope of a certain time period. This period is calculated automatically depending on the number of SVMs covered by the task:
- 0–200 SVMs – task start is not randomized
- 200–500 SVMs – task start is randomized within the scope of 5 minutes
- 500–1000 SVMs – task start is randomized within the scope of 10 minutes
- 1000–2000 SVMs – task start is randomized within the scope of 15 minutes
- 2000–5000 SVMs – task start is randomized within the scope of 20 minutes
- 5000–10000 SVMs – task start is randomized within the scope of 30 minutes
- 10000–20000 SVMs – task start is randomized within the scope of 1 hour
- 20000–50000 SVMs – task start is randomized within the scope of 2 hours
- over 50000 SVMs – task start is randomized within the scope of 3 hours
If you do not need to randomize the time of task start within the scope of an automatically calculated time period, clear the Use automatically randomized delay for task starts check box.
This check box is set by default.
- Use a random delay to start the task in an interval (min)
If you want to start the task at a given time within a specified period after manual launch, select this check box. In the corresponding text box, specify the maximum task run delay time. In this case, after manual start, the task is started at a random time within the specified period.
This check box can be changed if the Use automatically randomized delay for task starts check box is cleared.
For more information about the task launch schedule settings, refer to the Kaspersky Security Center help.
Proceed to the next step of the wizard.
- Run skipped tasks
- In the Name field, enter the name of the new task and proceed to the next step of the new task wizard.
- If you want the task to start as soon as the New Task Wizard finishes, select the Run task when the wizard is complete check box.
- Finish the wizard.
The task is started every time the update package is downloaded into the storage of the Administration Server. You can also run the Database update task manually on the Protection Server at any time.
Article ID: 255622, Last review: Apr 17, 2025