About Kaspersky Security for Virtualization 6.2 Light Agent

Kaspersky Security for Virtualization 6.2 Light Agent, hereinafter also referred to as "Kaspersky Security", is an integrated solution that provides comprehensive protection of virtual machines with Linux guest operating systems and Windows guest operating systems against various types of information threats, network attacks and fraud.

Kaspersky Security protects virtual machines on the following virtualization platforms:

• VMware vSphere.
• XenServer.
• Microsoft Hyper-V.
• KVM (Kernel-based Virtual Machine).
• Proxmox VE.
• Basis.
• Skala-R.
• HUAWEI FusionSphere.
• Nutanix Acropolis.
• Enterprise Cloud Platform VeiL.
• SharxBase.
• TIONIX Cloud Platform.
• OpenStack.
• ALT Virtualization Server.
• "Brest" Virtualization Tools software package.
• zVirt virtualization environment.
• ROSA Virtualization Environment Management System.
• RED Virtualization.
• Astra Linux.
• SpaceVM Cloud Platform.
• Basis.DynamiX Cloud Platform.
• VMmanager Infrastructure.
• Numa vServer.
• VK Cloud platform.
• R-Virtualization server virtualization system.
• Yandex Cloud Platform.
• Gorizont-VS virtualization management platform.
• HOSTVM Virtualization platform.

Some limitations apply to the installation and operation of the solution in virtual infrastructures running on the Enterprise Cloud Platform VeiL, SharxBase, "Brest" Virtualization Tools software package, zVirt Virtualization System, ROSA Virtualization, RED Virtualization, VMmanager Infrastructure, SpaceVM Cloud Platform, Basis.DynamiX Cloud Platform, R-Virtualization server virtualization system, and Yandex Cloud Platform, Gorizont-VS virtualization management platform, and HOSTVM Virtualization platform. Please refer to the Knowledge Base for details.

The Kaspersky Security solution is optimized to support maximum performance of the virtual machines that are protected by the solution.

The solution protects virtual machines running guest server operating systems and guest desktop operating systems.

The Kaspersky Security solution can be used in multitenancy mode. This mode of using the solution allows you to protect isolated virtual infrastructures in the tenant organization or units within a single organization (hereinafter also referred to as "tenants").

The solution includes the following components:

• Kaspersky Security Protection Server (hereinafter also "Protection Server"). The component is a service installed on a special virtual machine known as an SVM (secure virtual machine). SVMs must be deployed on hypervisors in the virtual infrastructure during installation of the Kaspersky Security solution.
• Kaspersky Security Light Agent (hereinafter also "Light Agent"). The component is an application designed to be installed on virtual machines. Light Agent must be installed on each virtual machine that you want to protect with Kaspersky Security.

  The Kaspersky Security solution uses Kaspersky Endpoint Security for Linux as the Light Agent for Linux.

  The Kaspersky Security solution uses Kaspersky Endpoint Security for Windows as the Light Agent for Windows.

• Kaspersky Security for Virtualization Light Agent Integration Server (hereinafter also "Integration Server"). The component is an application designed to be installed on a Linux device or a Windows device in your infrastructure. The Integration Server facilitates interaction between the Kaspersky Security solution components and the virtual infrastructure.

To install and manage Kaspersky Security, you need Kaspersky Security Center, Kaspersky's remote centralized application management system. You can use Kaspersky Security Center Windows or Kaspersky Security Center Linux.

Solution functions

The basic functions of protecting and monitoring virtual machines are provided by the functional components and tasks of the Light Agent for Linux and Light Agent for Windows.

The Kaspersky Security solution uses Kaspersky Endpoint Security for Linux as the Light Agent for Linux. The Kaspersky Security solution uses Kaspersky Endpoint Security for Windows as the Light Agent for Windows. For a description of the Light Agent functionality, please refer to the Online Help of the corresponding application.

Kaspersky Endpoint Security for Linux and Kaspersky Endpoint Security for Windows operating in Light Agent mode have the following features:

• The application is activated on the Protection Server.
• Updates of application databases and modules are managed on the Protection Server. The application gets updates from a folder on the SVM. You cannot select a different update source.
• The use of cloud databases is not supported.
• The application interacts with KSN servers using a KSN proxy server. Direct interaction with KSN is not supported.
• The use of the application's proxy server is not supported when connecting to the Integration Server, SVMs, and KSN servers.
• Managing the application using Kaspersky Security Center Cloud Console is not available.
• For the Kaspersky Endpoint Security for Linux application only: the application cannot be managed using the graphical user interface.
• For the Kaspersky Endpoint Security for Windows application only:
  • Data encryption components and Adaptive Anomaly Control cannot be installed.
  • The built-in EDR Expert agent does not work in Light Agent mode.

To keep the components of Kaspersky Security up-to-date and to expand the solution's capabilities, it provides the following additional functions:

• Activation. Using the solution under a commercial license ensures the full functionality of solution components and access to updates of the solution's databases and application modules.
• Updating databases and application modules. Updating the solution's databases and application modules ensures up-to-date protection of virtual machines against viruses and other applications that pose a threat.
• Using Kaspersky Security Network in the operation of solution components. Using Kaspersky's cloud knowledge base about the reputation of files, Internet resources, and software makes it possible to improve protection of virtual machines and user data, ensure faster response times to various threats, and reduce the number of false positives.
• Reports and notifications. Various types of events occur during the operation of solution components. You can receive notifications about events and generate reports based on events.

The update functionality (including anti-virus signature updates and code base updates), as well as the KSN functionality may not be available in the solution in the territory of the USA.

Distribution kit

For information about purchasing the solution, please visit the Kaspersky website at https://www.kaspersky.com or contact our partners.

The solution's distribution kit includes the following files:

• files required for installing the solution components
• files with the text of the End User License Agreement and the Privacy Policy
• MIB file that you can use to receive SVM status information with the aid of the SNMP Monitoring system

On the Kaspersky website, you can download the files that are included in the Kaspersky Security distribution kit as well as the files necessary for installing Kaspersky Security Center.

The contents of the solution's distribution kit can vary from region to region.

Information required to activate the solution is sent by email after payment.

Hardware and software requirements

This section contains the hardware and software requirements of Kaspersky Security.

Requirements for Kaspersky Security Center components

To install and manage the Kaspersky Security solution, you need Kaspersky Security Center Windows or Kaspersky Security Center Linux.

Kaspersky Security Center Linux includes a version of Administration Server intended for installation on a device running the Linux operating system. Kaspersky Security Center Linux interacts with Administration Server through Kaspersky Security Center Web Console. For more information on Kaspersky Security Center Linux, please refer to the Kaspersky Security Center Linux Help.

You can use one of the following versions of the Kaspersky Security Center application:

• Kaspersky Security Center Linux:
  • Kaspersky Security Center 15.2 Linux. Components of the Kaspersky Security solution can be managed through Kaspersky Security Center Web Console using the management web plug-in.
  • Kaspersky Security Center 15.1 Linux. Components of the Kaspersky Security solution can be administered through Kaspersky Security Center Web Console using the management web plug-in.
  • Kaspersky Security Center 15 Linux. Components of the Kaspersky Security solution can be administered through Kaspersky Security Center Web Console using the management web plug-in.
• Kaspersky Security Center Windows:
  • Kaspersky Security Center 15.1 Windows. Components of the Kaspersky Security solution can be managed through Administration Console using the management MMC plug-in and through Kaspersky Security Center Web Console using the management web plug-in.
  • Kaspersky Security Center 14.2 Windows. Components of the Kaspersky Security solution can be managed through Administration Console using the management MMC plug-in and through Kaspersky Security Center Web Console using the management web plug-in.

The operation of Kaspersky Security requires the following Kaspersky Security Center components:

• Administration Server.

  The following services must be configured on Administration Server:

  • The proxy activation service is used when activating the Kaspersky Security solution. The activation proxy service is configured in the properties of the Kaspersky Security Center Administration Server. If the activation proxy service is disabled, the solution cannot be activated using an activation code.
  • The KSN Proxy service facilitates data exchange between Kaspersky Security solution components and Kaspersky Security Network. The KSN Proxy service is configured in the properties of the Kaspersky Security Center Administration Server.

  For more detailed information about the activation proxy service and KSN Proxy service, please refer to the Kaspersky Security Center help.

• Network Agent. Network Agent facilitates interaction between Administration Server and virtual machines on which Kaspersky Security solution components are installed.

  Network Agent must be installed on all virtual machines that you want to protect:

  The Network Agent does not need to be installed on SVMs because this component is included in the SVM images.

• Kaspersky Security Center Administration Console. Regardless of the version of Kaspersky Security Center, you can use Kaspersky Security Center Web Console (hereinafter also referred to as "Web Console"). To interact with Kaspersky Security Center Windows, you can also use the MMC-based Administration Console (hereinafter also referred to as "Administration Console").

For information on installing Kaspersky Security Center components, please refer to the Kaspersky Security Center help.

Requirements for installing a Windows-based Integration Server

To install and operate the Windows-based Integration Server and Integration Server Console, one of the following operating systems must be installed on the device:

• Windows Server 2022 Standard/Datacenter/Essentials
• Windows Server 2019 Standard/Datacenter/Essentials
• Windows Server 2016 Standard/Datacenter
• Windows Server 2012 R2 Standard/Datacenter/Essentials
• Windows Server 2012 Standard/Datacenter/Essentials

On the device where you want to install the Integration Server Console, the operating system must be installed in the Desktop Experience mode.

Microsoft .NET Framework 4.6.2, 4.7, or 4.8 is required to install the Windows-based Integration Server and to install and run the Integration Server Console. You can install the Microsoft .NET Framework in advance, or if you have Internet access, the Kaspersky Security Component Installation Wizard will offer to install it during the installation of the Integration Server and Integration Server Console.

The device must meet the following minimum hardware requirements to allow installing and running the Windows-based Integration Server and Integration Server Console:

• Quad-core 2 GHz virtual processor
• Available disk space:
  • 4 GB for the Integration Server Console
  • 4 GB for the Integration Server
• Available RAM:
  • 4 GB for the Integration Server Console
  • 4 GB for the Integration Server

The required volume of RAM and free disk space may change depending on the size of the virtual infrastructure. To improve the performance of the Integration Server, 10 GB of free disk space is recommended.

Requirements for installing a Linux-based Integration Server

To install and operate the Linux-based Integration Server, one of the following 64-bit operating systems must be installed on the device:

• Ubuntu 22.04 LTS.
• Astra Linux Special Edition RUSB.10015-01 (operational update 1.7).
• Astra Linux Special Edition RUSB.10015-01 (operational update 1.8).

The following packages must be installed on the device:

• regardless of the installed operating system:
  • libc6
  • libgssapi-krb5-2
  • zlib1g
• in the Ubuntu 22.04 LTS operating system:
  • ca-certificates
  • libssl3
  • libunwind8
• in the Astra Linux Special Edition operating system RUSB.10015-01 (operational update 1.7): libssl1.1
• in the operating system Astra Linux Special Edition RUSB.10015-01 (operational update 1.8): libssl3

The device must meet the following minimum hardware requirements to support the installation and operation of the Linux-based Integration Server:

• Quad-core 2500 MHz virtual processor
• 4 GB available disk space
• 8 GB available RAM

Hardware requirements may vary depending on the size of the virtual infrastructure. To improve the performance of the Integration Server, 10 GB of free disk space, and 12 GB RAM is recommended.

Requirements for the virtual infrastructure

Installation and operation of the Kaspersky Security solution is supported on the following virtualization platforms:

• Microsoft Hyper-V platform.

  One of the following hypervisors must be installed in the virtual infrastructure to support installation and operation of the Kaspersky Security solution.

  • Microsoft Windows Server 2022 Hyper-V (Desktop experience/Core) hypervisor
  • Microsoft Windows Server 2019 Hyper-V (Desktop experience/Core) hypervisor
  • Microsoft Windows Server 2016 Hyper-V (Desktop experience/Core) hypervisor with all available updates

  The solution can be installed and run on Microsoft Windows Server (Hyper-V) hypervisors that are part of a hypervisor cluster managed by the Windows Failover Clustering service. Cluster Shared Volumes technology must be enabled on cluster nodes.

  If you use Integration Server Console to manage the Integration Server, when deploying SVMs on Microsoft Windows Server (Hyper-V) hypervisors, you can use one of the following versions of the Microsoft System Center Virtual Machine Manager (hereinafter referred to as "Microsoft SCVMM") virtual infrastructure management server:

  • Microsoft SCVMM 2022 with the latest updates.
  • Microsoft SCVMM 2019 with the latest updates.
  • Microsoft SCVMM 2016 with the latest updates.

  If you use Integration Server Web Console or REST API to manage the Integration Server. Connecting to Microsoft SCVMM is not supported.

  For the Linux-based Integration Server, connecting to virtual infrastructure based on Microsoft Hyper-V is not supported. Use the Windows-based Integration Server.

• XenServer platform

  A XenServer 8 hypervisor must be installed in the virtual infrastructure to support installation and operation of the Kaspersky Security solution.

  In a virtual infrastructure on the XenServer platform, you cannot deploy an SVM with a static IP address specified. Use dynamic IP addressing.

• VMware vSphere platform.

  One of the following hypervisors must be installed in the virtual infrastructure to support installation and operation of the Kaspersky Security solution.

  • VMware ESXi 8.0 hypervisor with the latest updates.
  • VMware ESXi 7.0 hypervisor with the latest updates.

  A VMware vCenter Server 8.0 or 7.0 virtual infrastructure administration server with all available updates must be installed in virtual infrastructure. There is support for the installation and operation of the solution in an infrastructure managed by standalone VMware vCenter servers and by a group of VMware vCenter servers running in Linked mode.

  If you are using VMware NSX Manager in an infrastructure running the VMware vSphere platform, Kaspersky Security can assign security tags to the protected virtual machines. Kaspersky Security is compatible with VMware NSX Manager, which is included in the following packages:

  • VMware NSX 4.0.1
  • VMware NSX-T Data Center 3.2

  If you use Integration Server Console to manage the Integration Server, when deploying SVMs on VMware ESXi hypervisors, you can use one of the following versions of the Microsoft SCVMM virtual infrastructure management server:

  • Microsoft SCVMM 2022 with the latest updates.
  • Microsoft SCVMM 2019 with the latest updates.
  • Microsoft SCVMM 2016 with the latest updates.

  If you use Integration Server Web Console or REST API to manage the Integration Server. Connecting to Microsoft SCVMM is not supported.

• KVM (Kernel-based Virtual Machine) platform.

  A KVM hypervisor based on one of the following operating systems must be installed in the virtual infrastructure to support installation and operation of the Kaspersky Security solution.

  • Debian GNU/Linux 12.0.
  • Debian GNU/Linux 11.0.
  • Ubuntu 22.04 LTS.
  • Red Hat Enterprise Linux Server 8.0.
  • CentOS Stream 9.

  To deploy an SVM on KVM hypervisors running the CentOS operating system, you must delete or comment out the "Defaults requiretty" line in the /etc/sudoers configuration file of the hypervisor’s operating system.

• Proxmox VE platform.

  A Proxmox VE 8 hypervisor must be installed in the virtual infrastructure to support installation and operation of the Kaspersky Security solution.

  Only KVM-based Proxmox VE is supported. Operation of the solution on a Proxmox VE hypervisor using LXC (Linux Containers) is not supported.

• Basis platform.

  An R-Virtualization 7.0.13 hypervisor must be installed in the virtual infrastructure to support installation and operation of the Kaspersky Security solution.

  A Basis.vControl 2.2.1 virtual infrastructure administration server must be installed in the virtual infrastructure to support deployment and operation of an SVM on R-Virtualization hypervisors.

• Skala-R platform.

  An R-Virtualization 7.0.13 hypervisor must be installed in the virtual infrastructure to support installation and operation of the Kaspersky Security solution.

  A Skala-R Management 1.98 virtual infrastructure administration server must be installed in the virtual infrastructure to support deployment and operation of an SVM on R-Virtualization hypervisors.

• HUAWEI FusionSphere platform.

  A HUAWEI FusionCompute CNA 8.0 or later hypervisor must be installed in the virtual infrastructure to support installation and operation of the Kaspersky Security solution.

  HUAWEI FusionCompute VRM 8.0 and later virtual infrastructure administration server must be installed in the virtual infrastructure to support deployment and operation of an SVM on HUAWEI FusionCompute CNA hypervisors.

• Nutanix Acropolis platform.

  A Nutanix AHV 6.5.1.5 or 6.10.1 hypervisor must be installed in the virtual infrastructure to support installation and operation of the Kaspersky Security solution.

  Nutanix Prism 6.5.1.5 or 6.10.1 and later virtual infrastructure administration server must be installed in the virtual infrastructure to support deployment and operation of an SVM on Nutanix AHV hypervisors.

• Enterprise Cloud Platform VeiL platform.

  A VeiL Node 5.1.2 hypervisor must be installed in the virtual infrastructure to support installation and operation of the Kaspersky Security solution.

  There are some limitations on the installation and operation of the solution in a virtual infrastructure running on the Enterprise Cloud Platform VeiL platform. Please refer to the Knowledge Base for details.

• SharxBase platform.

  A SharxBase 5.10.x hypervisor must be installed in the virtual infrastructure to support installation and operation of the Kaspersky Security solution.

  There are some limitations on the installation and operation of the solution in a SharxBase virtual infrastructure. Please refer to the Knowledge Base for details.

• TIONIX Cloud Platform.

  For the Kaspersky Security solution to install and run, TIONIX Cloud Platform 2.9 or 3.0 must be installed.

  The following microservices must be installed as part of the TIONIX Cloud Platform:

  • Keystone – authentication microservice.
  • Compute (Nova) – microservice used for creating virtual machine and operations with infrastructure.
  • Cinder – microservice used for operations with storages.
  • Glance – microservice used for operations with virtual machine images.
  • Neutron – microservice used for operations with networks.

  A KVM hypervisor must be installed in the virtual infrastructure.

• OpenStack platform.

  For the Kaspersky Security solution to install and run, one of the following OpenStack platform releases must be installed: Havana, Stein, Newton, Victoria, Zed, Antelope, Bobcat.

  The following microservices must be installed as part of the OpenStack platform:

  • Keystone – authentication microservice.
  • Compute (Nova) – microservice used for creating virtual machine and operations with infrastructure.
  • Cinder – microservice used for operations with storages.
  • Glance – microservice used for operations with virtual machine images.
  • Neutron – microservice used for operations with networks.

  A KVM hypervisor must be installed in the virtual infrastructure.

• ALT Virtualization Server.

  The ALT Virtualization Server version 10.0 platform is required for installation and operation of the Kaspersky Security solution.

  A basic hypervisor of the ALT Virtualization Server 10.0 platform (KVM-based hypervisor) must be installed as part of the platform.

• Brest Virtualization Software Platform.

  The Brest Virtualization Software 3.2 or 3.3 platform is required to install and run the Kaspersky Security solution.

  A KVM hypervisor must be installed in the virtual infrastructure.

  There are some limitations on the installation and operation of the solution in a virtual infrastructure running on the "Brest" Virtualization Tools software package. Please refer to the Knowledge Base for details.

• zVirt virtualization environment.

  A zVirt Node 3.x, 4.x, or zVirt Max hypervisor must be installed in the virtual infrastructure to support installation and operation of the Kaspersky Security solution.

  There are some limitations on the installation and operation of the solution in a virtual infrastructure running the zVirt Virtualization Environment. Please refer to the Knowledge Base for details.

• ROSA Virtualization platform.

  ROSA Virtualization Environment Management System Platform version 2.1 or 3.0 is required for installation and operation of the Kaspersky Security solution.

  A KVM hypervisor must be installed in the virtual infrastructure.

  There are some limitations on the installation and operation of the solution in a virtual infrastructure running on the ROSA Virtualization platform. Please refer to the Knowledge Base for details.

  You can remove the limitations related to use of the Integration Server in a virtual infrastructure running on the ROSA Virtualization platform. If you want Light Agents to use the advanced SVM discovery functionality (use of the Integration Server and the extended SVM selection algorithm), you can manually add infrastructure information to the Integration Server. Please refer to the Knowledge Base for details.

• RED Virtualization platform.

  RED Virtualization platform 7.3 is required for installation and operation of the Kaspersky Security solution.

  A KVM hypervisor must be installed in the virtual infrastructure.

  There are some limitations when installing and operating the solution in a virtual infrastructure running the RED Virtualization platform. Please refer to the Knowledge Base for details.

• Astra Linux Platform.

  To install and run the Kaspersky Security solution, Astra Linux Special Edition RUSB.10015-01 (regular update 1.7) must be installed along with Update 2022-1221SE17MD (operational update 1.7.3.UU.1).

  A KVM hypervisor must be installed in the virtual infrastructure.

• SpaceVM Cloud Platform.

  SpaceVM Cloud Platform 6.2 is required to install and run Kaspersky Security in a virtual infrastructure.

  There are some limitations on the installation and operation of the solution in a virtual infrastructure on the SpaceVM Cloud platform. Please refer to the Knowledge Base for details.

• Basis.DynamiX Cloud Platform.

  Basis.DynamiX Cloud Platform 3.8.5, 3.8.8, or 4.0.0 is required to install and run Kaspersky Security in a virtual infrastructure.

  There are some limitations on the installation and operation of the solution in a virtual infrastructure on the Basis.DynamiX Cloud platform. Please refer to the Knowledge Base for details.

• VMmanager Infrastructure platform.

  VMmanager Infrastructure 2023.11.1-1 is required for installation and operation of the Kaspersky Security solution.

  A KVM hypervisor must be installed in the virtual infrastructure.

  There are some limitations when installing and operating the solution in a virtual infrastructure running VMmanager Infrastructure. Please refer to the Knowledge Base for details.

• Numa vServer platform

  A Numa vServer 1.1 or later hypervisor must be installed in the virtual infrastructure to support installation and operation of the Kaspersky Security solution.

• VK Cloud platform

  To install and run the Kaspersky Security solution, you need one of the following OpenStack platform releases: Havana, Stein, Newton, Victoria, Zed, Antelope, Bobcat.

  The following microservices must be installed as part of the VK Cloud platform:

  • Keystone – authentication microservice.
  • Compute (Nova) – microservice used for creating virtual machine and operations with infrastructure.
  • Cinder – microservice used for operations with storages.
  • Glance – microservice used for operations with virtual machine images.
  • Neutron – microservice used for operations with networks.

  A KVM hypervisor must be installed in the virtual infrastructure.

• R-Virtualization server virtualization system.

  R-Virtualization hypervisor 7.0.13 or later must be installed in the virtual infrastructure to support installation and operation of the Kaspersky Security application.

  Some limitations apply to the installation and operation of the application in a virtual infrastructure based on the ROSA Virtualization platform. Please refer to the Knowledge Base for details.

• Yandex Cloud Platform.

  Yandex Cloud Platform is required to install and run Kaspersky Security.

  There are some limitations on the installation and operation of the solution in a virtual infrastructure on the Yandex Cloud Platform. Please refer to the Knowledge Base for details.

• Gorizont-VS virtualization management platform.

  The Gorizont-VS virtualization management platform version core_3.х, core_4.x, or Gorizont-VS-FSTEC is required to install and operate the Kaspersky Security solution.

  The virtual infrastructure must have the "Gorizon-VS Server Virtualization subsystem" hypervisor and the "Gorizon-VS Multimanagement system" virtual infrastructure administration server (hereinafter also "Horizon-VS-SGU") installed.

  Some limitations apply to installing and operating the solution on the Gorizont-VS virtualization management platform. Please refer to the Knowledge Base for details.

• HOSTVM Virtualization platform.

  HOSTVM Virtualization platform is required to install and run Kaspersky Security.

  The HOSTVM Node hypervisor must be installed in the virtual infrastructure.

  Some limitations apply to installing and operating the solution on the HOSTVM virtualization management platform. Please refer to the Knowledge Base for details.

Kaspersky Security can protect virtual machines as part of an infrastructure that uses the following virtualization solutions:

• VMware Horizon 8.x.
• Huawei FusionAccess 8 (Windows guest operating system only).
• Citrix Virtual Apps and Desktops 7 2402 LTSR with the latest updates installed.
• Citrix Provisioning Services 7.
• Citrix XenApp and XenDesktop 7.15.
• Citrix App Layering 2009 (only virtual machines with a Windows guest operating system).
• Termidesk VDI 3.3.
• Basis.WorkPlace 1.98.2.
• Remote Desktop Host Services based on Microsoft and Citrix.

Some limitations apply to the operation of the solution in a VDI based on Termidesk and Basis.WorkPlace.

Requirements for SVM resources

To run the solution on an SVM, the following minimum system resources are required:

• Dual-core virtual processor
• 30 GB available disk space
• 2 GB available RAM
• Virtualized network interface with bandwidth of 100 Mbit/s

Virtual machine requirements for installing Light Agent

Requirements for Light Agent for Linux

On virtual machines running Linux operating systems, Kaspersky Endpoint Security for Linux installed in Light Agent mode is used as the Light Agent.

For the minimum hardware requirements and a list of supported operating systems for Kaspersky Endpoint Security for Linux in Light Agent mode, see the Kaspersky Endpoint Security for Linux Help of the relevant version.

There are limitations when Kaspersky Endpoint Security is used in Light Agent mode to protect virtual environments. Using Kaspersky Endpoint Security for Linux in Light Agent mode is not supported:

• On devices running operating systems for the Arm architecture.
• On devices running Astra Linux operating systems in mandatory access control and closed software environment modes.

Requirements for Light Agent for Windows

On virtual machines running Windows operating systems, Kaspersky Endpoint Security for Windows installed in Light Agent mode is used as the Light Agent.

For the minimum hardware requirements and a list of supported operating systems for Kaspersky Endpoint Security for Windows in Light Agent mode, see the Kaspersky Endpoint Security for Windows Help of the relevant version.

General requirements for Light Agent

Before installing Light Agent on virtual machines, the following packages must be installed, depending on the virtual infrastructure:

• In a Microsoft Hyper-V infrastructure, the Integration Services package must be installed on the virtual machines.
• In a VMware vSphere infrastructure, the VMware Tools package must be installed on the virtual machines.
• In a XenServer infrastructure, XenTools must be installed on the virtual machines.
• In a HUAWEI FusionSphere infrastructure, the HUAWEI Tools package must be installed on the virtual machines.
• In an infrastructure based on KVM, OpenStack, VK Cloud platform, TIONIX Cloud Platform, Astra Linux, or ALT Virtualization Server, QEMU Guest Agent must be installed on virtual machines.

Supported versions of applications in Light Agent mode

The following applications are used as part of Kaspersky Security for Virtualization 6.2 Light Agent:

• Kaspersky Endpoint Security for Linux 12.2.
• Kaspersky Endpoint Security for Windows 12.8.
• Kaspersky Endpoint Security for Windows 12.9.

Other components of the Kaspersky Security solution are compatible only with the specified application versions.