Importing asset information and asset vulnerability information from Kaspersky Security Center

Expand all | Collapse all

All assets that are protected by Kaspersky Security Center are registered in it. You can import into KUMA the information about assets or vulnerabilities of assets that Kaspersky Security Center protects. To do so, you need to configure integration between the applications in advance.

In Kaspersky Security Center integration settings, you can configure the frequency of automatic import of information about assets, and, if necessary, import assets manually. Importing assets manually does not affect the time of the next scheduled import. From the Kaspersky Security Center database, KUMA imports information about devices with installed Kaspersky Security Center Network Agent that has connected to Kaspersky Security Center, that is, has a non-empty 'Connection time' field in the SQL database.

KUMA imports the following device information received from Kaspersky Security Center Network Agents:

• Basic information about the asset: name, address, time of connection to Kaspersky Security Center, hardware information, protection status, anti-virus database versions
• Information about asset attributes: vulnerabilities; software, including the operating system; owners of the asset

By default, basic asset information is imported every hour, and information about asset attributes is imported every 12 hours. Attribute information is imported only for existing assets, not for new or deleted assets.

During the next import of information from Kaspersky Security Center, if KUMA does not receive data about a previously added asset, such an asset is marked as archived. If no information about this asset is received within the next 30 days, the asset is deleted.

KUMA does not import Kaspersky Security Center assets with the Last visible parameter greater than 30 days.

If Kaspersky Security Center encounters errors while running the import tasks, KUMA displays such errors. If basic asset information is not available in KUMA during the import of asset attribute information (for example, if the assets were deleted during the import), the task completes without errors, but the attribute information for these assets is not loaded.

KUMA provides the following ways of importing information about assets or asset vulnerabilities from KSC:

• Importing asset information and asset vulnerability information for assets of all KSC Servers.

  To import information about assets or asset vulnerabilities of all Kaspersky Security Center Servers:

  1. In the KUMA web interface, go to the Assets section.
  2. Import asset information and asset vulnerability information for assets in one of the following ways:
     • If you want to import information about the basic parameters of assets (protection status, versions of anti-virus databases, hardware), click the Import KSC assets button.
     • If you want to import information about other parameters of assets (vulnerabilities, software, owners), click the Import KSC assets attributes.
  3. In the displayed window, select the tenant for which you want to perform the import. By default, All tenants is selected, which means the import is performed for all tenants.
  4. Click OK.

  Information about the assets or asset vulnerabilities of Kaspersky Security Center servers is imported into KUMA.

• Importing asset information and asset vulnerability information for assets of an individual KSC Server.

  To import information about assets or asset vulnerabilities of an individual Kaspersky Security Center Server:

  1. In the KUMA web interface, go to the Settings → Kaspersky Security Center section.

     The Kaspersky Security Center integration by tenant window opens.

  2. Select the tenant for which you want to perform the import.

     The Kaspersky Security Center integration window opens.

  3. In the Connections table, click the connection to the selected Kaspersky Security Center Server.

     This opens the connection settings window.

  4. If the Kaspersky Security Center Server has secondary servers or groups, and you do not want to import information about their assets or vulnerabilities:
     1. Click the Load hierarchy button.
     2. Clear the check boxes next to the secondary Servers or groups for which you do not want to perform the import. By default, the check boxes are selected.
     3. If you want to import asset information or asset vulnerability information from new groups, select the Import assets from new groups check box. This check box is cleared by default.
     4. Click the Save button.
  5. Import asset information and asset vulnerability information for assets in one of the following ways:
     • If you want to import information about the basic parameters of assets (protection status, versions of anti-virus databases, hardware), click the Import KSC assets button.
     • If you want to import information about other parameters of assets (vulnerabilities, software, owners), click the Import KSC assets attributes.

  Information about the assets or asset vulnerabilities of the selected Kaspersky Security Center Server is imported into KUMA.

Page top