You can configure integration with selected Kaspersky Security Center servers for one, several, or all KUMA tenants. If Kaspersky Security Center integration is enabled, you can import information about the assets protected by this application, manage assets using tasks, and import events from the Kaspersky Security Center event database.
First, you need to make sure that the relevant Kaspersky Security Center server allows an incoming connection for the server hosting KUMA.
Configuring KUMA integration with Kaspersky Security Center includes the following steps:
The credentials of this account are used when creating a secret to establish a connection with Kaspersky Security Center.
The secret (account role in Kaspersky Security Center) for integrating KUMA with Kaspersky Security Center must be created with consideration of how the hierarchy of the Administration Server is organized (availability of virtual servers, server administration features, etc) and types of devices that the Administration Server will manage (OS, type: servers, mobile devices, etc). All these nuances are regulated and configured on the Kaspersky Security Center side.
The following actions can be performed in KUMA on assets from Kaspersky Security Center:
To be able to perform the actions listed above, you can use a predefined account in Kaspersky Security Center with the Main Administrator role. In this case, you do not need to add permissions manually.
You can also use the "Kaspersky Endpoint Security Administrator" predefined role in Kaspersky Security Center, but in that case, you must additionally grant access to the following functionality:
Some additional permissions may be required depending on the configuration of Kaspersky Security Center.
Minimum permissions for integration with Kaspersky Security Center:
- "Access objects regardless of their ACLs" allows you to import Kaspersky Security Center assets into KUMA.
- "Management of administration groups" allows you to move assets between groups in Kaspersky Security Center from the KUMA interface.
- "Basic functionality" allows you to create and run tasks on Kaspersky Endpoint Security hosts.
For more details about creating a user account and assigning permissions to a user, please refer to the Kaspersky Security Center Help Guide.
If you want to import information about assets registered on Kaspersky Security Center servers into KUMA, you need to create a separate connection to each Kaspersky Security Center server for each selected tenant.
If integration is disabled for the tenant or there is no connection to Kaspersky Security Center, an error is displayed in the KUMA web interface when attempting to import information about assets. In this case, the import process does not start.