Contents
- How to manage the application
- How to manage the application using the command line
- How to enable autocomplete of the kfl-control command (bash completion)
- How to manage tasks using the command line
- How to view the list of tasks on the command line
- How to view the status of a task on the command line
- How to create a task on the command line
- How to start, stop, pause, and resume a task on the command line
- How to delete a task on the command line
- How to output task settings to the console or into a configuration file
- How to manage task settings on the command line
- How to configure the task schedule on the command line
- How to manage general application settings on the command line
- How to filter query results on the command line
- How to export and import application settings on the command line
- How to manage user roles
- How to manage the application using the application interface
- How to manage the application using the command line
How to manage the application
To use the Kaspersky app, you need to have basic knowledge of Alt, RED OS, Ubuntu or Uncom (depending on which of these operating systems is installed on your device). We recommend familiarizing yourself with the official documentation, which will introduce you to the basic principles of managing the operating system:
To manage the Kaspersky application, you can use:
- The command line
- The application interface
The set of actions that you can perform using the interface of the Kaspersky application is limited.
How to manage the application using the command line
Using the command line, you can install, remove, start, and stop the Kaspersky application on the device, and also manage the application locally.
The functional components of the application are supported by Kaspersky local tasks that run in the operating system. You can enable or disable functional components of the application on a device by starting or stopping Kaspersky tasks on the command line. One-time device scans are also performed by starting Kaspersky tasks. You can configure the functional components on the device and specify device scan settings by editing Kaspersky task settings.
In addition to the task settings, the following settings are provided for configuring the application:
- Encrypted connections scan settings.
- General application settings that define the operation of the application as a whole and the operation of individual functions.
You can manage the Kaspersky application on the command line using management commands.
How to enable autocomplete of the kfl-control command (bash completion)
You can enable autocompletion for the kfl-control command in bash.
To enable autocompletion of kfl-control commands in the current bash session, run the following command:
source /opt/kaspersky/kfl/shared/bash_completion.sh
To enable autocomplete for all new bash sessions, run the following command:
echo "source /opt/kaspersky/kfl/shared/bash_completion.sh" >> ~/.bashrc
How to manage tasks using the command line
The following application tasks are provided for managing the Kaspersky application on the command line:
- File Threat Protection. This task allows you to enable or disable File Threat Protection in real time and defines the settings for the File Threat Protection component. The task starts automatically when the application starts.
- Malware Scan. This task allows you to scan file system objects for malware on demand and defines the settings for the scan. You can use this task to perform a full or custom scan of the device.
- Critical Areas Scan. This task allows you to run a critical areas scan of the operating system on demand and defines the settings for the scan.
- Custom file scan. This task is designed for configuring and storing settings that are used when scanning the specified files and directories using the
kfl-control --scan-filecommand. As a result of the command execution, the application creates and starts a temporary file scan task. - Removable Drives Scan. This task allows you to monitor the connection of removable media to the device in real time and defines the settings of the Removable Drives Scan and the scan of its boot sectors for malware.
- Web Threat Protection. This task allows you to enable or disable Web Threat Protection and defines the settings for the Web Threat Protection component.
- Behavior Detection. This task allows you to monitor malicious activity of applications in the operating system. The task starts automatically when the Kaspersky application starts.
- Licensing. This task provides the capability to activate an application installed on the device. The task starts automatically when the application starts, and it resides in the device operating memory. The task has no settings; license keys are managed using special management commands. The task cannot be started, stopped, or deleted.
- Update. You can use this task to perform scheduled and on-demand application database and module updates and edit update settings.
- Rollback. You can use this task to roll back the last update of application databases and modules.
Each application task has a name used on the command line, an ID, and a type (see the table below).
IDs are unique for all tasks, including deleted tasks. The application does not reuse the identifiers of the deleted tasks. The identifier of a new task is the next successive number to the identifier of the latest created task.
Task names are not case-sensitive.
During installation of the application, predefined tasks are created. These tasks cannot be deleted. Each predefined task has a name and ID.
Tasks that you create while working with the application are called user tasks. When you create the task, you specify the name for it. IDs for user tasks are defined and assigned by the application when the task is created. IDs for user tasks are starting from 100.
During operation, the application creates temporary scan tasks. Temporary task names and IDs are assigned by the application. Temporary tasks are automatically deleted when completed.
Application tasks
Task |
Task name in command line |
Task ID |
Task type |
|---|---|---|---|
File_Threat_Protection |
1 |
OAS |
|
Scan_My_Computer |
2 |
ODS |
|
Malware Scan (user task) |
user-defined |
starting from 100 |
ODS |
Scan_File |
3 |
ODS |
|
Critical_Areas_Scan |
4 |
ODS |
|
Update |
6 |
Update |
|
Update (user task) |
user-defined |
starting from 100 |
Update |
Rollback |
7 |
Rollback |
|
Rollback (user task) |
user-defined |
starting from 100 |
Rollback |
Licensing |
License |
9 |
License |
Web_Threat_Protection |
14 |
WTP |
|
Removable_Drives_Scan |
16 |
RDS |
|
Behavior_Detection |
20 |
BehaviorDetection |
You can perform the following actions with tasks:
- Start and stop all preset and custom tasks except tasks of the License type.
- Pause and resume ODS tasks.
- Create and delete user tasks. You can create tasks of the following types: ODS, Update, Rollback.
- Change the settings for all user tasks and all predefined tasks, except for Rollback and License tasks.
- Configure the task start schedule.
How to view the list of tasks on the command line
To view the list of application tasks, execute the following command:
kfl-control --get-task-list [--json]
where:
--json – output format for the list of application tasks. If a file format is not specified, the output will be an INI file.
The list of Kaspersky tasks is displayed.
The following information will be displayed for each task:
Name: the task nameID: the task IDType: the task typeState: the current state of the task
How to view the status of a task on the command line
To view a task state, execute the following command:
kesl-control --get-task-state <task ID/name> [--json]
where:
<task ID/name>is the ID assigned to the task at the time of its creation, or the name of the task in the command line.--jsonis specified to output the settings in JSON format.
Application tasks can take the following main states:
Started—Task is running.Starting—Task is being launched.Stopped—Task has been stopped.Stopping—Task is stopping.
ODS tasks can also have one of the following states:
Pausing— Task is pausing.Suspended— Task is suspended.Resuming— Task is resuming.
How to create a task on the command line
You can create tasks of the following types: ODS, Update, and Rollback.
You can create tasks with default settings or with settings specified in a configuration file.
To create a task with default settings, execute the following command:
kfl-control --create-task <task name> --type <task type>
where:
<task name>is the name that you specify for the new task.<task type>is the identifier for the type of the created task.
To create a task with the settings specified in the configuration file, execute the following command:
kfl-control --create-task <task name> --type <task type> --file <configuration file path> [--json]
where:
<task name>is the name that you specify for the new task.<task type>is the identifier for the type of the created task.<path to file>is the full path to the configuration file with the settings that will be used for creating the task.--jsonis specified to import the settings from the configuration file in JSON format. If the--jsonoption is not specified, the application attempts to import from an INI file. If the import fails, an error is displayed.
How to start, stop, pause, and resume a task on the command line
You can start and stop predefined and user tasks, except for tasks of the License type.
You can pause and resume ODS tasks.
To start a task, execute the following command:
kfl-control --start-task <task ID/name> [-W] [--progress]
where:
<task ID/name>is the ID assigned to the task at the time of its creation, or the name of the task in the command line.[-W]is a command used in conjunction with the task start command to enable the display of current events associated with this task.- Specify the
[--progress]option if you want to display the progress of the task.Example:
Start the task with ID 1 and enable the display of current events associated with the task:
kfl-control --start-task 1 -W
To stop a task, execute the following command:
kfl-control --stop-task <task ID/name> [-W]
where:
<task ID/name>is the ID assigned to the task at the time of its creation, or the name of the task in the command line.[-W]is a command used in conjunction with the stop task command to enable the display of current events associated with this task.
To suspend a task, execute the following command:
kfl-control --suspend-task <task ID/name>
To resume a task, execute the following command:
kfl-control --resume-task <task ID/name>
How to delete a task on the command line
You can delete only user tasks. Predefined tasks cannot be deleted.
To delete a task, execute the following command:
kfl-control --delete-task <task ID/name>
where <task ID/name> is the ID assigned to the task at the time of its creation, or the name of the task in the command line.
How to output task settings to the console or into a configuration file
You can display the current values of settings for all user tasks and all predefined tasks, except for Rollback and License tasks (these tasks have no settings).
You can output the current values of task settings to the console or to a configuration file that you can use to change task settings.
To output the current values of task settings to the console, execute the following command:
kfl-control --get-settings <task ID/name> [--json]
where:
<task ID/name>is the ID assigned to the task at the time of its creation, or the name of the task in the command line.--jsonis specified to output the settings in JSON format. If the--jsonoption is not specified, the settings are output in the INI format.
To output the current values of task settings to a configuration file, execute the following command:
kfl-control --get-settings <task ID/name> --file <configuration file path> [--json]
where:
<task ID/name>is the ID assigned to the task at the time of its creation, or the name of the task in the command line.--file <configuration file path>is the path to the configuration file into which the task settings will be written. If you specify the name of a file without its path, the file will be created in the current directory. If a file already exists in the specified path, it will be overwritten. If the specified directory does not exist, the configuration file will not be created.--jsonis specified to output the settings in JSON format. If the--jsonoption is not specified, the settings are output in the INI format.
How to manage task settings on the command line
You can edit the settings for all user tasks and all predefined tasks, except for Rollback and License tasks.
On the command line, you can edit the settings of tasks using the kfl-control --set-settings command:
- You can edit all task settings using the configuration file that contains the task settings. You can get the configuration file using the command for displaying task settings.
- You can edit individual task settings on the command line in the
<setting name>=<setting value>format. You can get the current values of task settings using the command for displaying task settings. - You can restore the task settings to their default values.
You can add or remove scan scopes and exclusion scopes using a configuration file that contains task settings or command line options. Configuring scan scopes and exclusion scopes is available for tasks of the OAS and ODS types.
In order to optimize the operation of scan tasks, it is recommended to add the path with snapshots mounted by the system in the read-only mode to the exclusions for the systems with the btrfs file system and enabled active snapshots. For example, for the systems based on SUSE/OpenSUSE, you can add the following exclusion for the path: /.snapshots/*/snapshot/.
For some tasks, separate management commands are also provided that allow you to edit task settings.
How to modify task settings using a configuration file:
To edit values of task settings using a configuration file:
- Output the task settings to the configuration file:
kfl-control --get-settings - Open the configuration file and edit the values of the necessary settings.
For tasks whose type is OAS or ODS, you can add or remove scan scopes and exclusion scopes.
If you want to add a scan scope, add a
[ScanScope.item_#]section with the following settings to the file:AreaDescis a description of the scan scope, which contains additional information about this scope.UseScanAreaenables scanning of the specified scope.Pathis a path to the directory with the objects to be scanned. You can specify a path to a local directory or enable scanning of remote directories mounted on a client device.AreaMask.item_#is a limitation of the scan scope. You can specify a mask for the name of the files to be scanned. Scanning is enabled by default for all objects in the scan scope. You can specify multipleAreaMask.item_#items.
If you want to add an exclusion scope, add an
[ExcludedFromScanScope.item_#]section with the following settings to the file:AreaDesc– a description of the exclusion scope, which contains additional information about the exclusion scope.UseScanAreaenables exclusion of the specified scope.Pathis a path to the directory with the objects to be excluded. You can specify a path to a local directory or exclude remote directories mounted on a client device. Possible values for the setting depend on the type of task.AreaMask.item_#is a limitation of the exclusion scope. You can specify a mask for the name of the files that you want to exclude from the scan scope. By default, all objects in the scope are excluded.Example:
[ExcludedFromScanScope.item_0000]AreaDesc=UseScanArea=YesPath=/tmp/notcheckedAreaMask.item_0000=*
You can specify multiple
[ScanScope.item_#]and[ExcludedFromScanScope.item_#]sections. The application processes the scopes by index in ascending order. - Save the configuration file.
- Execute the command:
kfl-control --set-settings <task ID/name> --file <configuration file path> [--json]where:
<task ID/name>is the ID assigned to the task at the time of its creation, or the name of the task in the command line.--file <configuration file path>is the full path to the configuration file from which the task settings will be imported.- Specify the
--jsonoption if you are importing settings from a JSON configuration file. If the--jsonoption is not specified, the application attempts to import from an INI file. If the import fails, an error is displayed.
All values of task settings defined in the file will be imported into the application.
Page topHow to modify task settings using command line options:
You can use the kfl-control --set-settings command to modify individual task settings, as well as add or remove scan scopes and exclusion scopes for tasks of the following types: OAS and ODS.
Configuring individual task settings
To modify individual values of task settings using command line options, run the following command:
kfl-control --set-settings <task ID/name> <setting name>=<setting value> [<setting name>=<setting value>]
where:
<task ID/name>is the ID assigned to the task at the time of its creation, or the name of the task in the command line.<setting name>=<setting value>is the name and value of one of the task settings. You can get the current values of task settings using the command for displaying task settings.
The values of the specified task settings will be changed.
Adding and removing a scan scope
To add a scan scope using command line options, run the following command:
kfl-control --set-settings <task ID/name> --add-path <path>
where:
<task ID/name>is the ID assigned to the task at the time of its creation, or the name of the task in the command line.--add-path <path>adds the path to the directory with the objects to be scanned.
A new [ScanScope.item_#] section will be added to the task settings. The application scans the objects in the directory specified by the Path setting. The remaining settings of the scan scope take default values.
If the task settings already contain a [ScanScope.item_#] section with the specified value for the Path setting, a duplicate section is not added.
If the UseScanArea setting is set to No its value will change to Yes after this command is executed and the objects located in this directory will be scanned.
Example: Adding a scan scope for a task with ID=100:
The following scan scope settings will be added to the task:
|
To delete a scan scope using command line options, run the following command:
kfl-control --set-settings <task ID/name> --del-path <path>
where:
<task ID/name>is the ID assigned to the task at the time of its creation, or the name of the task in the command line.--del-path <path>deletes the path to the directory with the objects to be scanned.
The [ScanScope.item_#] section that contains the specified path will be deleted from the task settings. The application will not scan the objects in the specified directory.
Adding and removing an exclusion scope
To add an exclusion scope using command line options, run the following command:
kfl-control --set-settings <task ID/name> --add-exclusion <path>
where:
<task ID/name>is the ID assigned to the task at the time of its creation, or the name of the task in the command line.--add-exclusion <path>adds the path to the directory with the objects that you want to exclude from the scan.
A new [ExcludedFromScanScope.item_#] section will be added to the task settings. The application will exclude objects in the directory specified by the Path setting from scans. The remaining settings of the exclusion scope take default values.
If the task settings already contain an [ExcludedFromScanScope.item_#] section with the specified value for the Path setting, a duplicate section is not added.
If the UseScanArea setting is set to No its value will change to Yes after this command is executed and the objects located in this directory will be excluded from scans.
To delete an exclusion scope using command line options, run the following command:
kfl-control --set-settings <task ID/name> --del-exclusion <path>
where:
<task ID/name>is the ID assigned to the task at the time of its creation, or the name of the task in the command line.--del-exclusion <path>deletes the path to the directory with the objects to be excluded.
The [ExcludedFromScanScope.item_#] section that contains the specified path will be deleted from the task settings. The application will not exclude the objects in the specified directory from the scan.
How to restore default task settings on the command line
You can restore the default settings for all user tasks and all predefined tasks, except for tasks of the Rollback and License types (these tasks have no settings).
To reset task settings to their default values, execute the following command:
kfl-control --set-settings <task ID/name> --set-to-default
where <task ID/name> is the ID assigned to the task at the time of its creation, or the name of the task in the command line.
The application changes the setting values to their defaults.
How to configure the task schedule on the command line
You can configure a schedule for the following types of tasks: ODS, Update, and Rollback.
You can output the current values of the settings for the task run schedule to the console or to a configuration file.
To output the current settings for the task run schedule to the console, execute the following command:
kfl-control --get-schedule <task ID/name> [--json]
where:
<task ID/name>is the ID assigned to the task at the time of its creation, or the name of the task in the command line.--jsonis specified to output the settings in JSON format. If the--jsonoption is not specified, the settings are output in the INI format.
To output the current settings for the task run schedule to a configuration file, execute the following command:
kfl-control --get-schedule <task ID/name> --file <configuration file path> [--json]
where:
<task ID/name>is the ID assigned to the task at the time of its creation, or the name of the task in the command line.--file <path to configuration file>is the path to the configuration file in which the settings for the task run schedule will be output. If you specify the name of a file without its path, the file will be created in the current directory. If a file already exists in the specified path, it will be overwritten. If the specified directory does not exist, the configuration file will not be created.--jsonis specified to output the settings in JSON format. If the--jsonoption is not specified, the settings are output in the INI format.Examples:
Save the update task settings to a file named update_schedule.ini and save the created file in the current directory:
kfl-control --get-schedule 6 --file update_schedule.iniDisplay the update task schedule in the console:
kfl-control --get-schedule 6
You can edit the settings for the task run schedule in the following ways:
- Import the settings from a configuration file that contains all schedule settings.
- Using the command line, specify the individual settings for the task run schedule in the format
<setting name>=<setting value>.
To edit the values of the settings for task run schedule using a configuration file, perform the following actions:
- Output the task settings to the configuration file:
kfl-control --get-schedule - Edit the values of the necessary settings in the file and save the changes.
- Execute the command:
kfl-control --set-schedule <task ID/name> --file <configuration file path> [--json]where:
<task ID/name>is the ID assigned to the task at the time of its creation, or the name of the task in the command line.--file <configuration file path>is the full path to the configuration file from which the task schedule settings will be imported.--json: specify this option if you are importing settings from a configuration file in JSON format. If the--jsonoption is not specified, the application attempts to import from an INI file. If the import fails, an error is displayed.
All values of the settings for the task run schedule defined in the file will be imported into the application.
Example: Import the schedule settings from the configuration file named /home/test/on_demand_schedule.ini into the task with ID=2:
|
To edit the individual values of the settings for the task run schedule using the command line, execute the following command:
kfl-control --set-schedule <task ID/name> <setting name>=<setting value> [<setting name>=<setting value>]
where:
<task ID/name>is the ID assigned to the task at the time of its creation, or the name of the task in the command line.<setting name>=<setting value>is the name and value of one of the settings for the task schedule.
The values of the specified settings for the task run schedule are modified.
Examples: To schedule the task to start every ten hours, specify the following settings:
To schedule the task to start every ten minutes, specify the following settings:
To schedule the task to start on the 15th of every month, specify the following settings:
To schedule the task to start on every Tuesday, specify the following settings:
To schedule the task to start every 11 days, specify the following settings:
|
How to manage general application settings on the command line
General application settings define the operation of the application as a whole and the operation of individual functions.
You can manage general application settings using special management commands:
- Output the current values of general application settings to the console or to a configuration file.
- Edit general application settings using a configuration file containing all general settings, or using command line options in the
<setting name>=<setting value>format.
Using general settings, you can:
- Configure Kaspersky Security Network for the application.
- Configure the use of a proxy server in the application.
- Select the file operation interception mode (block/do not block files during a scan).
- Configure exclusions from the mount points scan (global exclusions).
- Configure exclusions from the process memory scan.
- Enable or disable the detection of legitimate applications that intruders can use to compromise devices or data.
- Configure the use of event logs.
- Configure a limit on CPU resource usage by scan tasks (of the ODS type).
- Limit the number of user scan tasks that a non-privileged user can start simultaneously.
- Configure Backup settings.
How to output general application settings to the console or into a configuration file
You can output the current values of general application settings to the console or to a configuration file that you can use to edit task settings.
To output the current values of general application settings to the console, execute the following command:
kfl-control --get-app-settings [--json]
where --json is specified to output the settings in JSON format. If the --json option is not specified, the settings are output in the INI format.
To output the current values of general application settings to a configuration file, execute the following command:
kfl-control --get-app-settings --file <configuration file path> [--json]
where:
--file <configuration file path>is the path to the configuration file into which general settings of the application will be written. If you specify the name of a file without its path, the file will be created in the current directory. If a file already exists in the specified path, it will be overwritten. If the specified directory does not exist, the configuration file will not be created.--jsonis specified to output the settings in JSON format. If the--jsonoption is not specified, the settings are output in the INI format.Example:
Display the general application settings to a file named kfl_config.ini. Save the created file in the current directory:
kfl-control --get-app-settings --file kfl_config.ini
How to modify general application settings on the command line
On the command line, you can edit the general application settings by using the kfl-control --set-app-settings command:
- You can edit all general settings using the configuration file that contains the general application settings. You can get the configuration file using the command for displaying general settings.
- You can edit individual settings using command line options in the
<setting name>=<setting value>format. You can get the current values of general application settings using the command for displaying general settings.
To edit values of general application settings using a configuration file:
- Output the general application settings to a configuration file.
- Edit the values of the necessary parameters in the file and save the changes.
- Execute the command:
kfl-control --set-app-settings --file <configuration file path> [--json]where:
--file <path to configuration file>is the full path to the configuration file with the general application settings. If you delete any parameter in the configuration file, the default value for that parameter will be displayed after the command is executed.--json: specify this option if you are importing settings from a configuration file in JSON format. If the--jsonoption is not specified, the application attempts to import from an INI file. If the import fails, an error is displayed.
All the values of the general settings defined in the file will be imported into the application.
To edit general application settings using command line options, execute the following command:
kfl-control --set-app-settings <setting name>=<setting value> [<setting name>=<setting value>]
where <setting name>=<setting value> is the name and value of one of the general application settings.
The values of the specified general settings will be changed.
Examples: Import general settings into the application from the /home/test/kfl_config.ini configuration file:
Set the detail level for the trace file to low:
Add a mount point that you want to exclude from interception of file operations:
|
How to filter query results on the command line
You can use a filter to restrict the query results when running application control commands.
Filter conditions are specified using one or more logical expressions, which are combined using the logical operator and. Filter conditions must be enclosed in quotation marks:
"<field> <comparison operator> '<value>'"
"<field> <comparison operator> '<value>' and <field> <comparison operator> '<value>'"
where:
<field>is the name of the field for the database.<comparison operator>is one of the following comparison operators:>is "greater than"<is "less than"likematches the specified value When specifying a value, you can use % masks: for example, the logical expression "FileName like '%etc%'" sets the limitation "contains the text "etc" in the FileName field"==is "equal to"!=is "not equal to">=is "greater than or equal to"<=is "less than or equal to"
<value>is the value of the field. The value must be enclosed in single quotation marks (').You can specify a date value in UNIX time (the number of seconds that have elapsed since 00:00:00 (UTC), January 1, 1970) or in YYYY-MM-DD hh:mm:ss format. The user specifies the date and time in the user's local time zone, and the application displays them in the same time zone.
You can use a filter in the following application management commands:
- Display information about certain current events of the application:
kfl-control -W --query "<filter conditions>" - Display information about certain application events in the event log:
kfl-control -E --query "<filter conditions>" - Output information about certain objects in Backup:
kfl-control -B --query "<filter conditions>" - Delete certain objects from Backup:
kfl-control -B --mass-remove --query "<filter conditions>"Examples:
Get information about events that contain the text "etc" in the FileName field:
kfl-control -E --query "FileName like '%etc%'"Display information about events with the ThreatDetected type:
kfl-control -E --query "EventType == 'ThreatDetected'"Display information about events with the ThreatDetected type, created by tasks of the ODS type:
kfl-control -E --query "EventType == 'ThreatDetected' and TaskType == 'ODS'"Get information about the events generated after the date specified in the UNIX time stamp system (the number of seconds that have elapsed since 00:00:00 (UTC), 1 January 1970):
kfl-control -E --query "Date > '1583425000'"Get information about the events generated after the date specified in YYYY-MM-DD hh:mm:ss format:
kfl-control -E --query "Date > '2022-12-22 18:52:45'"Get information about files in the Backup storage that have the High severity level:
kfl-control -B --query "DangerLevel == 'High'"
How to export and import application settings on the command line
The Kaspersky application allows exporting and importing all application settings for troubleshooting, checking settings, or reusing settings on devices of other users. When exporting settings, all application settings (including encrypted connections scan settings, general application settings, and task settings) are saved in a configuration file. You can use this configuration file to import settings into the application.
The application must be launched when settings are imported or exported. After the settings are imported, the application must be restarted.
To export the application settings, execute the following command:
kfl-control --export-settings --file <configuration file path> [--json]
where:
--file <configuration file path>is the full path to the configuration file where the application settings will be saved.--jsonis specified to export the settings to the configuration file in JSON format. If the--jsonoptions is not specified, the settings will be exported to an INI file.
To import the application settings from the file, execute the following command:
kfl-control --import-settings --file <configuration file path> [--json]
where:
--file <configuration file path>is the full path to the configuration file from which you want to import settings into the application.--jsonis specified to import the settings from the configuration file in JSON format. If the--jsonoption is not specified, the application attempts to import from an INI file. If the import fails, an error is displayed.
When you import application settings from a file, UseKSN is set to Yes.
After application settings are imported, internal task IDs may change. It is recommended to use task names to manage tasks.
How to manage user roles
Access to the functionality of the Kaspersky application on the command line depends on the user's role.
A role is a set of rights and privileges for managing the application.
Three user groups are created in the operating system: kfladmin, kfluser, and nokfl. When you assign an application role to a system user, the user is added to the corresponding group (see the Roles table below). When you revoke a role from a user, this user is removed from the corresponding group.
If no application role is assigned to a system user, that user belongs to a separate group of users without rights.
Thus, the roles correspond to the three groups of operating system users:
- kfladmin corresponds to the Administrator role.
- kfluser corresponds to the User role.
- nokfl is assigned to a user if no other roles are assigned. In this case, the user belongs to a separate group of users without privileges
User roles
Role name
Role in application
OS user group
Permissions
Administrator
admin
kfladmin
Managing application settings and task settings in the graphical interface of the application and on the command line without using the
sudocommand.Manage application licensing.
Assigning roles to users.
Revoking user roles (the administrator has no right to revoke the admin role from himself).
View and manage users' Storages.
User
user
kfluser
Manage only user file scan tasks.
Start and stop Update tasks.
View reports for the tasks created by this user.
View specific events that are common for all application users.
—
—
nokfl
No role is assigned in the application, no permissions.
How to view the list of users and roles on the command line
To view a list of users and their roles, run the following command on the command line:
kfl-control [-U] --get-user-list
How to assign a role to a user on the command line
To assign a role to a specific user, execute the following command:
kfl-control [-U] --grant-role <role> <user>
Example: To assign the audit role to the user test15:
|
How to revoke a role from a user on the command line
To revoke a role from a specific user, execute the following command:
kfl-control [-U] --revoke-role <role> <user>
Example: To revoke the audit role from the user test15:
|
How to manage the application using the application interface
The Kaspersky application interface lets you:
- View information about device protection status.
- Enable and disable application components:
- Start and stop scan tasks:
- Start and stop database update and rollback tasks.
- Run a custom scan of files and directories.
- Enable and disable Kaspersky Security Network.
- View application statistics and reports.
- Manage application license keys and view information about the license under which the application is being used as well as the key associated with the license.
- View information about objects placed in Backup.
- Create application trace files.
The Kaspersky application interface does not let you:
- Manage user ODS tasks.
- Edit task and component settings.
If an application component or task is running in
, the application interface displays the "Notify only" mode selected warning for the component or task.Application interface
Application icon in the notification area
After the Kaspersky application is installed on the device, the application icon appears in the notification area on the right side of the taskbar.
The application icon acts as a shortcut to the context menu and the main application window.
The context menu of the application icon contains the following items:
- Kaspersky for Linux. Opens the main application window, which displays the protection status of a device and contains interface elements that provide access to the application functions.
- Exit. Exits the application interface.
Main application window
To open the main application window, perform one of the following actions:
- Right-click or double-left-click the application icon in the notification area of the taskbar.
- Select the application name in the application menu of the operating system window manager.
The main application window is divided into several parts:
- The central part of the main application window displays the protection status of the device. Clicking this part of the window opens the Protection Center window. This window displays information about the protection status of a device and recommendations on the actions to be performed to fix protection problems (if any).
- The Scan button displays the Malware Scan task status and the number of detected threats. Clicking this button opens the Scan window. In this window, you can start and stop the Malware Scan and Critical Areas Scan tasks. Also, you can view reports for these tasks.
- The Update button displays the status of the Update task. Clicking this button opens the Update window. In this window, you can start the Update and Rollback tasks. Also, you can view reports for these tasks.
- The lower part of the main application window contains the following elements:
- Reports button. Clicking this button opens the Reports window, where you can view component and task statistics as well as various reports on the operation of components and tasks.
- Backup button. Clicking this button opens the Backup window, which contains information about objects in Backup.
- Settings button. Clicking this button opens the Settings window, where you can enable or disable application components and configure the use of the Kaspersky Security Network.
- Support button. Clicking this button opens the Support window, which displays the current version of the application and the following information:
- License key – the active license key added to the application, or a message that no key has been added. The link in this field opens the Licenses window, which displays detailed license information.
- Key status – information about the status of the active license key, or a message that no key has been added.
- Database release date – status and release date of the application databases.
- Operating system – information about the operating system of the device.
The following links are displayed at the bottom of the Support window:
- The Forum link which takes you to the Kaspersky forum.
- The License link which opens the Licenses window.
In the Licenses window, you can view license information, manage subscriptions, and add or remove license keys.
- The Tracing link which opens the Tracing window.
In the Tracing window, you can create application trace files and configure the level of detail of the trace files.
- The lower part of the main application window displays information about the license and the key, as well as about licensing problems (if any). Clicking on this area of the window opens the Licenses window, which displays detailed license information.
Clicking the Buy button in this window opens the Kaspersky online store, where you can purchase a license. After purchasing a license, you will receive an activation code, which you will need to use to activate the application.
How to enable and disable application components in the application interface
You can use the application interface to enable or disable application components. If the component is enabled, the Disable button is available. By default, File Threat Protection and Behavior Detection components are enabled. The Web Threat Protection component may be enabled automatically if one of the supported browsers is detected in the system.
If a component is disabled, the Enable button will be available.
To enable or disable an application component:
- Open the main application window.
- In the lower part of the main application window, click the Settings button.
The Settings window opens.
- Click Enable or Disable for the component.
How to start and stop tasks in the application interface
To start or stop a scan task:
- Open the main application window.
- In the main application window, click Scan.
The Scan window will open.
- Do one of the following:
- To start a scan task, click the Start button under the scan task that you want to start.
The progress of the running scan task is displayed.
- To stop a scan task, click the Stop button under the scan task that you want to stop.
The scan task stops, and information about the scanned objects and detected threats is displayed.
- To start a scan task, click the Start button under the scan task that you want to start.
- To view the report on the scan task, click the Show report button.
When an infected object is detected or the scan task is completed, a pop-up window appears in the notification area near the application icon on the right side of the taskbar.
The Scan window also displays the progress and results of temporary boot sector scan tasks (Scan_Boot_Sectors_{ID}) and temporary custom file scan tasks (Scan_File_{ID}). You can hide information about temporary tasks that are already completed by clicking the cross or by closing the Scan window (when switching to the main window or when exiting the application).
Page top