Kaspersky Lab Patio Umbrella Administration Kit 6 0 Users Manual Kasp6.0_ak_deployguid_EN_MP1

2015-02-09

: Kaspersky-Lab Kaspersky-Lab-Kaspersky-Lab-Patio-Umbrella-Kaspersky-Administration-Kit-6-0-Users-Manual-567617 kaspersky-lab-kaspersky-lab-patio-umbrella-kaspersky-administration-kit-6-0-users-manual-567617 kaspersky-lab pdf

Open the PDF directly: View PDF .
Page Count: 104

Download
Open PDF In Browser	View PDF

KASPERSKY LAB

Kaspersky® Administration Kit 6.0

Deployment Guide

KASPERSKY® ADMINISTRATION KIT 6.0

Deployment Guide

Kaspersky Lab Ltd.
Visit our website: http://www.kaspersky.com/
Revision date: February 2007.

Contents
CHAPTER 1. KASPERSKY® ADMINISTRATION KIT .................................................. 5
1.1. Purpose, structure and main functions ................................................................. 5
1.2. Software and Hardware Requirements ................................................................ 7
1.3. Distribution kit ........................................................................................................ 9
1.4. Help desk for registered users .............................................................................. 9
1.5. The purpose of this document .............................................................................. 9
1.6. Conventions......................................................................................................... 10
CHAPTER 2. TYPICAL SCHEMES OF DEPLOYMENT OF ANTI-VIRUS
PROTECTION............................................................................................................ 11
2.1. Schemes of deployment of anti-virus protection on the computers within the
logical network ................................................................................................... 11
2.2. Building a centralized anti-virus protection administration system .................... 12
CHAPTER 3. INSTALLING KASPERSKY ADMINISTRATION KIT ........................... 14
3.1. Installing MSDE from the Kaspersky Administration Kit distribution package .. 15
3.2. Installing the Administration Server and Administration Console on Local
Host .................................................................................................................... 17
3.3. Removing Kaspersky Administration Kit components ....................................... 33
3.4. Updating the application version......................................................................... 33
CHAPTER 4. INSTALLATION AND REMOVAL OF SOFTWARE ON THE
COMPUTERS ............................................................................................................ 35
4.1. Remote software installation............................................................................... 36
4.1.1. Creating an installation package .................................................................. 37
4.1.2. Reviewing and configuring the installation package settings...................... 40
4.1.3. Creating and configuring the Network Agent installation package ............. 45
4.1.4. Creating and Configuring Administration Server Installation Package....... 49
4.1.5. Creating a task for distribution of the installation package on the slave
Administration Servers.................................................................................. 49
4.1.6. Distribution of the installation packages within a group using network
agents............................................................................................................ 51

Kaspersky® Administration Kit

4.1.7. Creating a remote installation task............................................................... 53
4.1.8. Configuring the deployment task.................................................................. 66
4.1.9. Deploying application to slave administration servers................................. 68
4.1.10. Remote software removal .......................................................................... 70
4.2. Deployment wizard.............................................................................................. 71
4.3. Local software installation ................................................................................... 75
4.3.1. Local installation of the Network Agent........................................................ 76
4.3.2. Local installation of the application administration plugin............................ 81
4.3.3. Installing applications in non-interactive mode ............................................ 82
APPENDIX A. GLOSSARY........................................................................................... 84
APPENDIX B. KASPERSKY LAB................................................................................. 91
B.1. Other Kaspersky Lab Products .......................................................................... 92
B.2. Contact Us........................................................................................................... 98

CHAPTER 1. KASPERSKY®
ADMINISTRATION KIT
1.1. Purpose, structure and main
functions
Kaspersky® Administration Kit is an application that is designed to provide a
centralized solution for most important administration tasks associated with
managing the corporate network anti-virus security system based on Kaspersky
Lab’s applications included into Kaspersky Anti-Virus Business Optimal and
Kaspersky Corporate Suite. Kaspersky Administration Kit supports all network
configurations that use TCP/IP protocol.
Kaspersky Administration Kit is a tool for corporate network administrators and
anti-virus security officers.
The application enables the administrator to:
•

Deploy or remove Kaspersky Lab applications across a network connection to computers within the network. This feature enables the administrator to copy the required set of Kaspersky Lab's applications to a selected
computer and then deploy these applications on the network computers.

•

Ensure remote centralized management of Kaspersky Lab applications.
This feature enables the administrator to create a multi-level anti-virus
protection system and manage the operation of all applications from a
single administrator's workstation. This is particularly important for larger
companies that have a local network consisting of a large number of
computers that may cover several separate buildings or offices. This feature enables the administrator to:
•

group computers into administration groups based on the functions performed by such computers and the set of applications
installed on them;

•

configure the application settings in a centralized way by creating and applying group policies;

•

configure individual settings of the application for individual
computers using the application settings.

•

manage the operation of the applications in a centralized way
by creating and running group and global tasks.

Kaspersky® Administration Kit

•

create individual patterns for the application's operation by
creating and running tasks for a set of computers from different
administration groups.

•

Automatically update the anti-virus database and application modules on
computers. This feature allows centralized updating of the anti-virus database for all installed Kaspersky Lab's applications without accessing the
Kaspersky Lab's internet updates server for each individual update. The
updating can be performed automatically according to the schedule set up
by the administrator. The administrator can monitor the installation of the
updates on the client computers.

•

Receive reports using a dedicated system. This feature allows centralized
collection of statistical information about the operation of all installed
Kaspersky Lab's applications, monitoring the correctness of the operation
of these applications and creating reports based on the information obtained. The administrator can create a cumulative network report about
the operation of an application or reports about the operation of application installed on each computer.

•

Use events notification system. Mail notification sending system. This feature allows the administrator to create a list of events in the operation of
the applications about which he or she will receive notifications. The list of
such event may, for example, include detection of a new virus or an error
that occurred when attempting to update the anti-virus database on a
computer, detection of a new computer in the network.

•

Perform license management. This capability supports centralized installation of license keys for all installed enterprise applications, tracking of
compliance with the license agreement (number of licenses should correspond to number of running applications) and license agreement expiration date.

•

Cooperate with Cisco Network Admission Control (NAC). This functionality provides a mapping between host antivirus protection conditions and
Cisco NAC statuses.

Kaspersky Administration Kit application consists of three main components:
•

Administration server performs the function of centralized storage of information about Kaspersky Lab's applications installed in the corporate
network and about managing such applications.

•

Network Agent coordinates the interaction between the Administration
Server and Kaspersky Lab's applications installed on a specific network
node (a workstation or a server). This component supports all Windowsapplications included in the Kaspersky Lab Business Optimal and

Kaspersky® Administration Kit

Kaspersky Corporate Suites. Separate versions of Administration Agent
exist for Kaspersky Lab Novell and UNIX applications.
•

Administration Console provides a user interface to the administration
services of the Administration Server and Network Agent. The management module is implemented as the extension of the Microsoft Management Console (MMC).

1.2. Software and Hardware
Requirements
Administration Server
•

•

Software requirements
•

Microsoft Data Access Components (MDAC) version 2.8 and
above

•

MSDE 2000 SP 3 or MS SQL Server 2000 SP 31 or higher or
MySQL version 5.0.22 (default code page UTF-8) or MS SQL 2-5 or higher or MS SQL 2005 Express or higher;

•

Microsoft Windows 2000 SP 1 or higher; Microsoft Windows XP
Professional SP 1 or higher; Microsoft Windows XP Professional x64 and higher, Microsoft Windows Server 2003 or
higher; Microsoft Windows Server 2003x64 or higher Microsoft
Windows NT4 SP 6a or higher, Microsoft Windows Vista, Microsoft Windows Vista x64..

Hardware requirements:
•

Intel Pentium III processor, 800 MHz or faster

•

128 MB RAM

•
400 MB available space on hard drive
Administration Console

You can install MSDE from the package included in the Kaspersky Administration Kit
distribution package.

Kaspersky® Administration Kit

•

Software requirements:
•

•

Microsoft Management Console version 1.2 or higher

•

When running under Microsoft Windows NT4 you need Microsoft Internet Explorer 6.0 installed.

Hardware requirements:
•

Intel Pentium II processor, 400 MHz or faster

•

At least 64 MB RAM

•
10 MB of available hard drive space
Network Agent
•

Software requirements:
• For Windows systems:

•

Microsoft Windows 98; Microsoft Windows ME; Microsoft Windows 2000 SP 1 or higher; Microsoft Windows NT4 SP 6a or
higher; Microsoft Windows XP Professional x64 or higher, Microsoft Windows XP Professional SP 1 or higher, and Windows
Server 2003 or higher; Microsoft Windows Server 2003 x64 or
higher, Microsoft Windows Vista, Microsoft Windows Vista x64;

•

For Novell systems:

•

Novell NetWare 6 SP or higher; Novell NetWare 6.5 SP3 or
higher

Hardware requirements:
•

•

For Windows systems:
o

Intel Pentium processor, 233 MHz or faster

32 MB RAM

10 MB available space on hard drive

For Novell systems:
o

Intel Pentium processor, 233 MHz or better

12 MB RAM

Kaspersky® Administration Kit

32 MB free (available) space on hard drive

1.3. Distribution kit
This software product is supplied free-of-charge with any Kaspersky Lab's
application included into the package of Kaspersky Anti-Virus Business Optimal
and Kaspersky Corporate Suite (retail box version) and also available for
download from Kaspersky Lab's corporate website at www.kaspersky.com.

1.4. Help desk for registered users
Kaspersky Lab offers a large service package, enabling its legal users to enjoy
all available features of Kaspersky Lab's products.
Once you purchase a license for any Kaspersky Lab's product included into
Kaspersky Anti-Virus Business Optimal or Kaspersky Corporate Suite, you
become a registered user of Kaspersky Administration Kit. After this you will
receive the following services during the term of your license:
•

New versions of the anti-virus software application;

•

Consultations on matters related to the installation, configuration, and operation of the anti-virus application by phone or based on requests sent
using a web form;
When sending a request to the Technical support service, make sure
you specify information about the license for Kaspersky Lab's
application used in conjunction with Kaspersky Administration Kit.

•

Information about new Kaspersky Lab applications and about new computer viruses (for those who subscribe to the Kaspersky Lab newsletter).

Kaspersky Lab does not provide information related to operation and use of
your operating system or various other technologies.

1.5. The purpose of this document
This Guide contains a description of the installation of Kaspersky Administration
Kit and remote installation of applications within a computer network of simple
configuration.
General concepts and application operation scheme are provided in the
Kaspersky Administration Kit Administrator's Guide; step-by-step description of

Kaspersky® Administration Kit

actions when using the application is provided in the Kaspersky Administration
Kit Reference Book.
In order to review questions that our users often ask Kaspersky Lab's support
specialists visit our website and follow the Services ÆKnowledge base link.
This section contains information about installation, configuration and functioning
of Kaspersky Lab's applications and about removal of most commonly spread
viruses and disinfection of infected files.

1.6. Conventions
Various formatting features and icons are used throughout this document
depending on the purpose and the meaning of the text. The table below lists the
conventions used in the text.
Convention
Bold font

Meaning
Menu titles, commands, window titles,
dialog elements, etc.

Note

Additional information, notes.

Attention

Information you should pay special
attention to.

To perform an action:
1.

Step 1.

…

Description of the successive user's
steps and possible actions

[modifier] – modifier name.

Command line modifier

Information messages and
command line text

Text of configuration files, information
messages and command line

CHAPTER 2. TYPICAL
SCHEMES OF DEPLOYMENT
OF ANTI-VIRUS
PROTECTION
2.1. Schemes of deployment of antivirus protection on the
computers within the logical
network
There are two common scenarios that show how you can deploy reliable antivirus protection using Kaspersky Administration Kit:
•

You can remotely install applications on client computers across the logical network from a single workstation. The installation and connection to
the remote management system proceed automatically, requiring no interaction from the administrator and allowing to install the anti-virus software on any number of client computers.

•

You can locally install applications on every networked computer. In this
case, all required components and the administrator workstation are
manually installed. Connection settings are set during the installation of
the Network Agent. This deployment scenario is used only if centralized
deployment is impossible.

Remote installation can be used for installation of any applications selected by
the user.
However, bear in mind that Kaspersky Administration Kit supports
administration of only Kaspersky Lab's application the distribution package of
which includes a specialized component - the application administration plugin.

Kaspersky® Administration Kit

2.2. Building a centralized anti-virus
protection administration
system
The first step to building a system of centralized management over an enterprise
network through Kaspersky Administration Kit is to design a logical network. At
this stage, you should make the following decisions:
1.

Select isolated sections within the network and determine the
number of Administration servers that must be installed. The use of
hierarchy of administration servers will allow to considerably
decrease the load on the communication channels and increase
the system reliability.

Which computers in the corporate network structure will function as
the main Administration server, the slave servers administrator
servers, administrator's workstations, and client computers. Note
that all computers on which Kaspersky Lab applications are
installed will act as client computers.

Which criteria will be used to organize client computers in groups?
What will be the group hierarchy?

Which deployment scenario will be used: remote or local
installation?

During the next stage, the administrator has to build a logical network, i.e., install
the following Kaspersky Administration Kit components on networked computers,
namely:
1.

Install the Administration Servers on computers within the
corporate network.

Install the Administration Console on computers from which the
administration will be provided.

Make decision regarding assigning of the logical network
administrators, determine which other user categories will interact
with the system and assign a list of functions to be performed to
each category.

Create lists of users and grant to each group access rights required
to perform functions assigned to this group and related to access
rights.

Typical Schemes of Deployment of anti-virus protection

After this, it is required to create a hierarchy of the Administration servers and for
each Server create a logical network structure as follows: create a hierarchy of
the administration groups and distribute computers among the corresponding
groups.
During the next stage, you should install the Network Agent and selected
Kaspersky Lab applications on client computers and install the corresponding
administration plugins on the administrator workstation.
If you use the remote installation option, the Network agent may be installed
together with any application, in this case no separate installation of the Network
agent is required.
During the final step, you should configure the installed applications by assigning
and applying group policies and creating tasks.
Using the Quick Start Wizard, the administrator can easily build an anti-virus
protection system for his/her network and perform minimum configuration. Briefly
configuring the anti-virus protection system means creating a logical network
identical to the domain structure of the Windows network and the anti-virus
protection system based on versions 5.0 and 6.0 of Kaspersky Anti-Virus for
Windows Workstations.

CHAPTER 3. INSTALLING
KASPERSKY
ADMINISTRATION KIT
Before starting the installation, make sure that the computer meets the software
and hardware requirements to the Administration Server and the Administrator's
workstation (see section 1.3 on page 9).
MSDE (Microsoft Data Engine), MySQL server or Microsoft SQL server is used
to store the Administration Server information. If no MSDE or SQL server is
installed, you have to install one of them before installing the Administration
Server. In order to do it, you can use the distribution packages you have. In order
to install MSDE you can also use Kaspersky Administration Kit distribution
package. The MSDE installation procedure from the Kaspersky Administration Kit
is discussed in detailed below (see section 3.1 on page 15).
For installation of Kaspersky Administration Kit the local administrator's rights are
required for the computer on which the installation is performed.
The setup wizard will offer you to install the application components of Kaspersky
Administration Kit (the Administration Server and Administration Console) on the
computer on which the setup wizard is run. Such configuration is recommended
at the initial stage of creating the centralized administration system.
All the required ports should be open on a host computer for installed application
components to work properly. A listing of default ports used by Kaspersky
Administration Kit is given in Table 1.
Table 1
Port Number

Protocol

Description

Host Running Administration Server
13000

TCP and
UDP

SSL protocol is used:
•

to receive data from clients;

•

to connect to update agents;

•

to connect to slave Administration Servers;

•

to receive notification of host shutdown.

Installing Kaspersky Administration Kit

Port Number
14000

18000

Protocol
TCP

HTTP

Description
Used:
•

to receive data from clients;

•

to connect to update agents;

•

to connect to slave Administration Servers.

Used by Administration Server to download data
from a Cisco NAC authentication server.

Host Designated as Update Server
13000

TCP

Used by clients to connect.

13001

TCP

Use by client computers to connect if a host with
Administration Server is designated as update
agent.

14000

TCP

Used by clients to connect.

14001

TCP

Use by client computers to connect if a host with
Administration Server is designated as update
agent.

Client Running Administration Agent
15000

UDP

Use to receive requests to connect to Administration Server.

3.1. Installing MSDE from the
Kaspersky Administration Kit
distribution package
Before installing MSDE you must install Microsoft Data Access Components
(MDAC) 2.8 or higher (the distribution package is available Microsoft website).
Installation of MSDE from the Kaspersky Administration Kit distribution package
to a computer is performed locally.

Kaspersky® Administration Kit

To install MSDE:
1.

Run the executable file in the MSDE2KSP3 directory on the
Kaspersky Administration Kit 5.0 installation CD. The installation
wizard will then suggest that you configure settings and run the
application. Follow the setup wizard’s instructions.

First steps are common and include unpacking required files from
the distribution package and copying them to the hard drive of your
computer, verification of the required software, accepting the
license agreement and providing information about the user and the
company.

Then define the following in the Installation folder dialog box:
•

in the Application modules field - the folder for installation of
the MSDE application files. The default folder is:
window (see Figure 20). This
window opens using the Properties shortcut menu command or the analogous
item in the Action menu.
The installation packages created can be distributed on the slave Administration
Servers (see section 4.1.4 on page 49) and on the computers within a group
using the updating agents (see section 4.1.6 on page 51).
One installation package can be reused many times to create deployment tasks.
Applications may also be installed in non-interactive mode.

4.1.1. Creating an installation package
in order to create an installation package:
1. Connect to the Administration Server you need.

Kaspersky® Administration Kit

2. Select in the console tree the Remote installation node, open the
shortcut menu and select command Create → Installation Package or
use the analogous item in the Action menu. This will start the wizard.
Follow its instructions.
3. You will be offered to specify the name of the installation package and
during the next step - to specify the application to be installed (see Figure
17).
If you are installing an application that supports remote installation via
Kaspersky Administration Kit, you have to select the Create the
installation package for Kaspersky Lab's application option from the
drop-down list. Using the Browse… button, select file that contains
description of the application (file has extension .kpd and is bundled with
all Kaspersky Lab applications for which remote administration via
Kaspersky Administration Kit is supported) or a self-extracting archive of
the Kaspersky Lab's application (file has extension .exe and can be
downloaded from the Kaspersky Lab's website). As the result, fields with
the application name and the version number will be automatically filled
in.

Figure 17. Creating an installation package. Selecting application to be installed

Settings of the installation package will be created by default and will
correspond to the application selected to be installed. You can change
the settings after the package is created using the package properties
review window (see section 4.1.2 on page 40).

Installation and Removal of Software on the Computers

If you create an installation package to install other applications (see
Figure 18):
•

select Create installation package for application specified by
the user from the drop-down list;

•

indicate the path to the application distribution package using
the Browse button;

•

install the Copy entire folder into the installation package
box, if the package must contain the entire content of the folder
in which the distribution file is located;

•

specify the settings used to run the executable file in the entry
line provided if such settings are required to install the
application (for example, running in non-interactive mode using
switch /s).

Figure 18. Creating and installation package to install application specified by user.

4. In the next wizard window (see Figure 19), you can specify the license
key that will be included into the installation package. In order to do it,
press the Browse… button and select the required file of the license key
(file has extension .key)
If you do not wish to include the license key into the installation package,
simply press the Next> button.

Kaspersky® Administration Kit

A license key is not required as the installation package for Administration
Server and Agent is being generated.

Figure 19. Creating an installation package. Selecting the license key

5. After this the required set of files for the installation of the specified
application onto the client computers will be downloaded to shared folder
on the Administration Server and a check whether the administration
plugin for the selected application is installed on the administrator's
workstation will be performed. If such plugin is not installed or its version
is older than the version included into the distribution package, the new
plugin will be installed and the old plugin will be replaced.
Upon the completion of the wizard, the installation package created will be added
to the Remote installation node and displayed in the results pane.

4.1.2. Reviewing and configuring the
installation package settings
To review the properties of the installation package, change its name and
settings:

Installation and Removal of Software on the Computers

in the console tree, expand the Remote Installation node, select the
required installation package in the results pane and use the Properties
command from the shortcut menu or the analogous command from the
Action menu.
This will open window Properties see
Figure 20) that consists of tabs General, Settings, Licenses and OS
reboot.
The General tab (see Figure 20) includes general information about the
package:
•

package name;

•

name and version of the application for which installation the
package has been created;

•

package size;

•

creation date.

The Settings tab (see Figure 21) contains the installation package
settings for the application for which installation the package is created.
These settings are created by default at the stage of the package creation
and if required, you can modify them.

Kaspersky® Administration Kit

Figure 20. Installation package properties review window
The General tab

Installation and Removal of Software on the Computers

Figure 21. Installation package properties review window
The Settings tab

The License tab (see Figure 22) contains general information about the
license for the application for which installation the package is created.
The License tab is not available in the properties of the Network Agent
or the Administration Server installation package properties.

Kaspersky® Administration Kit

Figure 22. Installation package properties review window
The License tab

On the OS reboot tab (see Figure 23) you can determine actions to be
performed if the computer must be restarted after the installation of the
application. You can select one of the following options:
•

Do not restart the operating system

•

If required, restart the operating system automatically – this
will reboot the operating system only as needed.

•

Prompt user for action - if this option is selected, you can:
o

create an information message that will be displayed in an
entry field to notify the user that the operating system must
be restarted.

specify a frequency of notifications about the operating system restart if the user cancelled the restart, by checking the
Repeat prompt every (min.) box and specifying the interval for the message to be displayed;

Installation and Removal of Software on the Computers

specify automatic restart of the computer's operating system if it is not performed by the user within the specified
time interval starting with the moment the application has
been installed. In order to do it, check the Force the restart
in (min.) box and specify the time interval.

If a locked computer needs to be rebooted, check Close Running
Applications Automatically. By default this option is unchecked.

Figure 23. Installation package properties review window
The Operating System restart tab

4.1.3. Creating and configuring the
Network Agent installation package
The installation package for the remote installation of the Network Agent does
not have to be created manually. It is created automatically during the installation
of Kaspersky Administration Kit and located in the Remote installation node.

Kaspersky® Administration Kit

If the package for the remote installation of the Network Agent has been deleted,
then in order to create it again, select file klnagent.kpd located in the NetAgent
folder of the Kaspersky Administration Kit distribution package to be used as the
file that contains the description
The settings of the Network Agent installation contain a minimum set of settings
required to ensure the functioning of the component immediately following its
installation. The values of the settings match the values of the default application
settings. If required, these can be changed using the Settings and the
Administration Group tabs of the installation package properties window.
The Settings tab (see Figure 21) contains settings used by the Network agent
after it is installed on the client computers to connect to the Administration Server
(by default, values of the current server will be used during the creation).
•

Address of the computer on which the Administration Server is installed.

•

Number of port used for unsecured connection to the Administration
Server. By default port 14000 is used. If this port is busy, you can change
it.

•

Number of port used for secure connection to the Administration Server
using SSL protocol. By default port 13000 is used.
Only decimal representation is allowed.

•

Certificate file for authentication of the access to the Administration
Server. The value of this setting is determined by the Use the Server
Certificate box.
If the box is not checked by default, the certificate file will be automatically
obtained from the Administration Server when the Agent connects to it for
the first time.
If the Use Server Certificate box is checked, authentication will be
performed based on the certificate file specified using the Browse button.
This file has extension .cer and is located in the Cert folder of the
Kaspersky Administration Kit installation folder. You can change the
certificate file by selecting the file you need using the Browse button.

•

Which port will be used by the Network Agent to connection to the Server:
simple or secure. The value of this setting is determined by the Use SSL
connection box. If the box is checked, the connection is performed via a
secure port using SSL protocol, if the box is unchecked, the connection is
performed via an unsecured port.

•

The proxy server connection settings. If a proxy server is used by the
Network Agent to connect to the Server, check the Use proxy server

Installation and Removal of Software on the Computers

box. After this press the Settings button and in the window that will open
enter the proxy server address, user name and the password.
•

Opening UDP Port 137 used to obtain Administration Server IP address in
Kaspersky Antivirus 6.0 Anti-Hacker. Check Enable NetBIOS in
Kaspersky Antivirus 6.0 Anti-Hacker.

•

Adding a UDP port required by the Administration Agent to the Microsoft
Windows firewall exceptions list. Check Open Administration Agent
Ports on Microsoft Windows Firewall.

After the installation of the Network Agent you can change the values of the
settings used to connect to the Administration Server using the policy and the
application's settings.
If you remotely reinstall the Network Agent on the client computer the values of
the settings used to connect to the Server and the Administration server
certificate will be replaced with new ones.
The Administration Group tab (cf. Figure 25) is used to define a subgroup of
the Network group into which computers will be added after the Network Agent
has been installed on them. You can select of the following options:
•

add computers to folders Corresponding to the computer position in
the Windows network: domain or a work group (this option is selected
by default);

•

add all computers In group specified in the entry field. If you select this
option, enter the name of the folder in the field below. If the Network
group does not contain such folder, it will be created (you can also indicate the name of any existing folder in the Network group).
This folder will be used to store all computers newly detected in the
network; even if a computer had previously been detected by the
Administration Server and put into the folder corresponding to its
position within the network before the installation of the Network Agent.
Computers detected in the network prior to the installation of the
Network Agent will remain in their old positions in the Network group.

After the installation of the Network Agent you can not change the folder to store
the computers in the Network group as this setting is not included into the policy
and the application settings.

Kaspersky® Administration Kit

Figure 24. Administration Agent Installation Package Properties Windows. Administration
Group Tab

The Network Agent is installed on the computer as a service with the following
set of attributes:
•

service name KLNagent;

•

displayed name Kaspersky Network Agent;

•

automatic start at the operating system startup;

•

with the Local system account.

You can review properties of the Kaspersky Network Agent service, start it,
stop it and monitor its operation using the standard Windows administration tools
- Computer Management → Services.

Installation and Removal of Software on the Computers

4.1.4. Creating and Configuring
Administration Server Installation
Package
When creating an Administration Server installation package as a file with
description, select file ak6.kpd, located in the root directory of the Kaspersky
Administration Kit distribution.
The properties of the Administration Server installation package are shown on
two tabs: General (cf. Figure Figure 20) and Reboot OS (cf. Figure Figure 23).
The other properties are the same as Administration Server default settings.

4.1.5. Creating a task for distribution of the
installation package on the slave
Administration Servers
In order to create the task for distribution of the installation package on the slave
Administration Servers:
1. Connect to the Administration Server you need.
2. Select the Global tasks node in the console tree, open the shortcut menu
and select the New → Task command or use the analogous item in the
Action menu. This will start the wizard. Follow its instructions.
3. For the Kaspersky Administration Kit application select the Packages
retranslation task task type.
4. In the next wizard window (see Figure 25) select which installation
packages must be distributed. Select one of the following options:
•

All installation packages.

•

Selected installation packages. In this case check boxes next
to the names of the required installation packages in the table
below.

Kaspersky® Administration Kit

Figure 25. Creating a set of installation packages

Specify the required value in the The maximum number of simultaneous
downloads:.
5. In the next wizard window (see Figure 26) check boxes next to the names
of the slave Administration Servers to which the installation packages
must be distributed.

Installation and Removal of Software on the Computers

Figure 26. Selecting slave Administration Servers

6. In the next wizard window specify the task launch schedule (details see
section 0 on page 53).
7. To exit the wizard when it is completed, press the Finish button.

4.1.6. Distribution of the installation
packages within a group using
network agents
In order to distribute installation packages within a group, you can use updating
agents. The updating agents receive installation packages and updates from the
Administration Server and save them in the Kaspersky Lab's application
installation folder.
The location of the folder that contains the updates and the installation
packages cannot be changed; its size cannot be restricted.
Later the installation packages will be distributed to the client computers using
the multi-address delivery. Delivery of the new installation packages within a
group is only performed once. If at the moment of the delivery a client computer
was disconnected from the corporate logical network, then when the installation
task is run the Network Agent will automatically download the required
installation package from the updating agent.

Kaspersky® Administration Kit

In order to create the list of the updating agents and configure them to distribute
installation packages to computers within a group,
1. Connect to the required Administration Server.
2. Select the required group in the console tree, open the shortcut menu and
select the Properties command or use the analogous item in the Actions
menu.
3. In the group properties window that will open, on the Updating Agents
tab (see Figure 27) create the list of computers that will act as the
updating agents within the group, using the Add and the Remove
buttons.

Figure 27. The group properties window.
The Updating Agents tab

4. Edit the updating agent's settings. In order to do it, select the agent in the
list and press the Properties button. In the
properties window that will open (see Figure 28) do the following:
•

specify the number of the port used by the client computer to
connect to the updating agent. The default port number is
14001. If this port is being used, you can change it;

Installation and Removal of Software on the Computers

•

specify the number of the port used by the client computer to
securely connect to the updating agent using SSL protocol. The
default port number is 13001;

•

check box Use multiaddress IP delivery and fill in fields
Multicast IP Address and Multicast IP Port Number.

5. Press the Apply or the ОК button.

Figure 28. Updating agent properties windowCreating a remote installation task

When this task is executed, remote installation of software on the client
computers is performed using one of the two methods: forced installation or
installation using the startup scenario.
Forced installation allows performing the remote installation of software on the
specific client computers within the logical network. When the task is run, the
Administration Server will copy from the shared folder a set of files required to
install the application to each client computer in the temporary folder and
launches the installer application on each computer. In order to successfully
perform the forced installation task the Administration Sever must have the rights
of the local administrator on the client computers within the logical network. This
method is recommended for installation of applications onto computers running

Kaspersky® Administration Kit

Microsoft Windows NT/2000/2003/XP that support such ability or onto computers
running Microsoft Windows 98/Me on which the Network Agent is installed.
If the connection between the Administration Server and the client computer is
established via Internet or is protected by a firewall, shared folders cannot be
used to transfer data. In this case the files required to install the application to
the client computer can be delivered by the Network Agent. The Network Agent
is installed on such computers locally.
The second method - installation using the startup scenario - allows to assign
a remote installation task to a specific user (or several users') account. As the
result of the task execution, a record about launching the installer application will
be entered into the startup scenario for the selected users. The installer
application is located in the shared folder on the Administration Server. In order
to ensure successful task execution, the account under which it is run or the
Administration Server must have the right to modify the startup scenarios in the
domain controller database. As the results of the user registration with the
domain an attempt will be made to install the application on the client computer
from which the user has registered. This method is recommended for installation
of the Kaspersky Lab's applications onto the computers running MS Windows
98/Me.
In order to ensure successful execution of the remote installation task using the
startup scenario, users for which changes are made in the scenarios, must
have the local administrator's rights on their respective computers.
Group tasks for remote software installation onto the client computers are
executed using the forced installation method only. When creating a global task,
you can select the method you require: the forced installation or installation using
the startup scenario.
In order to create a global task for remote installation using the forced installation
method:
1.

Connect to the required Administration Server.

Select the Global tasks node in the console tree, open the shortcut
menu and select the New / Task command or use the analogous item in
the Action menu. This will start the task creation wizard. Follow its
instructions.

Specify the task name.

When selecting the application and the task type (see Figure 29), specify
values Kaspersky Administration Kit and Remote application
installation respectively.

Installation and Removal of Software on the Computers

Figure 29. Specifying the task type

After this, specify the installation package that will be installed during the
execution of this task (see Figure 30). Select the required package from
the packages created for the particular Administration Server or create a
new package using the New… button.
Some applications that support administration via Kaspersky
Administration Kit can be installed on the computers only locally.
Detailed information see Guides to the corresponding applications.

Kaspersky® Administration Kit

Figure 30. Selecting the installation package for installation

During this stage select the Push install option (see Figure 31)

Figure 31. Selecting installation method

Installation and Removal of Software on the Computers

In this wizard window (see Figure 32) you will be offered to determine
additional installation settings.
•

Whether the application must be reinstalled if it has already
been installed on the computer.
Check the Do not install application if it is already installed
box in order to prevent repeated installation (by default the box
is checked). In this case for the computers on which the
application is installed locally or as the result of previous
scheduled launch of the remote installation task, the task will
not be launched.
If the box is unchecked, the remote installation task will be
launched by scheduled until the maximum number of attempts
to install the application has been reached.

•

To specify the method for delivery of the files required to install
the application on the client computers.
In order to do it, perform the following in the Downloading the
installation package group of fields:

•

Check the Using Microsoft Windows resources from
public access folder box if you wish that the transfer of
the files required to install the application to the client computers is performed using Windows tools and the shared
folders (by default this box is checked).

Check the Using Administration Agent box so that the
files are delivered to the client computers by the Network
Agent installed on each computer (by default this box is
checked).

In the The maximum number of simultaneous
downloads field specify the maximum number of client
computers that can download information from the Administration Sever.

Specify the number of attempts to perform the installation in
case of a scheduled task launched by entering the required
value in the Number of attempts field. Repeated attempts are
made in case of an error during the execution in the course of
the previous installation.

Kaspersky® Administration Kit

Figure 32. Additional installation settings

During this step (see Figure 33) you will be offered to install the Network
Agent together with the application.
We recommend that you use the joint installation in order to reduce load
on the Administration Server. In order to do it check the Install along
with Administration Agent box and check box next to the name of the
required installation package. If required, create a new installation
package using the Create button.

Installation and Removal of Software on the Computers

Figure 33. Selecting joint installation with the Network Agent

Determine the method to select the computers on which the task will be
created (see Figure 34):
•

Based on data obtained in a Windows network poll. In this
case computers for installation will be selected based on the
data received by the Administration Server based on the
corporate Windows network polling.

•

Based on manually entered host addresses. In this case
computers for installation will be selected manually.

Kaspersky® Administration Kit

Figure 34. Selecting the method to be used to select the client computers

If computers are selected based on the data received as the result of the
Windows network polling, the list will be created in the wizard window
(see Figure 35) and will be performed in the same way as when adding
computers to the logical network (details see Reference Book for
Kaspersky Administration Kit). You can select either the computers of the
logical network (the Groups folder) or computers that have not yet been
included into the logical network (the Network folder).

Installation and Removal of Software on the Computers

Figure 35. Creating the list of computers for installation based on the Windows network
data

If you select computers manually, then the list is created by entering
NETBIOS or DNS names, IP addresses (or a range of IP addresses) of
the computers or by importing the list from a txt file in which each address
must be entered in a new line (see Figure 36).

Figure 36. Creating the list of computers for installation based on IP addresses

Kaspersky® Administration Kit

10. In the next wizard window specify under which account the deployment
task will be launched on the computers (see Figure 37).
The account must have the administrator's rights for all computers
on which you plan to perform remote software installation.
When installing the software on the computers included in various
domains, between such domains and the domain in which the
Administration Server is working trusted relationship must exist.
Select one of the following options:
•

Default account - if the Administration Server is run under the
domain user's account (see section 3.2 on page 17) and this
account has rights required to install the software.

•

Specified account - if the Administration Server is run under
the system account or if the Administration Server's account
des not have the rights required to launch the deployment task.

In order to remotely install the software on the computers not
included into the domain, launch the remote installation task under
the account of a user who has the administrator's rights on these
computers.
In the fields provided below specify the attributes of the user whose
account conform to the required conditions.

Installation and Removal of Software on the Computers

Figure 37. Selecting the account

11. Then create the schedule to launch the task (see Figure 38).
•

Select the required task launch mode from the Scheduled
launch drop-down list:
o

Manually

Every N hour(s)

Daily

Weekly

Monthly

Once (in this case the deployment task will only run once
on the computer irrespective of the result of its execution).

Now (immediately following the creation of task and completion of the wizard).

Upon completion of another task (remote installation
task will not start until after a specified task exits)

Kaspersky® Administration Kit

•

Configure the schedule settings in the group of fields based on
the selected mode (details see Reference Guide for Kaspersky
Administration Kit).

Figure 38. Daily task launch

In order to create a global deployment task using the startup scenario:
1. Connect to the required Administration Server.
2. Select the Global tasks node in the console tree, open the shortcut menu
and select the New / Task command or use the analogous item in the
Action menu. This will start the task creation wizard. Follow its
instructions.
3. Specify the task name.
4. When selecting the application and the task type (see Figure 29), select
Kaspersky Administration Kit and Application remote installation
respectively.
5. In the next window (see Figure 30) specify the installation package to be
used for the installation. This is performed the same way as with the
forced installation method (see above).
6. After this select the Installation using the startup scenario option (see
Figure 31)

Installation and Removal of Software on the Computers

7. In the next wizard window (see Figure 36) select accounts of users for
which the startup scenario must be changed.
When the installation task is started, Kaspersky Administration Kit checks
whether a startup script is specified for any other users in addition to those
selected. If that is the case, installation will not proceed. Appropriate error
information will be written out to the log file.

Figure 39. Selecting accounts

8. During the next step of the wizard (see Figure 37), similarly to using the
forced installation method (see above),
9. In the Task launch schedule (see Figure 38) create a schedule the same
way as it is created if the forced installation method is used (see above).
After the wizard is complete, the deployment task you created will be added to
the Global tasks node and displayed in the results pane. If required, you can
modify its settings (details see section 4.1.7 on page 66).
In order to do it,
select the Remote installation node in the console tree, select the
installation package required in the results pane, open the shortcut menu
and select the Install command or use the analogous command from the
Action menu. This will launch the deployment task creation wizard
described above, however, this wizard will not include the task type and
installation package selection steps. Follow its instructions.
Alternatively you can launch the group deployment task creation wizard.

Kaspersky® Administration Kit

In order to do it,
select the Groups node in the console tree, open the shortcut menu and
select the Install command or use the analogous command from the
Action menu. This will launch the group deployment task creation wizard
described above, however, this wizard will not include the task type and
computer group selection steps. Follow its instructions.

4.1.7. Configuring the deployment task
Deployment tasks are configured the same way as any task (details see
Reference Book for Kaspersky Administration Kit). Provided below is a detailed
discussion of settings specific for this type of tasks provided on the Settings tab.
If you are editing a task that will perform forced installation (see Figure 40), you
can:
•

determine whether you have to reinstall the application if it is already installed on the client computer;

•

specify the method to be used to deliver the files required to install the
application to the client computer and specify the maximum number of
simultaneous connections;

•

specify the number of attempts to perform the installation if the task is run
based on schedule.

Installation and Removal of Software on the Computers

Figure 40. Configuring a deployment task
Push installation method

When configuring a deployment task using a startup scenario, you can us the
Settings tab to change the list of accounts of users for who the startup scenario
will be modified (see Figure 41). To edit the list use the Add and the Remove
buttons.

Kaspersky® Administration Kit

Figure 41. Configuring a deployment task using the startup scenario.

4.1.8. Deploying application to slave
administration servers
This task enables you to install and update software on slave servers
Before creating the task make sure that an installation package is on all the
servers. Use Package retranslation task to send the package to server (see
section 4.1.5).
To create application deployment to slave servers task:
1.

Connect to the required Administration Server.

Specify the task name.

Installation and Removal of Software on the Computers

When selecting the application and the task type (see Figure 29), specify
values Kaspersky Administration Kit and Deploy application to slave
administration servers.

Specify the installation package that will be installed during the execution
of this task

Check the Do not install application if it is already installed box in order to prevent repeated installation (by default the box is checked).

This step is not available for a global task. Select Slave Administration
Servers (Figure. 42) and make up a list of slave servers

Figure 42. Creating a list of slave administration servers

Then create the schedule to launch the task

Kaspersky® Administration Kit

Figure 43. Application Deployment to slave administration servers task. Settings tab.

4.1.9. Remote software removal
In order to remotely remove the software:
Create a task similarly to creation of a deployment task (see section 0 on
page 53); select Remote application removal as the task type and
select the required Kaspersky Lab's application from the Application to
be removed drop-down list in the Application window (see Figure 44). In
order to remove a third-party application, check the Third-party
application and select the application to be removed.
The drop-down list contains the list of applications detected on the
computers of the logical networks after the Network Agent had been
installed on these computers.

Installation and Removal of Software on the Computers

Figure 44. Selecting an application to be removed

The task you created will be run according to the schedule.

4.2. Deployment wizard
You can use deployment wizard to install Kaspersky Lab's applications. This
wizard allows performing application deployment using the forced installation
method using installation packaged created or directly from the distribution
package.
The wizard performs the following:
•

creation of an installation package to install the application (if such package has not been installed earlier). The package is stored in the Remote
installation node under the name that matches the name and the version
of the application and can be used to install the application later.

•

creation and launching of global and group deployment tasks. The task
created will be located in the Global tasks or Group tasks folder of the
group for which the task was created and can be manually run later. The
name of the task matches the name of the package for the application installation: Installation .

Kaspersky® Administration Kit

In order to install application using the deployment wizard:
1. Connect to the required Administration Server.
2. In the console tree of the main Kaspersky Administration Kit application
window select the node corresponding to the required Administration
Server, open the shortcut menu and select the Deployment wizard
command or use the analogous command in the Action menu. This will
run the wizard. Follow its instructions.
3. In the window that will open (see Figure 45) specify the installation
package that will be installed. If you are installing the application from a
distribution package and/or if the installation package has not been
created, create a new installation package. In order to do it press the
New… button; this will open the installation package creation wizard (see
section 4.1.1 on page 37).

Figure 45. Selecting an installation package

4. In the next wizard window, if required, specify the Network Agent
installation package to be jointly installed (details see section 0 on page
53).
5. In the wizard window (see Figure 46) determine on which computers the
application will be installed. In order to do it, select one of the options:

Installation and Removal of Software on the Computers

•

Install the application onto selected computers, if you select
this option, then after the wizard is complete a global application
deployment task will be created.

•

Install application onto computers in the administration
group - as the result of the wizard's work, a group task will be
created.

Figure 46. Selecting a task type

6. Then if you are creating a group task, specify a group on whose
computers the application will be remotely installed (see Figure 47), or
select computers for the installation. If the application must be installed on
all client computers within the logical network, select the Groups group.

Kaspersky® Administration Kit

Figure 47. Selecting a group

7. Then determine under which account the deployment task will be run on
the computers (details see section 0 on page 53).

Figure 48. Selecting a user's account

Installation and Removal of Software on the Computers

8. After this a window will open that will display the process of distribution
and execution of the deployment task on the computers of the selected
group (see Figure 49). You can switch to the final window of the wizard
without waiting for the process to be completed. In order to do it, press the
Next button. You can view detailed information about the results of the
task execution on each computer using the History button.

Figure 49. Deployment task execution

4.3. Local software installation
The local software installation is performed individually on each computer. In
order to perform local installation you must have the administrator's right for the
local computer.
Some applications that support administration using Kaspersky Administration
Kit can be installed on computers only locally. Details see Guides to the
corresponding applications.
General procedure for the software installation during local deployment of the
anti-virus protection system can be as follows:
•

install the Network Agent and configure the connection between the client
computer and the Administration Server (see section 4.3.1 on page 76);

Kaspersky® Administration Kit

•

install the required applications on the computer that will be included into
the anti-virus protection system according to the description in the corresponding Guides;

•

install the administration plugin for each of the installed Kaspersky Lab's
applications into the administrator's workstation (see section 4.3.2 on
page 81).

Kaspersky Administration Kit support local application installation in noninteractive mode based on the files created during installation package creation
(see section 4.3.3 on page 82).

4.3.1. Local installation of the Network
Agent
In order to locally install the Network Agent on the computer:
1. Run file setup.exe (or setup.msi) located on the distribution CD of the
Kaspersky Administration Kit application in folder NetAgent. The
installation process is facilitated by the wizard. The wizard will offer you to
configure the installation settings. Follow its instructions.
2. First steps of the installation process are the usual procedure and involve
unpacking required files from the distribution package and copying them
on the hard drive of your computer, accepting the license agreement and
providing information about the user and the company.
3. Then you have to define the Network Agent installation folder. The default
installation folder is Program Files\Kaspersky Lab\NetworkAgent. If
such folder does not exist, it will be created automatically. To change the
folder use the Browse… button.
4. In the next wizard window (see Figure 50) you will have to configure
settings used by the Network Agent to connect to the Administration
Server. In order to do this define the following:
•

address of the computer on which the Administration Server is
or will be installed. The computer's IP address or name in the
Windows network can be used as the computer address. Alternatively, you can select the computer using the Browse button.

•

whether UDP Port 137, used to obtain Administration Server IP
address needs to be opened in Kaspersky Antivirus 6.0 AntiHacker. If so, check Enable NetBIOS Name Service in
Kaspersky Antivirus 6.0 Anti-Hacker.

Installation and Removal of Software on the Computers

•

the port number using which the Network Agent will connect to
the Administration Server. By default port 14000 will be used. If
it has been assigned, you can change it. Only decimal representation is allowed.

•

port number that will be used for secure connection to the
Administration Server using SSL protocol. By default port 13000
port is used. If it has been assigned, you can change it. Only
decimal representation is allowed. In order to make sure that
the connection is using a secured port (using SSL protocol)
check the Use SSL to connect to server box.

Figure 50. Configuring settings used to connect to the Administration Server

5. If the Network Agent connects to the Server via a proxy server (see
Figure 51)l, configure the corresponding connection settings:
•

Check the Use a proxy server to connect to the Administration Kit Server box and enter the address and the name of the
port to connect to the proxy server. Only decimal notation is allows (for example: Proxy address: proxy.test.com; Port: 8080).

•

If a password is used to access the proxy server, fill in the
Proxy login and the Proxy password fields.

If no proxy server is used, skip this step by pressing the Next button.

Kaspersky® Administration Kit

Figure 51. Configuring the connection settings via a proxy server

6. After this, determine which folder of the Network group the computer
must be added to after it is detected by the Administration Server during
the Windows network polling. Select one of the following options: (see
Figure 52):
•

Default group name - the computer will be added to the folder
that corresponds to its position in the Windows network: domain
or the workgroup (this is the default option).

•

Define group name - the computer will be added to the folder
specified in the Group name field. If you select this option, enter the folder name. If such folder does not exist in the Network
group, it will be created (you can specify the name of any of the
folders existing in the Network group).

Installation and Removal of Software on the Computers

Figure 52. Selecting the group in the Network folder to store the computers

7. During the next stage (see Figure 53) you have to specify the method you
would like to use to receive the certificate of the Administration Server's to
which the Network Agent will connect. Select one of the following options:
•

Default certificate - the Administration Server's certificate will
be received when the Network Agent connects to it for the first
time (this is the default options);

•

Select certificate file - authentication at the Administration
Server will be performed based on the certificate specified by
the administrator. If you select this option, specify the Administration Server's certificate file to be used.
The certificate file has extension .cer and is located on the
Administration Server in the Cert folder in the Kaspersky
Administration Kit installation folder.
You can copy the certificate file to the shared folder or onto a
disk and use a copy of the file to install the Network Agent.

Kaspersky® Administration Kit

Figure 53. Selecting the method to be used to receive the Administration Server's
certificate

8. In the final wizard window (see Figure 54) you will be offered to run the
Network Agent immediately after the wizard is complete. If you would like
to run it later, uncheck the Launch Network Agent box checked by
default.
If you are planning to use the hard drive of the computer on which the Network
Agent is installed in order to create a disk image and deploy it on other
computers, the Launch Network Agent box must be unchecked.

Installation and Removal of Software on the Computers

Figure 54. Configuring the launch of the Network Agent

After the wizard is complete, the Network Agent will be installed on your
computer.
You can review the properties of the Kaspersky Network Agent service, start,
stop or monitor it using the standard Windows administration tools - Computer
Management → Services.
A plugin for cooperation with Cisco Network Admission Control (NAC) is always
installed to a host together with an Administration Agent. The plugin is invoked if
the Cisco Trust Agent application is installed.

4.3.2. Local installation of the application
administration plugin
In order to install the application administration plugin,
on the computer on which the Administration Console is installed, run
executable file klcfginst.exe, located on the application's distribution CD.
This file is included into all applications that can be administered via
Kaspersky Administration Kit. The installation is facilitated by a wizard
and does not require any configuration. It will offer you to configure the
installation settings and start it.

Kaspersky® Administration Kit

The file of the administration plugin for the Network Agent klcfginst.exe
is located in the NetAgent folder of the distribution package of
Kaspersky Administration Kit

4.3.3. Installing applications in noninteractive mode
In order to install an application in non-interactive mode:
1. Create the required installation package (see section4.1.1xx) if the
installation package for the application you would like to install has not
been created.
Installation packages will be saved in some shared folder under the
Administration Server Packages system directory when the
Administration Server is being installed. A subfolder will correspond to
each installation package.
2. Configure installation package settings as required.
3. Install application using one of the methods below:
Copy the entire folder corresponding to the desired installation package
from the Administration Server to the client. Open the copied folder on the
client and start the executable (file with the .exe extension) using the /s
switch.
Access the shared folder for the desired installation package on the
Administration Server from the client. Then start the executable with the
/s switch.
4. Run executable file setup.exe with modifier /s included into the
distribution package of the application being installed, on the
computer onto which you plan to install the application using noninteractive mode.
Installation packages are stored on the Administration Server in
the shared folder specified during the Administration Server
installation stage, in service folder Packages.
When installing Kaspersky Administration Kit non-interactively, an answer
file may be used. This file contains all the application install parameters
and enables the application to be installed more than once with the same
parameters.

Installation and Removal of Software on the Computers

To generate a Kaspersky Administration Kit answer file:
1. Use the command line to go to the folder containing a Kaspersky
Administration Kit distribution and run the executable with switches
/r and /f1"\setup.iss"2 (for example, setup.exe /r
/f1"C:\setup.iss").
•
2.

This will start the application installation wizard on the host
computer.
Follow the prompts offered by the wizard to configure application
installation settings. For example, Administration Server or Console
only may be selected for installation.

Once the installation is complete, the selected version of Kaspersky
Administration Kit will have been installed on the host computer, and an answer
file will have been generated and placed in the specified directory. The resulting
answer file should be copied into the relevant installation package folder on the
Administration Server. This will cause Kaspersky Administration Kit to install noninteractively using one of the methods above with the configuration specified in
the answer file.
An answer file may be used to update Kaspersky Administration Kit noninteractively. However, it can only be used to update the application version that
had been utilized to generate the file.

The complete path to the answer file must be specified.

APPENDIX A. GLOSSARY
This Guide uses some specific terms related to anti-virus protection. Glossary is
a list of definitions of these terms. The glossary entries are arranged in
alphabetical order to facilitate using the glossary.
A
Available updates – Service Packs that contain urgent updates
accumulated over time and latest changes in the application
architecture.
Administration group – Computers grouped in accordance with their
functional and installed Kaspersky Lab applications. Grouping
significantly facilitates the management process and allows the
administrator to manage all computers as a single entity. A group might
include other groups. Group policies and group tasks can be created for
each application of installed on group members.
Administration Console– A Kaspersky Administration Kit component that
provides user interface for the administrative services of the
Administration Server and Network Agent.
Anti-virus database – A database created by Kaspersky Lab specialists
that contains detailed definitions of all currently existing viruses and
methods for their detection and disinfection. Anti-virus applications use
the database to successfully detect and disinfect viruses. The anti-virus
database available on the Kaspersky Lab websites is regularly updated
as new virus threats appear. Registered users of Kaspersky Lab
applications have access to database updates. To keep your computer
constantly protected from viruses, we strongly recommend that you
download updates on a regular basis.
Administrator workstation – A computer where the Administration Console
of Kaspersky Administration Kit is installed. Using the Console, the
administrator can build and manage the anti-virus protection system
based on Kaspersky Lab applications.
Anti-virus protection status – Current status of anti-virus protection that
characterizes the security level for your computer.
Administration Server – A Kaspersky Administration Kit component that
centrally stores information about Kaspersky Lab applications installed
on clients and manages these applications.
Administration Server certificate – A certificate used to authenticate the
Administration Server upon connection of the Administration Console to
the server and data transmission between the server and clients. The
Administration Server certificate is created during the installation of the

Appendix A

Administration Server. It is located in the Cert folder of the installation
folder.
B
Block object – Prevent external applications from accessing an object. The
blocked object cannot be read, executed, modified, or deleted.
Backing up – copying data of the Administration server for storage and
subsequent restoration performed by the backup utility. The utility allows
to save:
Administration Server database that stores policies, tasks, application settings,
and events logged on the Administration Server
Information about the logical networks and client configurations
Installation files for the remote installation of applications (contents of the Packages, Uninstall, Updates folders)
Administration Server certificate
Backup folder – A directory that contains backups of deleted and
disinfected objects.
Backup license key – a license key installed for a Kaspersky Lab's
application, but not activated. Depending on the settings, activation of
the key can be performed automatically upon the expiration of the
current key or manually.
Backup storage – A folder that contains the backup copies of
Administration Server data created by the backup utility.
C
Console (management) plug-in – A special component that provides an
interface for remotely managing an application through the
Administration Console. The plug-ins are specific to each application
and are included in all Kaspersky Lab applications that can be managed
through Kaspersky Administration Kit.
Centrally managing an application – Managing an application through
Kaspersky Administration Kit.
Client, Administration Server (or client computer) – a computer, a server,
or a workstation with the installed Network Agent and managed
Kaspersky Lab applications.
Current license key – a license key installed and currently used to work
with a Kaspersky Lab's application. This key determines the license
period and the licensing policy regarding to the product.
D
Disinfection – A method of treating infected objects. Disinfection implies
partial or full recovery of data or results in a decision that these files
cannot be disinfected. Objects are disinfected using the anti-virus
database. If disinfection is the first action to be applied to an object, i. e.

Kaspersky® Administration Kit

the first action after detection of a suspicious object, the program
creates a backup of this file. If some data are lost during disinfection,
you can use the backup to recover this object.
Deleting an object – A method of handling an object. To delete an object is
to remove it physically from a computer. This method is recommended
for treating infected objects. If deleting is the first action applied to an
object, it is necessary to create a backup of this object before deleting it.
You can use the backup to restore the original object.
E
Exclusions – User-defined settings that exclude certain objects from scans.
You can customize the exclusion rules for real-time protection and ondemand scans. Thus, you can disable scanning of archives during a full
scan or exclude files from scans by their masks.
E-mail databases – Databases that contain e-mail messages stored on
your computer. Every incoming/outgoing message is saved in the
database after you receive/send it. Such databases are scanned in the
on-demand scanning mode.
F
Forced installation – a method of remote installation of Kaspersky Lab's
applications that allows to perform remote installation on specific client
computers of the logical network. In order to ensure successful
execution of a forced installation task the account used to run the task
must have the right for remote launch of the applications on the client
computers of the logical network. This method is recommended for
installation of applications onto computers running Microsoft Windows
NT/2000/2003/XP that support such feature or onto computers running
Microsoft Windows 98/Me on which the Network Agent is installed.
G
Global task – A task defined for and running on a number of clients from
different administration groups.
Group Task – A task defined for and running on all clients in a group.
Group policy – A set of application settings in an administration group
managed through Kaspersky Administration Kit. Group policies can be
different for each group. Group policies are specific to individual
applications. The policy involves configuration of all parameters of
applications.
I
IChecker technology – A technology that excludes the objects from future
scans that remained unmodified since the last scan. The IChecker
technology was implemented by using the object checksum database.

Appendix A

IStreams technology – A technology that excludes the files stored on
NTFS-formatted disks that remained unmodified since the last scan.
The IStreams technology was implemented by using a method of
storing file checksums in the additional NTFS streams.
Infected object – An object containing a virus. We recommend that you
abandon working on these objects because they can infect your
computer.
Installation package – A package of files used to install Kaspersky Lab
applications on remote hosts on a logical network. Installation packages
are based on a special .kpd file included in the application distribution
kit, which contains a minimum set of parameters that provide the basic
functionality of the application immediately after the installation. The
values of the parameters are default settings of the applications.
Installation using the startup scenario – a method of remote installation
of Kaspersky Lab's applications that allows to assign a remote
installation task to a specific account of a user (or several users). When
a user is registered with a domain, an attempt will be made to install the
application on the client computer from which the user has registered.
This method is recommended for installation of Kaspersky Lab's
applications onto computers running Microsoft Windows 98/Me.
K
Kaspersky Lab update servers – A list of http and ftp Kaspersky Lab
websites where you can copy updates to your computer from.
Kaspersky Administration Kit – An application for centralized performance
of key administrative tasks. It gives you complete control over the
enterprise anti-virus policy based on Kaspersky Lab applications.
L
License key – A file with the .kеy extension that serves as your personal
"key". This file is required for correct operation of Kaspersky Lab
applications. The license key is included in the distribution kit if you
purchased your copy of the application from Kaspersky Lab distributors.
If you purchased the application online, the license key is sent to you
via e-mail. Without the license key, Kaspersky Anti-Virus DOES NOT
WORK.
Logical network operator – A user that monitors the system of anti-virus
protection managed by Kaspersky Administration Kit.
Local management – Management of an application through a local
interface.
Local task – A task created for and running on a single client.
License period – A period during which you have the right to take
advantage of the full functionality of Kaspersky Anti-Virus. As a rule, the

Kaspersky® Administration Kit

license period defined by the license key is one year from the date of
purchase. After your license expires, the application will operate but you
will not be able to update the anti-virus database.
Local network administrator – A user who installs, configures, and
maintains Kaspersky Administration Kit and remotely manages
Kaspersky Lab applications installed on the logical network computers.
M
Maximum protection – A protection level that ensures comprehensive
protection but slightly decreases performance characteristics.
Maximum speed – A protection level that has a maximum operation speed
but a lower security level.
N
Network Agent – A Kaspersky Administration Kit component that provides
communication between the Administration Server and Kaspersky Lab
applications installed on specific network nodes (workstations or
servers). This component is common to all Windows applications
included in Kaspersky Lab Business Optimal and Corporate Suite.
Separate versions of Administration Agent exist for Kaspersky Lab
Novell and UNIX applications.
O
OLE-object – An object linked or embedded into other files by using OLE
technology.
On-demand full scan – An administrator-defined mode that scans all files
on your computer for viruses and disinfects/deletes infected objects
upon their detection.
P
Policy – see Group policy
Push installation – A remote installation method that allows you to install
Kaspersky Lab software on specified computers on your logical
network. In order to successfully perform the task using a push
installation, the account used to launch this task must have rights to run
applications on remote clients. This method is recommended for
computers running MS Windows NT/2000/2003/XP, which support this
feature, or for computers that are running MS Windows 98/Me and have
an installed Network Agent.
Q
Quarantining – A method of handling a suspicious object. Access to this
object is blocked and the file is moved to the quarantine for further
processing.

Appendix A

Quarantine – A special storage that isolates infected and suspicious
objects.
R
Real-time protection – A scanning mode in which an anti-virus application
is memory resident. In the real-time protection mode, the application
scans all objects when you open them for reading, writing, or executing.
Before enabling access to an object, Kaspersky Anti-Virus scans it for
viruses and, if a virus is detected, blocks access to the object, disinfects
it or deletes it (depending on user-defined settings).
Recommended level – The level of antivirus protection with default settings
recommended by Kaspersky Lab experts which ensures the optimal
protection of your computer. This level is set by default.
Remote installation– Installation of Kaspersky Lab applications using the
services provided by Kaspersky Administration Kit.
Restoring – Restoring Administration Server data using a backup utility.
The information for restoring is available in the backup storage. The
utility allows you to restore:
Administration Server database that stores policies, tasks, application settings,
and events logged on the Administration Server
Information about the logical networks and client configurations
Installation files for the remote installation of applications (contents of the Packages, Uninstall, Updates folders)
Administration Server certificate
S
Script-based installation – An installation method that relates the remote
installation task with a specified user account (several accounts). When
the specified user logs onto the domain, the application will be installed
on the client where this user has logged on. This method is
recommended for use with computers running MS Windows 95/98/Me
Settings, task – Application settings specific for each type of task.
Settings, applications – Application settings specific for all types of tasks
performed by this application.
Severity level – A parameter that classifies an event recorded during
Kaspersky Anti-Virus performance. There are four severity levels:
•

Critical

•

Error

•

Warning

•

Info

Events of the same kind can be of different severity levels, depending on
a specific situation.

Kaspersky® Administration Kit

Startup objects – A set of programs that are necessary for launching and
smooth operation of the operating system and other software installed
on your computer. Your operating system launches these objects during
each startup. Some viruses attempt to infect the startup objects and can
cause a startup failure.
Suspicious object – An object that contains either a modified code of a
well-known virus or a code reminiscent of a virus yet unknown to
Kaspersky Lab specialists.
Scan files by format – In this scanning mode, the program analyzes the
contents of a file, namely, the format identifier in the file header.
Scan files by extension – In the scanning mode, the program takes into
account the scanned file extension.
T
Task – An action that has a name performed by a Kaspersky Lab
application.
Third party application – An anti-virus application by a third-party vendor
or a Kaspersky Lab's application not supporting administration via
Kaspersky Administration Kit.
U
Unknown virus – A new virus that is not recorded in the anti-virus
database. As a rule, Kaspersky Anti-Virus detects unknown viruses
using an heuristic code analyzer and objects containing these viruses
are identified as suspicious.
Updating – A function of Kaspersky Anti-Virus that updates/adds new files
(anti-virus database or program modules) retrieved from Kaspersky Lab
update servers.
Updating agents - computers that act as intermediate centers for
distributing updates and installation packages within the administration
groups.
V
Virtual drives (RAM drives) – A part of RAM emulating a normal physical
disk of a personal computer.
Virus activity threshold – number of viruses detected for a specified
time interval. When this number is exceeded, the situation is regarded as
a Virus outbreak (virus attack). This parameter is important for defining
virus epidemics because the administration can respond in a timely
fashion to new threats and take preventive measures to protect his/her
network.

APPENDIX B. KASPERSKY LAB
Founded in 1997, Kaspersky Lab has become a recognized leader in information
security technologies. It produces a wide range of data security software and
delivers high-performance, comprehensive solutions to protect computers and
networks against all types of malicious programs, unsolicited and unwanted email messages, and hacker attacks.
Kaspersky Lab is an international company. Headquartered in the Russian
Federation, the company has representative offices in the United Kingdom,
France, Germany, Japan, USA (CA), the Benelux countries, China, Poland, and
Romania. A new company department, the European Anti-Virus Research
Centre, has recently been established in France. Kaspersky Lab's partner
network incorporates more than 500 companies worldwide.
Today, Kaspersky Lab employs more than 450 specialists, each of whom is
proficient in anti-virus technologies, with 10 of them holding M.B.A. degrees, 16
holding Ph.Ds, and senior experts holding membership in the Computer AntiVirus Researchers Organization (CARO).
Kaspersky Lab offers best-of-breed security solutions, based on its unique
experience and knowledge, gained in over 14 years of fighting computer viruses.
A thorough analysis of computer virus activities enables the company to deliver
comprehensive protection from current and future threats. Resistance to future
attacks is the basic policy implemented in all Kaspersky Lab's products. At all
times, the company’s products remain at least one step ahead of many other
vendors in delivering extensive anti-virus coverage for home users and corporate
customers alike.
Years of hard work have made the company one of the top security software
manufacturers. Kaspersky Lab was one of the first businesses of its kind to
develop the highest standards for anti-virus defense. The company’s flagship
product, Kaspersky Anti-Virus, provides full-scale protection for all tiers of a
network, including workstations, file servers, mail systems, firewalls, Internet
gateways, and hand-held computers. Its convenient and easy-to-use
management tools ensure advanced automation for rapid virus protection across
an enterprise. Many well-known manufacturers use the Kaspersky Anti-Virus
kernel, including Nokia ICG (USA), F-Secure (Finland), Aladdin (Israel), Sybari
(USA), G Data (Germany), Deerfield (USA), Alt-N (USA), Microworld (India) and
BorderWare (Canada).
Kaspersky Lab's customers benefit from a wide range of additional services that
ensure both stable operation of the company's products, and compliance with
specific business requirements. Kaspersky Lab's anti-virus database is updated
every hour. The company provides its customers with a 24-hour technical
support service, which is available in several languages to accommodate its
international clientele.

Kaspersky Administration Kit

B.1. Other Kaspersky Lab Products
Kaspersky Lab News Agent
The News Agent is intended for timely delivery of news published by Kaspersky
Lab, for notifications about the current status of virus activity and fresh news. The
program reads the list of available news channels and their content from news
server of Kaspersky Lab with specified frequency.
The product performs the following functions:
•

It visualizes in the system tray the current status of virus activity.

•

The product allows the users to subscribe and unsubscribe from news
channels.

•

It retrieves news from each subscribed channel with the specified frequency and notifies about fresh news.

•

It allows reviewing news on the subscribed channels.

•

It allows reviewing the list of channels and their status.

•

It allows opening pages with news details in your browser.

News Agent is a stand-alone Microsoft Windows application, which can be used
independently or may be bundled with various integrated solutions offered by
Kaspersky Lab Ltd.
®
Kaspersky OnLine Scanner

The program is a free service offered to the visitors of Kaspersky Lab's corporate
website. The service allows an efficient online anti-virus scan of your computer.
Kaspersky OnLine Scanner runs directly from your browser. Thus, users can
quickly test their computers in case of a slightest suspicion of malicious infection.
Using the service, visitors can:
•

Exclude archives and e-mail databases from scanning.

•

Select standard/extended anti-virus databases for scanning.

•

Save a report on the scanning results in txt or html formats.

®
Kaspersky OnLine Scanner Pro

The program is a subscription service offered to the visitors of Kaspersky Lab's
corporate website. The service allows an efficient online anti-virus scan of your
computer and disinfection of dangerous files. Kaspersky OnLine Scanner Pro
runs directly from your browser. Using the service, visitors can:
•

Exclude archives and e-mail databases from scanning.

Appendix B

•

Select standard/extended anti-virus databases for scanning.

•

Save a report on the scanning results in txt or html formats.

Kaspersky Anti-Virus® 6.0
Kaspersky Anti-Virus 6.0 is designed to safeguard personal computers against
malicious software as an optimal combination of conventional methods of antivirus protection and new proactive technologies.
The program provides for complex anti-virus checks including:
•

•
•

Anti-virus scanning of e-mail traffic on the level of data transmission
protocol (POP3, IMAP and NNTP for incoming mail and SMTP for outgoing messages) irrespectively of the mail client being used as well as
disinfection of e-mail databases.
Real-time anti-virus scanning of Internet traffic transferred via HTTP.
Anti-virus scanning of individual files, directories or drives. In addition, a
preset scan task can be used to initiate anti-virus analysis exclusively
for critical areas of the operating system and start-up objects of Microsoft Windows.

Proactive protection offers the following features:
•

Control of changes within file system. The program allows users to
create a list of applications, which it will control on a per component basis.
It helps protect application integrity against the influence of malicious
software.

•

Monitoring of processes in random-access memory. Kaspersky AntiVirus 6.0 in a timely manner notifies users whenever it detects dangerous,
suspicious or hidden processes or in case when unauthorized changes in
standard processes occur.

•

Monitoring of changes in OS registry due to internal system registry
control.

•

Blocking of dangerous VBA macros in Microsoft Office documents.

•

System restoration after malicious spyware influence accomplished due
to recording of all changes in the registry and computer file system and an
opportunity to perform their roll-back at user's discretion.

®
Kaspersky Internet Security 6.0

Kaspersky® Internet Security 6.0 is an integrated solution for protection of
personal computers against the main information-related threats, i.e. viruses,
hackers, spam and spyware. A common user interface allows configuration and
management of all solution components.

Kaspersky Administration Kit

The anti-virus protection feature includes:
•

Anti-virus scanning of e-mail traffic on the level of data transmission
protocol (POP3, IMAP and NNTP for incoming mail and SMTP for outgoing messages) irrespectively of the mail client being used. The program
includes plug-ins for popular e-mail clients (Microsoft Office Outlook, Microsoft Outlook Express and The Bat!) and supports disinfection of their
e-mail databases.

•

Real-time anti-virus scanning of Internet traffic transferred via HTTP.

•

File system protection: anti-virus scanning of individual files, directories
or drives. In addition, the application can perform anti-virus analysis exclusively for critical areas of the operating system and start-up objects of
Microsoft Windows.

•

Proactive protection: the program performs constant monitoring of application activity and processes running in random-access memory preventing dangerous changes to the file system and registry, and restores
the system after malicious influence.
Protection against Internet-fraud is guaranteed owing to the ability to
recognize phishing attacks, which helps prevent confidential data leaks (first of
all, your passwords, bank account and credit card numbers), and block execution
of dangerous scripts on web pages, pop-up windows and advertisement
banners. The feature blocking charged phone calls helps identify software that
attempts to use your modem for hidden unauthorized connection to paid phone
services and prevents such activity.
®
Kaspersky Internet Security 6.0 registers attempts to scan the ports of your
computer, which frequently precede network attacks, and successfully defends
against typical hacker attacks. The program uses defined rules as a basis for
control over all network transactions tracking all incoming and outgoing data
packets. Stealth mode (owing to the SmartStealth™ technology) prevents
computer detection from outside. When you switch into that mode, the system
will block all network activity except for a few transactions allowed in userdefined rules.
The program employs complex approach to anti-spam filtering of incoming e-mail
messages:
•

Verification against black and white lists of recipients (including addresses
of phishing sites).

•

Inspection of phrases in message body.

•

Analysis of message text using a self-learning algorithm.

•

Recognition of spam sent in image files.

Appendix B

Kaspersky® Security for PDA
Kaspersky® Security for PDA provides reliable anti-virus protection for data
saved on various types of hand-held computers and smartphones. The program
includes an optimal set of anti-virus defense tools:
•

anti-virus scanner that scans information (saved both in internal memory
of PDA and smartphones or on memory cards of any type) on user demand;

•

anti-virus monitor to intercept viruses in files that are either copied from
other handhelds or are transferred using HotSync™ technology.

®
Kaspersky Security for PDA protects your handheld (PDA) from unauthorized
intrusion by encrypting both access to the device and data stored on memory
cards.

Kaspersky Anti-Virus Mobile
Kaspersky ® Anti-Virus Mobile provides antivirus protection for mobile devices
running Symbian OS and Microsoft Windows Mobile. The program provides
comprehensive virus scanning, including:
•

On-demand scans of the mobile device's onboard memory, memory
cards, an individual folder, or a specific file. If an infected file is detected, it is moved to Quarantine or deleted.

•

Real-time scanning – all incoming and outgoing files are automatically
scanned, as will as files when attempts are made to access them

•

Scheduled scans of data stored in the mobile device's memory

•

Protection from text message spam

Kaspersky Anti-Virus® Business Optimal
This package provides a unique configurable security solution for small- and
medium-sized corporate networks.

Kaspersky Administration Kit

Kaspersky Anti-Virus® Business Optimal guarantees full-scale anti-virus
protection3 for:
•

Workstations running Microsoft Windows 98/ME, Microsoft Windows
NT/2000/XP Workstation and Linux.

•

File servers running Microsoft Windows NT 4.0 Server, Microsoft
Windows 2000/2003 Server/Advanced Server, Microsoft Windows 2003
Server, Novell Netware, FreeBSD and Linux; Samba file storage

•

E-mail systems including Microsoft Exchange 2000/2003,
Notes/Domino, postfix , exim, sendmail, and qmail mail systems

•

Internet gateways: CheckPoint Firewall –1; Microsoft ISA Server 2000
Standard Edition, Microsoft ISA Server 2004 Standard Edition

Lotus

®
®
The Kaspersky Anti-Virus Business Optimal distribution kit includes Kaspersky
Administration Kit, a unique tool for automated deployment and administration.

You are free to choose from any of these anti-virus applications, according to the
operating systems and applications you use.
®
Kaspersky Corporate Suite

This package provides corporate networks of any size and complexity with
comprehensive, scalable anti-virus protection. The package components have
been developed to protect every tier of a corporate network, even in mixed
computer environments. Kaspersky® Corporate Suite supports the majority of
operating systems and applications installed across an enterprise. All package
components are managed from one console and have a unified user interface.
®
Kaspersky Corporate Suite delivers a reliable, high-performance protection
system that is fully compatible with the specific needs of your network
configuration.
®
Kaspersky Corporate Suite provides comprehensive anti-virus protection for:

•

Workstations running Microsoft Windows 98/ME, Microsoft Windows
NT/2000/XP Workstation and Linux;

•

File servers running Microsoft Windows NT 4.0 Server, Microsoft
Windows 2000, 2003 Server/Advanced Server, Novell Netware,
FreeBSD, Linux; Samba file storage

Depending on the type of distribution kit.

Appendix B

•

E-mail systems, including Microsoft Exchange Server 2000/2003, Lotus
Notes/Domino, sendmail, postfix , exim, and qmail mail systems

•

Internet gateways: CheckPoint Firewall –1; Microsoft ISA Server 2000
Enterprise Edition, Microsoft ISA Server 2004 Enterprise Edition

•

Hand-held computers (PDAs), running Symbian OS, Microsoft Windows
CE and Palm OS, and also smartphones running Microsoft Windows
Mobile 2003 for Smartphone and Microsoft Smartphone 2002.

®
Corporate Suite distribution kit includes Kaspersky®
The Kaspersky
Administration Kit, a unique tool for automated deployment and administration.

You are free to choose from any of these anti-virus applications, according to the
operating systems and applications you use.
®

Kaspersky Anti-Spam
®
Kaspersky Anti-Spam is a cutting-edge software suite that is designed to help
organizations with small- and medium-sized networks wage war against the
onslaught of unsolicited e-mail messages (spam). The product combines the
revolutionary technology of linguistic analysis with modern methods of e-mail
filtration, including DNS Black Lists and formal letter features. Its unique
combination of services allows users to identify and wipe out up to 95% of
unwanted traffic.
Installed at the entrance to a network, where it monitors incoming e-mail traffic
®
streams for spam, Kaspersky Anti-Spam acts as a barrier to unsolicited e-mail.
The product is compatible with any mail system and can be installed on either an
existing mail server or a dedicated one.
Kaspersky® Anti-Spam’s high performance is ensured by daily updates to the
content filtration database adding samples provided by the Company’s linguistic
laboratory specialists. Databases are updated every 20 minutes.
Kaspersky Security® for Microsoft Exchange 2003
Kaspersky Security for Microsoft Exchange performs anti-virus processing of
incoming and outgoing mail messages as well as messages stored at the server,
including letters in public folders and filters out unsolicited correspondence using
"smart" spam recognition techniques in combination with Microsoft technologies.
The application scans all messages arriving at an Exchange Server via SMTP
protocol checking them for the presence of viruses using Kaspersky Lab's antivirus technologies and for the presence of SPAM attributes. It filters out spam
based on formal attributes (mail address, IP address, letter size, heading) and
analyzes the content of messages and of their attachments using "smart'
technologies, including unique graphic signatures for identifying graphic SPAM.
The application scans both the message body and the attached files.

Kaspersky Administration Kit

Kaspersky® Mail Gateway
Kaspersky Mail Gateway is a comprehensive solution that provides complete
protection for users of mail systems. This application installed between the
corporate network and the Internet scans all components of e-mail messages for
the presence of viruses and other malware (Spyware, Adware, etc.) and
performs centralized anti-spam filtration of e-mail stream. The application
contains a number of advanced tools for filtering e-mail traffic by name and
MIME attachments and a series of tools that reduce the load on the mail system
and prevent hacker attacks.
Kaspersky Anti-Virus® for Proxy Servers
Kaspersky Anti-Virus® for Proxy Server is an antivirus solution for protecting web
traffic transferred over HTTP protocol through a proxy server. The application
scans Internet traffic in real time, protects against malware penetrating your
system while web surfing, and scans files downloaded from the Internet.
Kaspersky Anti-Virus® for MIMESweeper for SMTP
®
Kaspersky Anti-Virus for MIMESweeper for SMTP provides high-speed antivirus
scans of SMTP traffic on servers running Clearswift MIMESweeper.
The program is designed as a plug-in for Clearswift MIMESweeper for SMTP and
scans for viruses and processes incoming and outgoing e-mails in real time.

B.2. Contact Us
If you have any questions, comments, or suggestions, please refer them to one
of our distributors or directly to Kaspersky Lab. We will be glad to assist you in
any matters related to our product by phone or via email. All of your
recommendations and suggestions will be thoroughly reviewed and considered.
Technical
support

Please find the technical support information at
http://www.kaspersky.com/supportinter.html

General
information

WWW: http://www.kaspersky.com
http://www.viruslist.com
Email: sales@kaspersky.com

APPENDIX C. LICENSE
AGREEMENT
NOTICE TO ALL USERS: CAREFULLY READ THE FOLLOWING LEGAL
AGREEMENT (“AGREEMENT”) FOR THE LICENSE OF SPECIFIED
SOFTWARE
(“SOFTWARE”)
PRODUCED
BY
KASPERSKY
LAB.
(“KASPERSKY LAB”).
IF YOU HAVE PURCHASED THIS SOFTWARE VIA INTERNET BY CLICKING
THE ACCEPT BUTTON, YOU (EITHER AN INDIVIDUAL OR A SINGLE LEGAL
ENTITY) CONSENT TO BE BOUND BY AND BECOME A PARTY TO THIS
AGREEMENT. IF YOU DO NOT AGREE TO ALL OF THE TERMS OF THIS
AGREEMENT, CLICK THE BUTTON THAT INDICATES THAT YOU DO NOT
ACCEPT THE TERMS OF THIS AGREEMENT, AND DO NOT INSTALL THE
SOFTWARE.
IF YOU HAVE PURCHASED THIS SOFTWARE ON A PHYSICAL MEDIUM,
HAVING BROKEN THE CD'S SLEEVE, YOU (EITHER AN INDIVIDUAL OR A
SINGLE ENTITY) ARE CONSENTING TO BE BOUND BY THIS AGREEMENT.
IF YOU DO NOT AGREE TO ALL OF THE TERMS OF THIS AGREEMENT DO
NOT BREAK THE CD's SLEEVE ,DOWNLOAD, INSTALL OR USE THIS
SOFTWARE. IF YOU HAVE BROKEN THE CD'S SLEEVE OR OPENED THE
BOX, YOU WILL NOT BE ENTITLED TO RETURN THE SOFTWARE FOR
REFUND. SOFTWARE FOR HOME USE (KASPERSKY ANTI-VIRUS
PERSONAL, KASPERSKY ANTI-VIRUS PERSONAL PRO, KASPERSKY ANTIHACKER, KASPERSKY SECURITY FOR PDA) PURCHASED AS A
DOWNLOAD VIA THE INTERNET MAY BE RETURNED FOR A FULL REFUND
WITHIN 14 DAYS AFTER PURCHASE FROM KASPERSKY LAB, IT'S
AUTHORIZED DISTRIBUTOR OR RESELLER. OTHER PRODUCTS ARE NON
REFUNDABLE. THE RIGHT TO RETURN AND REFUND EXTENDS ONLY TO
THE ORIGINAL PURCHASER.
All references to “Software” herein shall be deemed to include the software
activation key (“Key Identification File”) with which you will be provided by
Kaspersky Lab as part of the Software.
1.
License Grant. Subject to the payment of the applicable license fees,
and subject to the terms and conditions of this Agreement, Kaspersky Lab
hereby grants to you the non-exclusive, non-transferable right to use one copy of
the specified version of the Software and the accompanying documentation (the
“Documentation”) for the term of this Agreement solely for your own internal
business purposes. You may install one copy of the Software on one computer,
workstation, personal digital assistant, or other electronic device for which the

100

Kaspersky Administration Kit

Software was designed (each, a “Client Device”). If the Software is licensed as a
suite or bundle with more than one specified Software product, this license
applies to all such specified Software applications, subject to any restrictions or
usage terms specified on the applicable price list or application packaging that
apply to any such Software applications individually.
1.1
Use. The Software is licensed as a single application; it may not be
used on more than one Client Device or by more than one user at a time, except
as set forth in this Section.
1.1.1
The Software is “in use” on a Client Device when it is loaded into the
temporary memory (i.e., random-access memory or RAM) or installed into the
permanent memory (e.g., hard disk, CD-ROM, or other storage device) of that
Client Device. This license authorizes you to make only as many back-up copies
of the Software as are necessary for its lawful use and solely for back-up
purposes, provided that all such copies contain all of the Software’s proprietary
notices. You will maintain records of the number and location of all copies of the
Software and Documentation and will take all reasonable precautions to protect
the Software from unauthorized copying or use.
1.1.2
If you sell the Client Device on which the Software is installed, you will
ensure that all copies of the Software have been previously deleted.
1.1.3
You shall not decompile, reverse engineer, disassemble or otherwise
reduce any party of this Software to a humanly readable form nor permit any
third party to do so. The interface information necessary to achieve
interoperability of the Software with independently created computer programs
will be provided by Kaspersky Lab on request on payment of its reasonable costs
and expenses for procuring and supplying such information. In the event
Kaspersky Lab notifies you that it does not intend to make such information
available for any reason, including (without limitation) costs, you shall be
permitted to take such steps to achieve interoperability provided that you only
reverse engineer or decompile to the extent permitted by law.
1.1.4
You shall not permit any third party to copy (other than as expressly
permitted herein), make error corrections to, or otherwise modify, adapt, or
translate the Software nor create derivative works of the Software.
1.1.5
You shall not rent, lease or lend the Software to any other person, nor
transfer or sub-license your license rights to any other person.
1.1.6
You shall not use this Software in automatic, semi-automatic or manual
tools designed to create virus signatures, virus detection routines, any other data
or code for detecting malicious code or data.
1.2
Server-Mode Use. You may use the Software on a Client Device or on
or as a server (“Server”) within a multi-user or networked environment (“ServerMode”) only if such use is permitted in the applicable price list or application

Appendix C

101

packaging for the Software. A separate license is required for each Client Device
or “seat” that may connect to the Server at any time, regardless of whether such
licensed Client Devices or seats are concurrently connected to or actually
accessing or using the Software. Use of software or hardware that reduces the
number of Client Devices or seats directly accessing or utilizing the Software
(e.g., “multiplexing” or “pooling” software or hardware) does not reduce the
number of licenses required (i.e., the required number of licenses would equal
the number of distinct inputs to the multiplexing or pooling software or hardware
“front end”). If the number of Client Devices or seats that can connect to the
Software exceeds the number of licenses you have obtained, then you must
have a reasonable mechanism in place to ensure that your use of the Software
does not exceed the use limits specified for the license you have obtained. This
license authorizes you to make or download such copies of the Documentation
for each Client Device or seat that is licensed as are necessary for its lawful use,
provided that each such copy contains all of the Documentation proprietary
notices.
1.3
Volume Licenses. If the Software is licensed with volume license terms
specified in the applicable application invoicing or packaging for the Software,
you may make, use or install as many additional copies of the Software on the
number of Client Devices as the volume license terms specify. You must have
reasonable mechanisms in place to ensure that the number of Client Devices on
which the Software has been installed does not exceed the number of licenses
you have obtained. This license authorizes you to make or download one copy of
the Documentation for each additional copy authorized by the volume license,
provided that each such copy contains all of the Document’s proprietary notices.
2.
Duration. This Agreement is effective for the period specified in the Key
File (the unique file which is required to fully enable the Software, please see
Help/ about Software or Software about, for Unix/Linux version of the Software
see the notification about expiration date of the Key File) unless and until earlier
terminated as set forth herein. This Agreement will terminate automatically if you
fail to comply with any of the conditions, limitations or other requirements
described herein. Upon any termination or expiration of this Agreement, you
must immediately destroy all copies of the Software and the Documentation. You
may terminate this Agreement at any point by destroying all copies of the
Software and the Documentation.
3.

Support.

(i)
Kaspersky Lab will provide you with the support services (“Support
Services”) as defined below for a period of one year following:
(a)

payment of its then current support charge, and;

(b)
successful completion of the Support Services Subscription Form as
provided to you with this Agreement or as available on the Kaspersky Lab

Kaspersky Administration Kit

102

website, which will require you to produce the Key Identification File which will
have been provided to you by Kaspersky Lab with this Agreement. It shall be at
the absolute discretion of Kaspersky Lab whether or not you have satisfied this
condition for the provision of Support Services.
(ii)
Support Services will terminate unless renewed annually by payment of
the then-current annual support charge and by successful completion of the
Support Services Subscription Form again.
(iii)
By completion of the Support Services Subscription Form you consent
to the terms of the Kaspersky Lab Privacy Policy which is attached to this
Agreement, and you explicitly consent to the transfer of data to other countries
outside your own as set out in the Privacy Policy.
(iv)

“Support Services” means

(a)

Daily updates of anti-virus database;

(b)

Free software updates, including version upgrades;

Virus detection and curing updates in 24-hours period.

4.
Ownership Rights. The Software is protected by copyright laws.
Kaspersky Lab and its suppliers own and retain all rights, titles and interest in
and to the Software, including all copyrights, patents, trademarks and other
intellectual property rights therein. Your possession, installation, or use of the
Software does not transfer any title to the intellectual property in the Software to
you, and you will not acquire any rights to the Software except as expressly set
forth in this Agreement.
5.
Confidentiality. You agree that the Software and the Documentation,
including the specific design and structure of individual programs and the Key
Identification File constitute confidential proprietary information of Kaspersky
Lab. You shall not disclose, provide or otherwise make available such
confidential information in any form to any third party without the prior written
consent of Kaspersky Lab. You shall implement reasonable security measures to
protect such confidential information, but without limitation to the foregoing shall
use best endeavors to maintain the security of the Key Identification File.
6.

Limited Warranty

(i)
Kaspersky Lab warrants that for [90] days from first download or
installation the Software will perform substantially in accordance with the
functionality described in the Documentation when operated properly and in the
manner specified in the Documentation.

Appendix C

103

(ii)
You accept all responsibility for the selection of this Software to meet
your requirements. Kaspersky Lab does not warrant that the Software and/or the
Documentation will be suitable for such requirements nor that any use will be
uninterrupted or error free;
(iii)
Kaspersky Lab does not warrant that this Software identifies all known
viruses, nor that the Software will not occasionally erroneously report a virus in a
title not infected by that virus;
(iv)
Your sole remedy and the entire liability of Kaspersky Lab for breach of
the warranty at paragraph (i) will be at Kaspersky Lab option, to repair, replace or
refund of the Software if reported to Kaspersky Lab or its designee during the
warranty period. You shall provide all information as may be reasonably
necessary to assist the Supplier in resolving the defective item;
(v)
The warranty in (i) shall not apply if you (a) make or cause to be made
any modifications to this Software without the consent of Kaspersky Lab, (b) use
the Software in a manner for which it was not intended or (c) use the Software
other than as permitted under this Agreement;
(vi)
The warranties and conditions stated in this Agreement are in lieu of all
other conditions, warranties or other terms concerning the supply or purported
supply of, failure to supply or delay in supplying the Software or the
Documentation which might but for this paragraph (v) have effect between the
Kaspersky Lab and your or would otherwise be implied into or incorporated into
this Agreement or any collateral contract, whether by statute, common law or
otherwise, all of which are hereby excluded (including, without limitation, the
implied conditions, warranties or other terms as to satisfactory quality, fitness for
purpose or as to the use of reasonable skill and care).
7.

Limitation of Liability

(i)
Nothing in this Agreement shall exclude or limit Kaspersky Lab’s liability
for (i) the tort of deceit, (ii) death or personal injury caused by its breach of a
common law duty of care or any negligent breach of a term of this Agreement,
(iii) any breach of the obligations implied by s.12 Sale of Goods Act 1979 or s.2
Supply of Goods and Services Act 1982 or (iv) any liability which cannot be
excluded by law.
(ii)
Subject to paragraph (i), the Supplier shall have no liability (whether in
contract, tort, restitution or otherwise) for any of the following losses or damage
(whether such losses or damage were foreseen, foreseeable, known or
otherwise):
(a)

Loss of revenue;

(b)
Loss of actual or anticipated profits (including for loss of profits on
contracts);

Kaspersky Administration Kit

104

(c)

Loss of the use of money;

(d)

Loss of anticipated savings;

(e)

Loss of business;

(f)

Loss of opportunity;

(g)

Loss of goodwill;

(h)

Loss of reputation;

(i)

Loss of, damage to or corruption of data, or;

(j)
Any indirect or consequential loss or damage howsoever caused
(including, for the avoidance of doubt, where such loss or damage is of the type
specified in paragraph (ii), (a) to (ii), (i).
(iii)
Subject to paragraph (i), Kaspersky Lab’s liability (whether in contract,
tort, restitution or otherwise) arising out of or in connection with the supply of the
Software shall in no circumstances exceed a sum equal to the amount equally
paid by you for the Software.
8.
The construction and interpretation of this Agreement shall be governed
in accordance with the laws of England and Wales. The parties hereby submit to
the jurisdiction of the courts of England and Wales save that Kaspersky Lab as
claimant shall be entitled to initiate proceedings in any court of competent
jurisdiction.
9.
(i)
This Agreement contains the entire understanding of the
parties with respect to the subject matter hereof and supersedes all and any prior
understandings, undertakings and promises between you and Kaspersky Lab,
whether oral or in writing, which have been given or may be implied from
anything written or said in negotiations between us or our representatives prior to
this Agreement and all prior agreements between the parties relating to the
matters aforesaid shall cease to have effect as from the Effective Date. Save as
provided in paragraphs (ii) - (iii), you shall not have any remedy in respect of an
untrue statement made to you upon which you relied in entering into this
Agreement (“Misrepresentation”) and Kaspersky Lab shall not have any liability
to the other than pursuant to the express terms of this Agreement.
(ii)
Nothing in this Agreement shall exclude or limit Kaspersky Lab’s liability
for any Misrepresentation made by it knowing that it was untrue.
(iii)
The liability of Kaspersky Lab for Misrepresentation as a fundamental
matter, including a matter fundamental to the maker’s ability to perform its
obligations under this Agreement, shall be subject to the limitation of liability set
out in paragraph 7(iii).

Source Exif Data:

File Type                       : PDF
File Type Extension             : pdf
MIME Type                       : application/pdf
PDF Version                     : 1.5
Linearized                      : No
Page Count                      : 104
XMP Toolkit                     : XMP toolkit 2.9.1-13, framework 1.6
About                           : uuid:e0ed2ea3-dc3c-4355-a6a7-49fce7839a78
Producer                        : Acrobat Distiller 6.0 (Windows)
Creator Tool                    : Acrobat PDFMaker 6.0 for Word
Modify Date                     : 2007:02:21 16:44:33+03:00
Create Date                     : 2007:02:21 16:26:33+03:00
Metadata Date                   : 2007:02:21 16:44:33+03:00
Document ID                     : uuid:933bd820-6f31-4db4-a16e-e49b097d3d8e
Format                          : application/pdf
Title                           : Microsoft Word - kasp6.0_ak_deployguid_EN_MP1.doc
Creator                         : 
Author                          :

EXIF Metadata provided by EXIF.tools

Kaspersky Lab Patio Umbrella Administration Kit 6 0 Users Manual Kasp6.0_ak_deployguid_EN_MP1

Navigation menu

Versions of this User Manual:

Views

Navigation