Kaspersky EDR Optimum Latest Topicshttps://forum.kaspersky.com/forum/kaspersky-edr-optimum-177/Kaspersky EDR Optimum Latest TopicsenNumber of licenses to use Kaspersky EDR Optimum in the cloudhttps://forum.kaspersky.com/topic/number-of-licenses-to-use-kaspersky-edr-optimum-in-the-cloud-39474/ I was researching Kaspersky EDR Optimum as I was interested in the plans. Additionally, he would like the use of the cloud resource. But I heard that to use the cloud I need 300 licenses. Is this true? I would like to know if there is a minimum and maximum license limit to use in the cloud as I didn't find any information on the internet, much less in the datasheet.

]]>39474Fri, 01 Mar 2024 18:21:55 +0000Exploit.Win32.generichttps://forum.kaspersky.com/topic/exploitwin32generic-38833/ We recently encountered an issue regarding the identification of Exploit.Win32.Generic on Office files.

This file is important and related to the administrative section. Despite having Optimum EDR, there is no capability to examine the exploit method and address the issue.

]]>38833Sat, 27 Jan 2024 11:39:33 +0000Difference between KES block and add IoC by ourselves.https://forum.kaspersky.com/topic/difference-between-kes-block-and-add-ioc-by-ourselves-38602/ Hi friends:

I have read the following online help about indicators of compromise: https://support.kaspersky.com/KESWin/11.7.0/en-US/213408.htm

Hi Kaspersky:
 
We have Kaspersky EDR optimum which let us add IoC from security center.
I have questions:
 
1. If KES can detect and block a certain malicious code or activity. Do we need to add it to IoC?
2. What's the difference between KES block and IoC block?
 
In my opinion, if a certain malicious code is found by our team but KES has not detect it, we should add IoC in our organization so it will be blocked ASAP. If we wait until KES block, it will casue some damage. Also, some activities is not KES responsibilities like "unsuccessful attempts to sign in". These suspicious activities should be blocked by people.
 
Is this true?
]]>38602Wed, 17 Jan 2024 05:38:19 +0000ALERTS section of the EDR modulehttps://forum.kaspersky.com/topic/alerts-section-of-the-edr-module-36299/ Hello, good afternoon, I am using the web version 15 LINUX but from what I have seen I cannot find the ALERTS section of the EDR module in the console, does anyone know how to activate its display again? If I go to the reports there I do see the EDR module but it is difficult for me to see the reports to interact with the EDR module

firefox_kjv23HtKK6.png.7de22f00cffa69a073004b4831516230.pngfirefox_WZaBB8B3nI.thumb.png.f94cc94f9be96744aabcca46b0dbc280.png

]]>36299Fri, 29 Sep 2023 16:15:00 +0000EDRO - Problem with licensehttps://forum.kaspersky.com/topic/edro-problem-with-license-33074/ I did the EDRO deployment on several devices, some have "FAILURE" in component change. Checking they have the correct license but they show "INCOMPATIBILITY WITH THE LICENSE" and in events it shows that the endpoint is being updated, when it is not (IT WAS VERIFIED).

When removing and installing the endpoint again, it works normally again. How to fix this problem?

]]>33074Thu, 27 Apr 2023 16:44:18 +0000EDRO - Problem with license (Kaspersky Endpoint Security for Business ADVANCED)https://forum.kaspersky.com/topic/edro-problem-with-license-kaspersky-endpoint-security-for-business-advanced-35447/ I see Kaspersky Endpoint Security for Business ADVANCED contains EDRO.

And I activated Kaspersky Endpoint Security 12.1.0.506 by KSC 13.2.

It shows EDRO not covered by license on Kaspersky Endpoint Security.

WHY ?

endpoint-advanced.PNG

]]>35447Thu, 10 Aug 2023 03:36:49 +0000USB lock with Kaspersky Endpoint security for windowshttps://forum.kaspersky.com/topic/usb-lock-with-kaspersky-endpoint-security-for-windows-33267/ I need to know how I can carry out the usb blocking policy but for a specific device. It doesn't work for groups or do it per user

]]>33267Mon, 08 May 2023 17:37:01 +0000Task IOC SCANhttps://forum.kaspersky.com/topic/task-ioc-scan-31778/ Hi, I created an IOC task in the KasperskySecurity Center web console and ran the Scan IOC task. When the scan finished, it turned out that Google Chrome and Notepad were removed from the computer. I would like to know if there is a solution to this problem.

]]>31778Fri, 17 Mar 2023 07:34:29 +0000Install Kaspersky EDRhttps://forum.kaspersky.com/topic/install-kaspersky-edr-31742/ I am installing Kaspersky EDR. I installed Central Storage 1, then I installed Central Process 1. The problem appeared when I installed Process 2 after that. The error message "during node authorization kaspersky" appears. How can I fix this error. I use Cluster for my model

]]>31742Wed, 15 Mar 2023 02:20:55 +0000How to enable EDR optimum on installed kasperky for Windows Serverhttps://forum.kaspersky.com/topic/how-to-enable-edr-optimum-on-installed-kasperky-for-windows-server-30589/ Hi,

i can't find out how to enable EDR optimum on installed  kasperky for Windows Server.

I followed this video for the client, but it seems doesn't work for server.

 

]]>30589Fri, 13 Jan 2023 09:14:32 +0000EDRO - Incident Cardhttps://forum.kaspersky.com/topic/edro-incident-card-29932/ I have some problems, i have EDR in my organization. I made some tests using a EICAR and i could see the "incident card", but now when i try open this doesn't happen. Anyone now how can i fix this?

 

]]>29932Mon, 12 Dec 2022 12:45:00 +0000How to know that EDR is deployed on client side ?https://forum.kaspersky.com/topic/how-to-know-that-edr-is-deployed-on-client-side-29121/ Hi,

All is in the title :

How to know that EDR is deployed on client side ?

 

Thank !

]]>29121Thu, 10 Nov 2022 10:16:56 +0000