Jump to content

Cesare

Members
  • Posts

    51
  • Joined

  • Last visited

    Never

Everything posted by Cesare

  1. Hi, FDE, FLE and Bitlocker Management are not installed automatically: you have to configure the installation package in advance (of course if you’re deploying KES via KSC). In order to add FDE module the easiest way is to create and run a “Change application components” task from KSC (it’s a task related to KES for Windows) Cesare
  2. FDE driver is klfde.sys and is stored within %systemroot%\System32\Drivers\ path: check if it’s present or not. The open an administrative cmd session and execute this command: sc query klfde.sys The output will be self-explanatory Not “blocks” but “locks” :) If the status is “no encryption policy specified” there might be a problem with the policy application itself (either the FDE module has not been installed at all or the policy has not been properly edited...black locks not locked, for example) “so far i’ve used the FDE test tool only”….but you wrote you’re working with KES! Have you installed KES for Windows or not?
  3. Hi, first: did you install FDE module? Second: did you close the black locks within KES policy encryption section? Third: looking at this machine’s events (within KSC Console, i mean), are there any entries related to encryption errors? Fourth: KSC Console>select the testing machine….what does the “Encryption status” field state within the gray left pane? Cesare
  4. Hi, no it doesn’t. In the past there was support to Cisco NAC and MS NAP but they both are not supported anymore. Cesare
  5. Hi, you did not mention to work with KES Cloud ;) Unfortunately this platform does not provide any remote customizedprovisioning feature. Cesare
  6. Hello, take a look at this tech note: https://support.kaspersky.com/12765 Cesare
  7. Hi, as far as i know, KSWS does not host any “BD-like” protection component. This is the reason why K presales are today advising to work with KES, where\when possible, instead of KSWS if you want to give more importance\priority to security rather than resource saving. Cesare
  8. Hi, are you sure port 13292TCP is open on the KSC server? Could you please post the output of the following command? Netstat -an | findstr 13292 Are you testing that connection within your wifi network or are you working “over Internet”?
  9. Hi, first thing is checking if all the involved services are up and running. Then you can dive into the system event logs (those related Kaspersky, of course) looking for specific warnings\errors. It might be a problem related to the corruption\inconsistency of the backup you’ve just restored. Cesare
  10. I guess the next step would be analizying a GSI log from that machine
  11. Hi, maybe there are some leftovers from the previous installation of NA. You can try to remove them by following this tech note: https://support.kaspersky.com/13088 Cesare
  12. Look….latest version of this plugin is 10.8.3.42: try to install it (https://support.kaspersky.com/9333#block7)
  13. No, that is the application version….plugin may differ from it Administration server>Properties>Advanced>Details of application management plug-ins Here you can find the plugin version related to that KSC console (plugins refer to KSC console not to KSC server). Anyway it seems that you’re working with a former plugin. You can download the latest one from 9333 KB tech note
  14. ok...could you please check which KS4Mobile plugin you have installed in?
  15. Hi, as far as i know both KS for Mobile (protection for Android) and iOS’s MDM feature do allow to work in whitelisting mode (screenshots attached). Bear in mind that for iOS devices should be in supervised mode. Cesare
  16. Hi, if you wanna temporarily fix this problem you need to open a ticket to K Corporate Support portal, describe your scenario and ask for the “reset_wus_tables” script: this will clean up your DB from MS metadata. Cesare
  17. Hi, KS for Windows Server is mandatory if you deal with terminal server infrastructures or clusterized ones. Moreover the features provided by this product depend on the license you’re going to activate in: https://support.kaspersky.com/15634 IMHO, if those servers are not RDS\TS or members of a cluster you can choose between KS and KES. KS is developed for server OSs and in most cases is lighter than KES…..but KES (11.5) is providing an higher level of security expecially if we talk about cryptomalwares: in fact, KS, if i’m not wrong, does not provide any behaviour analisys component. Bye Cesare
  18. Well, let me say that probably you’re not seeing the whole picture in the proper way. We’re not talking about a problem\bug that has been patched thanks to the instructions i’ve sent to you. In fact, the hosting resource is the online product manual, not the troubleshooting section of the KB (support.kaspersky.com). This means that this is a KNOWN requirement and it is supposed that, when you install KSC from scratch, you should have read that manual (or at least a section important as “Preparation for deployment”) in advance in order to avoid any potential problem. The concept is: if you do everything needed to avoid misconfigurations and you still get a problem, you have all the rights to blame the whole world (more or less)...otherwise….;) Cesare
  19. Hello, maybe it would be helpful\enough to read this tech note\requirement: https://support.kaspersky.com/KSC/12/en-US/92403.htm Cesare
  20. i’m attaching a screenshot of the KES policy exclusion rule i’m talking about (of course you can change the EXE :))
  21. well, if KES is managed via KSC policy you can edit the policy itself! If you’re not able to edit it (maybe because you do not have access to KSC Console) you can try to disable the policy from being applied locally: this would be possible if KES was psw protected and, of course, you know that credential (username+psw). What i do not understand is how you’ve been able to locally edit KES firewall while you’re not able to work on the trusted zone...maybe it’s a matter of locks...
  22. Hello, as far as i know KES10\11 supports FTP File Transfer passive mode only. If you wanna work in active mode you shall add ftp.exe to trusted applications list and set both remote IPs and related listening ports (20 and 21) (option "Do not scan network traffic"). Cesare
  23. Hi, as far as i know today there’s no way to recover that key via KES Cloud Console: you have to open a ticket on the Company Account helpdesk portal and ask for it. M
  24. Hi, IMHO it has no sense running NA12 along with KSC Server 11 (while it may happen the contrary). If i’m not wrong, even talking about crossing versions, KSC Console 12 does not connect to KSC Server 11…….so i guess that, in the same way, NA12 may not work at all with Server 11. M
×
×
  • Create New...