[KSC User Rights]

Hey Hamid Ali, if you want to use a role created by Kaspersky you can assign the specific user the user role "Auditor". It permits all operations with all types of reports, all viewing operations, including viewing deleted objects (grants the Read and Modify permissions in the Deleted objects area). It does not permit other operations. Here's what you gotta do if you want to create a user role only for reports:

1. Go to the properties of the Administration Server ( right click -> Properties)
2. Go to the menu item "User roles" in the properties of the Administration Server.
3. Add a new user role by clicking on " Add...".
4. Name the user role e.g. "User for reports".
5. Click on "Edit" to view the properties of the user role.
6. Go to Permissions and check the Allow box at "Access objects independently of their ACLs"* and "Forced report management".**

You can actively forbid the rest or leave the other columns empty. Then press OK. Go to "Security" in the properties of the Administration Server and add the corresponding Windows user. At the bottom right you can assign him your new role. Remember that the user must not be in the domain group of KLAdmins, Domain Administrators or KLOperators. Otherwise your created role will be overwritten. More information about user rights in KSC: https://help.kaspersky.com/KSC/11/en-US/89264.htm Have fun! :metal_tone2: Leon * I am not sure if it's possible without this permission to view reports somehow. When i unchecked this box, I got the error: insufficient permissions. ** i use the german version of KSC, the name of the specific properties could differ. Please excuse this. Look at the Screenshot for a better understanding.

Thank you very much for your response. I reckon this feature options are for KSC 11. Could you please guide me according to KSC 10.5. Thanks

[KSC User Rights]

Dear Support, Greetings, Im using KSC Adminstration Server 10.5, i want to assign user a role only for Reporting and customizing the values of Reports. What role or rights should i assign the user ? Thanks

[KSN Server Unavailable]

Dear Konstantin, Kindly guide on this issue. Waiting for your response. Thanks

[KSN Server Unavailable]

Dear Support, Waiting for your kind response. Thanks

[KSN Server Unavailable]

HI, Do you use any network filtration software on hardware in your environment? What KES 11 version do you use? Thank you!

Also i have telnet the port 13111 from affected device and it is successfully connecting with KSC server.

[KSN Server Unavailable]

HI, Do you use any network filtration software on hardware in your environment? What KES 11 version do you use? Thank you!

Dear Konstantin, Thanks for your response. Firewall is being used in the environment.

KES 11.0.1.90

KES 11.0.0.6499

KES 10 SP2

KES 10 SP1 MR2

Thanks

[KSN Server Unavailable]

Dear Support, Greetings, In a network, there are more than 70% devices with continuous error "KSN Server Unavailable". Following things have been performed as a troubleshooting:

1. I have recreated the policies for all KES versions.
2. I have disabled and then enabled KSC component.
3. I have checked KSN connection from KSC Administration Server properties option which in connected perfectly.
4. I have also disabled USE KSN PROXY option from KES policies but still no effect.
5. I also disabled PROXY setting from KES 11.

Also kindly confirm that client devices share KSN data with Kaspersky Lab or with KSC Server ? KSC is upgraded to version 11 but previously when KSC 10.5 was being used, same error was prompting on majority of devices. Waiting for your cooperation as usual. Thanks KES Versions: KES 11 KES 10 SP2 KES 10 SP1 MR2

[KES installation through shared local folder]

Ok the issue was resolved by assigning Update agents and the remote installation (By installing through Update agent option in installation task) and database update was also being deployed through it. Thanks You can mark this as close.

[Application Hash Auto Calculation Issue]

Ok noted. Thanks

[Application Hash Auto Calculation Issue]

Hi Hamid Ali, and welcome to the new Kaspersky Community. I am just curious about this as you seen to covered all areas, great work. I am just wondering maybe you need to add a new "trigger rule" so it will "fetch" the conditions of the "mentioned path" Just a thought. Meanwhile take a look below to refresh your mind.https://help.kaspersky.com/KESWin/11/en-US/128032.htm Thank you.

Dear KarDip, I just checked that the rule worked after i mentioned the path "C:" , it fetched number of "EXE" files. But what is surprising that when mentioning "DESKTOP" path its not fetching any file although as it can be seen in attached snap there are number of EXE files. What could be the reason behind it ? Thanks

[Devices count variation]

Once i perform this on customer side and will definitely inform you. Thanks

[Start/Stop Kaspersky Services]

For all others who are looking for the same, here it is: "net stop klnagent" - To Stop Network Agent "net start klnagent" - To Start Network Agent "C:\Program Files (x86)\Kaspersky Lab\Network Agent\klnagchk -restart" - To Restart Network Agent

[Application Hash Auto Calculation Issue]

Dear Support, I want to calculate the hashes of executables by applying "AUTOMATIC HASH CALCULATION CATEGORY OF EXECUTABLES FILES FROM FOLDER" (snapshot attached herewith). Although i have selected the path where executables and scripts are located but still despite applying it for so long time and even after "SCAN FOLDER NOW", it is not collecting any data. It is to be noted that another rule is working perfectly fine which is auto calculating hashes from different devices. Kindly find the attached snaps of settings i have applied. Thanks KSC Version 10.5 and 11

[Devices count variation]

Dear KarDip, Yeah can understand you workload so no worries. Let me try your suggestions. Thanks

[Devices count variation]

Dear KarDip, Waiting for your response. Thanks

[Devices count variation]

Hi Hamid Ali well i presumed you was using Endpoint Security. We are not mind readers to illegible writing of your issue. Maybe show screen snip of problem. Thank you

Ohh apologies i missed out to mentioned the versions. Here it is : KSC Version 10.5 Patch A Client devices installed with Kaspersky Embedded 2.0/2.1. Devices with status "Protection is off", "Database are outdated" and "Kaspersky License Key" count keep on variation after some time. For e.g if the count is 25 but after few minutes it suddenly shoots to 50 and 80 and then it returns back to 30. Not sure why is this happening. Thanks

[Devices count variation]

Hi,welcome to the new Kaspersky Community. Do you have "auto start" on or disabled? Thank you.

Dear KarDip, Auto start of what ? Thanks

[Devices count variation]

Dear Support, Greetings, There is an strange issue that the devices that appears in "Protection is off", "Database are outdated" and "Kaspersky License Key" count keep on variation after some time. For e.g if the count is 25 but after few minutes it suddenly shoots to 50 and 80 and then it returns back to 30. Not sure why is this happening. Actually this issue is occurring with our 3 major clients. Kindly guide regarding this. Thanks

[Start/Stop Kaspersky Services]

Dear Nikolay, Waiting for your response. Thanks

[Kaspersky Encryption]

Please use that article to recover data encrypted with BitLocker.

Dear Nikolay, Thanks for the response. Let me rephrase the query please. There is a MBAM server which also encrypts using BitLocker Encryption technology, if i have encrypted using Bitlocker encrypting through Kaspersky, can MBAM encrypts or decrypts the same devices as it is also using the same technology/algorithm ? Thanks

[Kaspersky Encryption]

Hi, Please follow the article to decrypt the drive and then you can recover or reinstall OS.

Thanks for the info. Kindly also guide, MBAM server which also encrypts by using BitLocker Encryption technology, if i have encrypted using Bitlocker encrypting through Kaspersky, can MBAM encrypts or decrypts the devices as it is also using the same technology/algorithm. Kindly guide Thanks

[Start/Stop Kaspersky Services]

The thing is, that there is no way hide Network Agent service, Could you please provide us with klnagchk output?

The snapshot which i have sent you, if the highlighted checkbox is selected and then installed with these settings on the device, then Network Agent service is hidden from SERVICES.MSC, i have done this thing on many devices. Thanks

[KES installation through shared local folder]

I would suggest to use a slave server or distribution points (for smaller sites). I would suggest to contact your reseller to get help.

There are numerous remote site so its impossible to build 100+ slave server for this purpose. Kindly guide more about distribution point for remote installation. Thanks

[Start/Stop Kaspersky Services]

Could you please provide us with Network agent installation logs? Please refer to the article to figure out how to collect them.

Actually KES application and Kaspersky Network Agent is running perfectly fine. But i just wanted a way to restart the service of Network agent as it is not being displayed in services.msc. Thanks

[Start/Stop Kaspersky Services]

https://support.kaspersky.com/11336 might be helpful

Thanks for the info. But it contains only Kaspersky Endpoint Application parameters. I need Kaspersky Network Agent Start / Stop service command. Thanks