[Registry Editor in Kaspersky Rescue Disk 18]

That's really weird. :confused: Either Rescue Disk doesn't have access to the OS, but the scan seems to run smoothly - or it's another technical bug. If nobody else finds a solution here, I advise you to contact technical support. Another idea: create a new bootable USB device with a fresh download of rescue disk 18 and try again... Best regards Leon

[Error 27101 cannot uninstall encryption module [Moved]]

Hey, Objects and data may remain on the system hard drive after test operation of Authentication Agent only in exceptional cases. For example, this can happen if the computer has not been restarted after a Kaspersky Security Center policy with encryption settings was applied, or if the application fails to start after test operation of Authentication Agent. Please read the following articles and follow the appropriate steps. You should make a backup of your operating system before doing this:

1. About encryption of hard drives
2. Removing objects and data that remained after test operation of Authentication Agent

Of course, you can also simply reinstall the operating system, the drive encryption does not cause you any problems here. Cheers, Leon

[Error 27101 cannot uninstall encryption module [Moved]]

Hello, please provide us with a complete GSI report (including Windows logs) of the affected client. You can then share it via getsysteminfo.com. Best regards Leon

[KSC User Rights]

So, this is quote from the official release notes of KSC 11:

Additionally detailed the administrator rights. To run a report, you now need only the read permission in the "Reports management" area. A separate permissions area named "Management of administration groups" has been added to the "General features".

This means in fact that there was actually no option to display and edit reports in KSC 10 only. Just install the new KSC 11 on a new server and install the new Network Agents from there (as I said, we didn't do an in-place upgrade, but of course you can do that, too). Then you have the possibility to grant permission for reports and test the KSC 11 first instead of using it productively. Have a nice week, Leon

[Device Control in KES Cloud Console]

Okay, then it's a licensing question. As of April 2, 2019, a new solution is being sold that is offered in two options:

1. Kaspersky Endpoint Security Cloud (per user) version 8.0 and later
2. Kaspersky Endpoint Security Cloud Plus (per user) version 8.0 and later

The Kaspersky Endpoint Security Cloud (per user) and Kaspersky Endpoint Security Cloud Plus (per user) solution incorporates new protection components and a new licensing scheme. As you can see, the following features are not included in the normal cloud license:

1. Web Control
2. Device Control
3. Encryption Management
4. Patch Management

Contact your Kaspersky Lab partner or account manager or visit the website of Kaspersky Lab to purchase a Cloud Plus license. Kind regards, Leon

[Registry Editor in Kaspersky Rescue Disk 18]

Hey admin.kvsl, to open the Registry Editor:

1. In Kaspersky Rescue Tool, click Tools.
2. Select Registry Editor.

The Registry Editor tool will open. Update: I just tried this on a virtual machine, worked fine. Cheers Leon

[Device Control in KES Cloud Console]

Hey Navid, you'll find it at Management settings -> Device Control. Kind regards Leon

[KSC User Rights]

Hi, sorryfor my late answer. In KSC 10 you can only give a user or a group limited access to the reports, because in contrast to the new KSC version there is no own authorization option for reports only. However, you can implement your idea a little differently: You can only give the user or group read-only permissions to the KSC, but that also means that they cannot create or modify reports. I would advise you to upgrade to the new KSC 11 in the near future. We moved internally manually, so we didn't do a real upgrade on the same server to avoid bugs and are moving our clients one by one to the new administration server. However, here's the guide on how to create a read-only KSC user:[spoiler]1. Configure the KSC 10 interface by click on "View" and then on "Display security settings section". Restart the administration console after that. 2. Go to the properties of the administration server and there on "Security". 3. Add an internal or Windows user and modify his rights at Basic functionality to "Read". Also, if you set the "Modify" to the right, the user can also change other objects on the Administration Server.[/spoiler] I know the answer doesn't satisfy you 100%. Either you trust the user and give him or her permission to edit objects or you leave it at "read-only". Kind regards, Leon

[Cookie not accepted]

Das freut mich zu hören!? Bitte markiere die Lösung als Beste Antwort, so sehen andere Nutzer direkt wie sie das Problem beheben können. Hab ein schönes Wochenende, Leon

[Cookie not accepted]

Hi weischei, was für eine Meldung erhälst du? Wenn möglich, füge deinem nächsten Post bitte einen Screenshot hinzu. Ich verwende KIS 19, die Seite lädt bei mir einwandfrei. So fügst du bei der KIS 19 eine Ausnahme für die SSL/TLS-Inspection hinzu:[spoiler]1. In der Programmoberfläche auf das Zahnrad-Symbol (Einstellungen) 2. Unter "Erweitert" auf "Netzwerk" 2. Etwas scrollen und dann unter "Untersuchung von sicheren Verbindungen" auf "Ausnahmen anpassen" 3. Mit einem Klick auf "Hinzufügen" eine Adresse oder Domain hinzufügen, https:// ist hier nicht erforderlich. Mit einem erneuten Klick auf "Hinzufügen" bestätigen. [/spoiler] Liebe Grüße, Leon

[KSC User Rights]

Hi, I can build it for you in the lab and send you a step-by-step guide in this thread. Keep in mind that the members (except the Kaspersky Lab staff) are volunteers and we have to prioritize the work in our own companies. Therefore, there may always be delays in replies. :wink: Best regards Leon

[KSC11: possible issue with KB4493453 25 april 2019 update]

Hi GLFI69, that's strange, but I'm not surprised anymore about weird behavior of Windows updates in combination with Kaspersky Enterprise products... :grin: What are the specifications of your server on which KSC is installed? The current optimal requirements for KSC 11 and SQL Server installed on the same server for a network with < 50.000 devices are as follows:

1. CPU: 8 cores, 2.5 GHz
2. RAM size: 16 GB
3. Hard disk: 500 GB, SATA RAID
4. Network adapter: 1 gigabit

These requirements are of course extremely high compared to the minimum requirements. However, performance (CPU and RAM) should not be compromised. Keep us up2date, please! Leon :v_tone2:

[[?] Possible to get a notification when a computer connect to the KSC]

Well, now I'm getting back to you. I searched the KSC for a possible option and looked whether it could be done with the reports and the protection status ("OK, visible") - unfortunately without success. Maybe I'm completely blind and the option already exists, maybe someone else knows about it. I also see the problem in the number of synchronizations: you would receive a lot of e-mails / notifications, because the clients very often connect to the KSC during the day to synchronize themselves. If no other solution comes up, a script might be an option. Good luck and success Leon

[Pause and protection and control greyed out & Doesn't ask for a password.]

Hello Alper, we had the same problem. Forced synchronization helped out. Concerning your problem that users can quit the program or stop protection without entering a password: The user "Everyone" should get as few rights as possible. You have almost everything checked. It is best to select only the checkboxes for "View Reports" and "Restore access to data on encrypted files", if relevant. Kind regards, Leon

[KES 11 and secure boot]

Interesting, Klorell please keep us up 2 date, cause we also have some HP Notebooks in our company. ? Cheers, Leon

[Bankingseite im sicheren Browser öffnen]

Entweder so, oder du entfernst die Seite aus den Einstellungen des Safe Browsers. Dazu in der KIS Oberfläche auf "Sicherer Zahlungsverkehr" und dann bei der entsprechenden Seite auf der rechten Seite die Option "Sicheren Browser nicht starten" auswählen oder die Seite dort komplett entfernen. Liebe Grüße

[KSC User Rights]

It works the same on KSC 10, read this: https://help.kaspersky.com/ksc/sp3/en-US/67895.htm

[KSC User Rights]

Hey Hamid Ali, if you want to use a role created by Kaspersky you can assign the specific user the user role "Auditor". It permits all operations with all types of reports, all viewing operations, including viewing deleted objects (grants the Read and Modify permissions in the Deleted objects area). It does not permit other operations. Here's what you gotta do if you want to create a user role only for reports:

1. Go to the properties of the Administration Server (right click -> Properties)
2. Go to the menu item "User roles" in the properties of the Administration Server.
3. Add a new user role by clicking on "Add...".
4. Name the user role e.g. "User for reports".
5. Click on "Edit" to view the properties of the user role.
6. Go to Permissions and check the Allow box at "Access objects independently of their ACLs"* and "Forced report management".**

You can actively forbid the rest or leave the other columns empty. Then press OK. Go to "Security" in the properties of the Administration Server and add the corresponding Windows user. At the bottom right you can assign him your new role. Remember that the user must not be in the domain group of KLAdmins, Domain Administrators or KLOperators. Otherwise your created role will be overwritten. More information about user rights in KSC: https://help.kaspersky.com/KSC/11/en-US/89264.htm Have fun! :metal_tone2: Leon * I am not sure if it's possible without this permission to view reports somehow. When i unchecked this box, I got the error: insufficient permissions. ** i use the german version of KSC, the name of the specific properties could differ. Please excuse this. Look at the Screenshot for a better understanding.

[Surface book will not shutdown, while kaspersky is running]

Hi, since no Kaspersky Lab employee or another community member has responded yet, please try the following:

1. Update Kaspersky Total Security. You should always use the latest version of the product. You can find the latest version here.
2. Run Windows updates. You should always use the latest version of your operating system.
3. Remove Kaspersky Total Security from your surface book and reinstall it. Restart the device after uninstalling and after installing it. If Windows cannot be restarted as usual,, open the cmd as administrator and enter shutdown /r /f.

If the problem occurs again after reinstallation of KTS, try to disable the "Fast Startup" feature of Windows 10:

1. Go to the Settings section by typing its name in the search bar and clicking on the indicated icon;
2. Identify the System section and from there, go to the Power & Sleep menu;
3. Access the Additional Power Settings and from there, select the desired actions for each power button;
4. After that, identify the option that says “Change settings that are currently unavailable”;
5. In the drop-down list of options, scroll down until you reach the section called “Shutdown settings”;
6. From all the options with checked boxes listed in there, make sure that the one labeled as “Turn on Fast Startup” is unchecked;
7. Close everything and restart your computer for the changes to take place.

Please keep the community up to date in any case. Surface Books and Surface Pro notebooks are generally more repetitive than other notebooks running Windows 10, so it may also be a technical error that explicitly refers to Surface Books. You can therefore contact Kaspersky Support via the My Kaspersky Portal at any time! Good luck! :v_tone2: Leon

[Web anti-virus blocking my website [Closed]]

Hi Labmen, I'm sorry, I misjudged your question/problem. Of course, Schulte's approach is the best way to ensure that all users of Kaspersky Lab products have smooth access to your website. Sorry again for the misunderstanding! :innocent: Best regards Leon

[KSC 11 unable to connect to KSN]

Hi, sounds good - I'm glad I could help! :wink: However, you should set the setting so that the clients normally use the KSC as KSN proxy. The KSN proxy server caches processed data, thus reducing the load on the outbound channel and the time period spent for waiting for information requested by a client device. So if you haven't done it yet: It is important to check the box "Use KSN server if KSN proxy is not reachable" in the KES policy under "Advanced Threat Protection" - this helps to avoid warnings, since the clients can then query the KSN directly if necessary, i.e. not necessarily via the KSC. Also allow the administration server to use KSN as a proxy in it's properties -> KSN proxy server section. See you next time, Leon

[System Tray Icon missing on some devices]

Update: Created an Incident (INC000010389795). Answer from Support pending.

[Web anti-virus blocking my website [Closed]]

Hey Labmen, I assume you are using Kaspersky Internet Security 2019. You can try to add an exception to KIS Web Anti-Virus. Take the official help article and add your website as an exception: https://support.kaspersky.com/14308#block4 We will be happy to help you with any further questions you may have. :wink: Best regards Leon

[KSC 11 unable to connect to KSN]

Hey R.Clarke, first, to maintain KSN protection, you should allow clients to connect directly to KSN. In other words, disable the function for the KSC to act as a proxy. Then check locally whether the clients are connected to KSN by clicking "Threat Detection Technologies" on the KES 11 interface. Kaspersky Security Network should now be "Enabled, Available". Then check the network parameters KSC 11 is using to interact with KSN Services: https://support.kaspersky.co.uk/15052 Maybe you have to change some rules on your firewall. Kind regards, Leon

[System Tray Icon missing on some devices]

I have always applied Policies that the users see very little of KES.. e.g when they try to open an website that fails under restricted categories..they have to trust that it is doing it's job in the background..

Hey ametushi, your approach has huge advantages for us as administrators, but our users (especially the technical staff) are used to get at least feedback from antivirus software or being able to manually perform group tasks outside the company. Of course we can try to keep the KES interface as minimalistic as possible, even hide the system tray icon in general. However, this does not solve the actual problem as it is a technical bug.:expressionless: I hope, I can send the GSI file somehow to Nikolay arinchev or some other Kaspersky Lab Staff, but as I said: the upload does not work here in the community for me. As a last way out I only see to contact the technical support. Kind regards, Leon