[KSWS 11.0.1.897: Application Database is extremely out of date]

Are computers being managed by KSC?
If yes, changing the task to download from the Internet, can you update the computers?
Is Network Agent communicating with KSC?

Hey there, I have the same issue encountered and NO, by changing the task to download from the internet doesn’t solve the problem. Yes Network agent is communicating with KSC.

I tried rolling back the database update and re-running the update task from internet but no use.

[Kaspersky Endpoint Security 11.6.0.394 and access to the server or to other servers too]

Hello there, 

Thanks for confirming. Then for the next steps you can check the logs or the events triggered when such blockage are encountered. Isolate the server and check for any such findings.

[Kaspersky Endpoint Security 11.6.0.394 and access to the server or to other servers too]

Hello,

what do you mean by “universal security policy settings are applied everywhere”. Kindly make sure you are using 2 different policies for servers and clients. And also, those policy must correspond their respective ones. Both the policies are different as far as there settings are concerned.

You can check this by going into the policy tab on managed devices. From my experience this happens when you use client policies on server.

[KSC network agent 12]

Hey there,

Are you remote deploying it or have it as an offline standalone package created from KSC?

[Web conferencing being blocked]

thanks for responding.  I have got this to work by adding exclusions into Trusted Applications and Scan Exclusions, where I ended up excluding the whole folder (thanks to Isabel from support).

The question is why is this happening now on and only on certain machines when it was working perfectly well before for everyone.  I don’t like the idea of excluding complete folders

If you have enable KSN in your client devices, When an application is started for the first time, the Host Intrusion Prevention component checks the security of the application and places it into one of the trust groups, data that is obtained through Kaspersky Security Network allows it to sort applications into groups with more accuracy and to apply optimum application privilege control rules.

These checks are performed every time the application is run, and it’s reputation is checked via KSN, if something is found odd or the version difference is found, KES may drop it to restricted or the default trusted group resulting the app to not work as you want it to.

[High CPU usage whit UDP/RTP traffic]

Please check if you are scanning the encrypted connection by going in KES policy<<general settings<<encrypted connection scan, if its checked, uncheck it.

I’ve found that settings takes a toll on processor.

And don’t worry your security is not compromised. It’s still protected.

[Web conferencing being blocked]

Hello There,

Ofcourse, you can use it without disabling HIP. What you must is, add the specific application as trusted in HIP option.

Go to your KES policy « advanced threat protection<<host intrusion prevention

Then go to Application rights, search there you app or the process that uses your mic or webcam. You can use the wild card to search and pin point your application. Mark it trusted and apply.

[Email-Worm.Win32.Brontok.q Infestation Problem]

Hello,

First try this step on one device with such large number of infection.

1. Download latest Kaspersky virus removal tool from website.

2.Disconnect it from network, and run the tool by booting up the device in safe mode!

3. Make sure you check box all disk drives option before starting the tool.

4. Let it run and check the results.

[KSC10 - What would happen if I delete a group, and then rename another group to match the first group? [MOVED]]

Hello,

You can do that. No issues!

[KSC 11 device search not finding devices]

I think it will search for windows machine. Not sure about Linux. Windows devices broadcast their NetBIOS name in the subnets and discover each other.

[KSC 11 device search not finding devices]

Hello,

Use network discovery in advance tab in KSC! Poll your devices from AD, subnets etc

[why not merge server and workstation versions ?]

Hello,

For the same reason, why client and server OS are different.

Different protection components and techniques are required to secure clients endpoints and server devices.

[VPN / RRAS ports are being blocked on Windows 2012 server]

Hello,

What does the Kaspersky events on this server shows when you are trying to connect or what does KSC events shows for this client.

Are you using the firewall component of Kaspersky if yes try stoping the component and check if you are getting through.

[Internet access for desktop app]

You can try that and check.

It blocks surfing web pages via browser, i hope it will allow using within the app. 

Rest you can try tweaking these settings and firewall plays a key role here.

[Set up Automatic Moving up of device to groups]

You got your answer!

It will get always be placed in unassigned group if device not connected to Security center for 70 days.

As you configured this setting in managed device group properties. Check my first response.

 

[Set up Automatic Moving up of device to groups]

Check events log of device in device properties of the device from KSC that what has happened that device is moved to unassigned group.

[Internet access for desktop app]

hello,

If you go to Essential Threat Protection, and select Firewall, selecting configure rules for network packets and data stream, you can select and control what a user can do or device as a whole.

For example you can block browse internet webpages, and more alike. Check if that it helps.

 

[Set up Automatic Moving up of device to groups]

Hello,

Please check you selected the correct boxes to enforce your settings. Uncheck Move only devices that do not belong to an administration group.

 

 

[Internet access for desktop app]

Hello,

Can I ask how you blocked internet using web control component via KSC?

I can suggest allowing internet and then blocking all apps that are not required, and using the only one that you require, using the application control and firewall component.

[Set up Automatic Moving up of device to groups]

Hello,

Are you facing the issue on all the groups?

If yes, can you show me the properties of one of them.

[Set up Automatic Moving up of device to groups]

Hello,

Can I see you rules snapshot under device discovery properties!

[Set up Automatic Moving up of device to groups]

Hello, 

First check the property of managed devices group by right clicking it. And see what is criteria set for moving devices to unassigned group and when.

Secondly, the rule that you've created for auto moving the devices from unassigned to required group. 

[Asking to renew the licenses after replacing with new key]

Hello Nadeem,

I hope you clicked the option where it says manually add the key in the client device. Even if the browser opens for renewal, you can ignore that go ahead with adding key.

Also make sure the key you are adding is for client device and not for security center. Check key property from KSC.

[Unable to view managed devices/workstations in Kaspersky Security Center 11 [MOVED]]

Hello,

Can you try disconnecting security centre and reconnecting it again. Check if that helps.

Second, check the add/remove column, and see if proper column lists are selected or not.

[Cannot start two tasks at the same time [MOVED]]

Hello,

Are you experiencing the issue with the update task or other tasks too?

As i suspect, you must have had a task for update created by you in the KSC that is trying to start with the default update task of KES. Don't worry though. Once database gets updated, and policies are sync, these error should go away.