raviparker

Hello, Restarting is recommended, but you can script it too so that they can automatically restart at a certain time.

Hello there, If this option of installing version 11.3 is reflecting in client device, that means it’s not managed by your KSC server or you are not managing update of modules using KSC. Note: KES version 11.3 is only compatible with KSC 12. Before installing or deploying this you need to upgrade your KSC too. Bring to unassigned devices to managed devices

Hello, Restarting the device will make those warning signs go away. Also, don’t worry about the protection of devices as they are still being protected by KES.

Hello, Try adding the same file in HIP as untrusted. Also make sure you blocked the file usage in application control to everyone.

Hello, Practically I've haven't faced any limitations to add the trusted device. I've more than 100 device currently added to it.

Hello, What does the firewall reports say? Or check Audit logs of this device.

Hello, If you click on download and info, there you can find the package and administrator guide in PDF. This version is for windows server.

You can find some in the link below. Endpoint security products are compatible with server 2019. https://support.kaspersky.com/corporate

Hello, I understood your concern. Check if this help, Go to your KSC and devices section where you can see your devices listed. Follow below Then select the list in column Arrange them as you please using up and down option on your right. And select OK.

Hello, Do you mean external ip of devices, and the devices are in which Kaspersky is installed?

Dear Kaspersky Team, One of our server is hit with Fuxsocy ransomware. The server is down as it is not booting up as all it’s file have been encryted. While there is another server that is showing signs of infections as ransom note has been created in each directory of the disk. I’m attaching you the GSI log and sample files from ransom for your review. I don’t how this infection came in. Please help is sorting it out. Moderator: Ransomware file deleted.

Yes! Is your KSC accessible from internet?

Hello, Did you try adding the license manually in one of the affected device?

Hello, Did you add the application in host intrusion prevention? Add the application as trusted there too and check. You can check the reports from client side using the application's report options or from the KSC from device event properties.

Yes, Default sync interval is 15 min, so 45 min before out of policy is enforced. I hope you have enabled this below option too in network agent policy.

Hello, Out of policy only gets activated when network agent is not able to connect security center. It tries three times, in the specified duration in the connection profile of network agent, before it applies out of policy. I suspect when you connect to internet using LTE modem, it's still able to connect KSC, and hence no out of policy applied. You need to change connection profile of network agent in the network agent policy. Define public network there, and it will work.

Hello, You can try checking for any windows updates that are pending or found for your server. I’ve found recent .NET framework updates have solved my problems.

Hello, Understood your issue! Go to KSC and the respective policy where KES are controlled. Click on properties, go to local task and then click task management. There you can check below. And tell me if it works.

Hello, Do you have a update task created in ksc? Because KSC should be able to control update database. In your case i suspect there is no Central update task or if it there the policy are not being enforce properly. Please check different devices, and see are they facing the similar issues?

But this is from client side, do you wish to change the settings to this machine only? If so, then you can select Run mode and change it to Manual!

Hello, Go to the update task of your in KSC, click configure, follow the below image and schedule it to manually.

Yes. You can schedule it in the configure option of the update task. There you can also choose the update source, either KSC or global update servers.

Hello, You can't completely disable update of database. But you can schedule it to your convenient time and change update source from KSC to Kaspersky global update server.

Hello, Unfortunately, as far as I know, you need to reinstall KSC if you want to change its name as it takes the name during first installation of KSC. Also if you are planning to do so, create a backup and then post installation restore it. That is one way.

Hello, Add excell, word alike from Microsoft to Host intrusion prevention settings. Tweak policies in file threat protection.