Search the Community

Advice and Solutions (Forum Knowledgebase) Disclaimer. Read before using materials. SNMP daemon on SVM should have the following default settings: protocol version: v2c rocommunity name: public listening address and port: 0.0.0.0:161 access type: read only transport: UDP logging: syslog The following statistics can be received from SVM: # Description Name Identifier 4.1 CPU Statistics UCD-SNMP-MIB::systemStats 4.2 Memory Statistics UCD-SNMP-MIB::memory 4.3 Load average statistics UCD-SNMP-MIB::laTable 4.4 Disk statisitcs HOST-RESOURCES-MIB::hrStorageTable 4.5 Network statistics IF-MIB::ifTable 4.7 Amount of desktop VMs connected KSVLA-MIB::ksvlaProtectedDesktopCount 1.3.6.1.4.1.23668.1491.1539.1.1 4.8 Amount of server VMs connected KSVLA-MIB::ksvlaProtectedServerCount 1.3.6.1.4.1.23668.1491.1539.1.0 4.9 ODS running status: - in progress (if all ODS Tasks are running) - waiting (if at least one ODS task is waiting for processing) - none (if no ODS tasks are running/waiting at all) KSVLA-MIB::ksvlaODSStatus 1.3.6.1.4.1.23668.1491.1539.0.0 4.10 ODS queue lenght: amount of VMs awaiting ODS processing KSVLA-MIB::ksvlaODSQueueLenght 1.3.6.1.4.1.23668.1491.1539.0.1 4.11 Amount of simualtaneously running ODS tasks KSVLA-MIB::ksvlaODSTaskCount 1.3.6.1.4.1.23668.1491.1539.0.2 4.12 Current percent of an allowed physical memory consumption - In case of watchdog is on use WDSERVER_MAX_MEM const from ScanServerLaunch.sh as maximum - In case of watchdog is off use 100% as maximum KSVLA-MIB::ksvlaMemoryConsumption 1.3.6.1.4.1.23668.1491.1539.3.0 4.13 Current percent of an allowed swap consumption - In case of watchdog is on use WDSERVER_MAX_SWAP const from ScanServerLaunch.sh as maximum - In case of watchdog is off use 100% as maximum KSVLA-MIB::ksvlaSwapConsumption 1.3.6.1.4.1.23668.1491.1539.3.1 4.14 Main processes state (running/stopped): -- scan server daemon KSVLA-MIB::ksvlaScanServerStatus 1.3.6.1.4.1.23668.1491.1539.2.0 -- klnagent daemon KSVLA-MIB::ksvlaKlnagentStatus 1.3.6.1.4.1.23668.1491.1539.2.1 -- nginx daemon KSVLA-MIB::ksvlaNginxStatus 1.3.6.1.4.1.23668.1491.1539.2.2 -- watchdog KSVLA-MIB::ksvlaWatchdogStatus 1.3.6.1.4.1.23668.1491.1539.2.3 Change SNMP community name Edit file /etc/snmnp/snmpd.conf Change public into the string recommunity on your own Save changes Restart SNMP daemon - systemctl restart snmpd Move on SNMPv3 Stop SNMP daemon - systemctl stop snmpd Launch the command - net-snmp-config --create-snmpv3-user -ro -a "authpass" -x "privpass" -X AES -A SHA "user" "authpass" is the private key/password for generating HMAC when connecting to snmpd, "privpass" is the private key/password for encrypting snmp traffic, "user" is the username for snmpd. "authpass" and "privpass" we can say passwords, which should be generated by you own "user" - user name for snmpd This command will make mpdifications into two files - /etc/snmp/snmpd.conf and /var/lib/net-snmp/snmpd.conf Restart SVM

Hello mikethebike, Your very welcome. I'm very happy to work with you. (A) Why? Ways to activate SafeMoney Secure Keyboard (other than Shift, Ctrl and Alt keys + P) 1. Thru KIS (application) SafeMoney 2. Thru (browser) KIS Protection extension (B) The issue in not SafeMoney Secure Keyboard (1) The issue is Secure Data Input "popup", in secure fields the Secure Data Input "popup" should be visible (2) The second related issue is, minuscule Keyboard that "sometimes" displays in profile/password fields, the "sometimes" is the problem, in secure fields the mini KB should be visible. (C) (a) Yes (b) No. (D) Popup/mini Keyboard issues have been with the Lab since 2018 - I suggest we (all) don't hold our breath (unfortunately). Hope this helps? Please clarify (A)? Thank you, all the best:pray_tone3: --- The Secure Keyboard Input limitations in Kaspersky Internet Security 20 documentation, remains relevant: KIS Secure Keyboard Input component operates with the following limitations: The feature supports Internet Explorer, Microsoft Edge, Mozilla Firefox, Mozilla Firefox ESR and Google Chrome. To use Secure Keyboard , Kaspersky Protection extension must be installed in the browser. Protection only works for the pages that meet the following requirements: The page is in the list of URLs or category that require input protection. The page is opened in the Protected Browser. The page is not in the exclusions list. The page contains the password entry field, and the Password entry fields on all websites checkbox is selected in the application settings. To check if the checkbox is selected, got to Advanced → Secure Keyboard Input. In the Secure Keyboard Input section, click Edit categories. Protection only works for the fields that meet the following requirements: The field is single-line and corresponds to the HTML tag. The type attribute value is not hidden, the display item does not have the value “none” in CSS styles. The field is not of the submit, radio, checkbox, button, or image type. The field is not read-only. The field can be edited (focused upon). If the field has the maxlength attribute, you must enter at least three characters. Protection does not work under the following conditions: Google Japanese Input or ATOK is installed. Your computer is running Windows 7 and the field is not a password entry field. Browser is open through Sandboxie. Autofill does not work in Internet Explorer. After the installation of Kaspersky Internet Security, until the first computer reboot the application does not intercept the first character entered by the user (in all applications). How to protect data entered from the keyboard with Kaspersky Internet Security 20

Thanks for taking the trouble to try and help me. I am sure it is me who may be slow to comprehend but I had a bit of difficulty following your examples in terms of what this means for my situation. Can I say what I think you mean and ask that you confirm? I use Chrome and Safe Money and as I said I am still on KIS 2019. On my online banking site and other sites such as Amazon and other online retailers where I make payments I enter these in Safe Money. Once in any of my Safe Money sites I use the Secure Keyboard to login in. Currently on KIS 2019 I find that on any Safe Money site I can only get the Secure Keyboard by simultaneously pressing Shift,Ctrl and Alt keys with P to obtain the Secure Keyboard. This is not a problem for me to do this I think that you are saying that currently if my browser is Google Chrome I lose the Secure Keyboard facility and if for example tomorrow the auto update setting were to upgrade me to KIS 2020, I could still get into my Safe Money site but would have to use the actual keyboard and not the Secure Keyboard?. Kaspersky however recognises this as a problem and is working to resolve this issue with Chrome? Have you any idea how long it will take K to resolve this and will K still upgrade me to 2020 even if this problem has not been fixed? Secondly on other sites which I do not have in my Safe Money list but in which I still use the Secure Keyboard to login simply by pressing the green icon which brings up the Secure Keyboard, will the Secure Keyboard not be available if I am upgraded to 2020? If I lose the benefit of the Secure Keyboard on all these sites including those not in Safe Money will this also be resolved by K engineers? Currently it would seem that a switch to 2020 disadvantages me as it presumably does all other KIS users who use Chrome Thanks again for your trouble mikethebike

I got my new Samsung s24 today, transferred all my apps, everything is going great and i can even login into Kaspersky. But then it asks me to login again to use the password manager and it says that my main password is incorrect, but it isn't. I've tried deleting the app on my phone and reinstalling but nothing seems to work, i've been looking online for a solution but don't really see anything helpful. I also checked on Kaspersky's site, there is a section where it asks me to enter my main password and what i'm entering there is accepted but it's not "correct" when i try on the app so i'm at a loss. Am i missing something obvious? Edit: Yes, i did miss something obvious. The keyboard layout is slightly different so i was typing the password incorrectly by a single character, don't mind me i'm smart.

I appreciate your quick response. I think that Linux Machines will be upgraded during KSC 14.2 upgrade. I'm right? or Should I upgrade the Linux machines first and then run KSC 14.2 upgrade? Best regards

Is this what you wanted to find ? scroll down for release notes for previous versions https://support.kaspersky.com/KESWin/12.4/en-US/127969.htm and also look at the changes in hardware and software compatibility for the latest version 12.4 ... and for 12.2 12.4 - https://support.kaspersky.com/KESWin/12.4/en-US/127972.htm 12.2 - https://support.kaspersky.com/help/KESWin/12.2/en-US/127972.htm you can change the help description to suit the version you are interested in I'm afraid there is no ready-made quick comparison table...

Hello, Unfortunately I cannot do that without my keyboard or mouse.

great now my kaspersky wont launch any more , after the update

Hi, @Carlos O 71 You should use the EN keyboard layout. Only this keyboard layout is supported in this form. You can use on-screen keyboard if hardware keyboard does not contain EN layout. Thank you for feedback, in upcoming product update we will automatically notify the users about supported keyboard layout. Thanks!

Hello @om richard, Welcome! Open the GUI, select Settings⚙, select Privacy settings, select Secure Data Input, uncheck Enable Secure Keyboard Input, select Save, select Confirm. Thank you? Flood?+? Resources: About protection of data entered on the computer keyboard How to configure protection of data entered on the computer keyboard

Thanks for reply. I knew that because when I turned off Kaspersky , VPN software launch smoothly and fast. I've contact with VPN support time and they told me that's because of Kaspersky. For that I did change settings.

First I can't get my screen to print. If it makes sense to you I have an ASUS keyboard and a dell computer. I have tried the print scr and the alt and F7 key nothing. Windows: 22H OS BUILD 19045.4046 Chrome: 122.0.6261.95 official build 64bit As far as Kaspersky I can't get anything on that. I right click it only shows pin to start, more, history, settings, data base, tools and scan. Run error Failed to run Protected Browser. Reason: Process was stopped. I can only run safe money in firefox. Chrome and microsoft edge can't do.

I have found the bookmarks backups folder which contains KIS and PURE folders but neither contains a backup later than 24 Dec. 2020. I currently have Plus 21.9.6.465. Is this bookmarks backup stored elsewhere? Currently in Program data/kaspersky lab/safe browser file. When I launch Firefox in safe money I get the "Failed to launch..." etc. notice but I have 3 instances of firefox.exe running before I cancel the notice "Firefox is already running..."etc.

Ok here are the steps I had to do . 1. removed McAfee from add and remove programs. It appeared to be successful . Started the Kaspersky standard installation , it detected McAfee WebAdvisor was still detected . and incompatable . I was not really surprised about that WebAdvisor was not removed by just deleting from the add and remove 2 So I cancelled installation , and use the McAfee tool and ran. Then went back to install Kaspersky . 3. Installation went well , already ran quick scan all is good , so no more issues Just wanted to update how it went for me on windows 11. Thanks again ?

More detailed scenario: I don't want anyone to have permission to run any EXE files from the D:\Download folder and its subfolders. Otherwise, they can copy, cut, create, delete freely. This is my real goal! In the absence of an execute permission, I denied all read permission on the folder, regardless of the level of trust. This certainly blocks execution, and doesn't interfere with copying files. It only bothers me that the rule actually applies every time someone accesses the file list of the folder in question. My ultimate goal is to restrict the execution of any executable (exe, msi, bat, ps1, com) on the entire D disk. And only allow it to run on a certain folder on disk D. But I consider that the launch of the event by simply listing the files in a folder is so bulky, I think that by putting the whole disk, it could be chaos, perhaps a high consumption of CPU and RAM resources. An anticipatory speculation on my part.

Hello @Tom Wong, Welcome! Read before you create a new topic! Unfortunately, Kaspersky’s On-screen/virtual keyboard cannot be disabled, there’s no option available in the software to disable the OSKB. According to Kaspersky experts, Kaspersky technical support agent & Kaspersky technical support Supervisor, this is as per by design. If when (you) open Kaspersky’s On-screen/virtual keyboard, the laptop/PC physical keyboard is disabled for input, please log a case with Kaspersky Technical Support, fill in the Application malfunction, Other template; support may request Logs, Traces & other data, they will guide you: After submitting the case, you’ll receive an automated email with an INC+12digits reference number, then, normally, within 5 business days, a Kaspersky Technical Support human will be in touch, also by email, you may continue to engage with the Kaspersky Technical Team via email or by updating the INC in their MyKaspersky account.➡ Please share the outcome with the Community when it’s available? Thank you🙏 Flood🐳+🐋 Resources: About On-Screen Keyboard On-Screen Keyboard About protection of personal data on the Internet

Advice and Solutions (Forum Knowledgebase) Disclaimer. Read before using materials. Problem Environment: Citrix Virtual Apps and Desktops (Citrix XenApp and XenDesktop) with enabled option Citrix UPL (User Personalization Layer) Citrix App Layer Non-English Operation System localization. After installation of KSV LA 5.2, you can face the error "The specified path does not exist" which appears by launching any executable file. Possible root cause Both Citrix technologies use separate vhd files for creating VMs by using Citrix App Layer and for roaming profiles used by Citrix UPL. As the result, the merge of vhd files processes and Citrix driver returns incorrect path of where the executable files are. Workaround Install Kaspersky Light Agent 5.2 and ensure it does not connect to SVM. Disable Self Defense and exit LA. Add registry file from this archive. Launch installation of the latest cumulative patch from the archive (all further released Cumulative PFs will contain the fix as well). As soon as LA informs the restart is needed, restart VMs. Connect LA to SVM. Problem should be solved.

In what respect @tunathefish? Most people know not to use anything other than the *recommended* OS. Read: Smart Home Monitor resources. Read: Wi-Fi Analyzer resources. Also, there's many Smart Home Monitor topics in the Forums - you can refine the search according to your requirements: https://forum.kaspersky.com/search/?q=Smart Home Monitor&quick=1 Thank you? Flood?+?

Hello @emaranhao, Thank you for posting back & the information! So, for clarity, the steps to solve, have now changed from (1) restart Kaspersky to (2) deactivate Secure keyboard input - is that correct? Re Kaspersky Security Cloud (KSC) version 21.3.10.391(x), which patch(x), x = letter, on the Windows Taskbar or hidden icons, rightclick the Kaspersky icon, select About? Is Windows fully updated, with all Updates showing a Successfully applied status? Have the Keyboard drivers been updated / checked / refreshed? In the year the physical keyboard has been intermittently freezing, has KSC been fully uninstalled, saving License information *only*, leaving all other check-boxes unchecked / blank & clean installed? Is KSC Premium or Free? Please post back? Thank you? Flood?+?

Advice and Solutions (Forum Knowledgebase) Disclaimer. Read before using materials. The article is giving a working configuration instructions for domain authentication by using NTLM and Kerberos protocols. NOTE: Domain authentication in OpenAPI over Kerberos protocol has the following restrictions: Administration Server address must be specified exactly as the address for which the Service Principal Name (SPN) is registered for domain account name. In the domain, you need to set the Service Principal Name (SPN) to publish the OpenAPI service on port 13299 for the machine with the Administration Server, the service of which is running under the name of the domain user <domain-user>. Kaspersky Security Center 13 Web Console user must be authenticated in Active Directory by using Kerberos protocol. Kerberos authentication should be allowed in web-browser. For details, refer to documentation of used web-browser. Details SPN - Service Principal Name Log in Domain Controller as Domain administrator. Open powershell as admin and run the following commands: Powershell setspn.exe -A HTTP/hostname-node-1.domain.local -u domain\user-ksc-service setspn.exe -A HTTP/hostname-node-2.domain.local -u domain\user-ksc-service Example setspn.exe -A HTTP/kscw-node-1.sales.lab -u sales\ksc setspn.exe -A HTTP/kscw-node-2.sales.lab -u sales\ksc setspn.exe -L -u sales\ksc #command for check spn records #Response Registered ServicePrincipalNames for CN=KSC Service,CN=Users,DC=sales,DC=lab: HTTP/kscw-node-1.sales.lab HTTP/kscw-node-2.sales.lab Enable Kerberos/NTLM authentication in web browsers Microsoft Edge \ Internet Explorer win + r => inetcpl.cpl Activate the Security tab. Select Local intranet and click Sites. In the opened dialog box click Advanced. Add the host name of Adaxes Web interface (e.g. host.company.com). Click Close and then click OK. Click Custom level. Navigate to Scripting and enable Active scripting. Navigate to User Authentication \ Logon. Select Automatic logon only in Intranet zone and click OK. Activate the Advanced tab. In the Settings list, navigate to the Security section. Select Enable Integrated Windows Authentication and click OK. Mozilla Firefox - https://developer.mozilla.org/en-US/docs/Mozilla/Integrated_authentication Launch Mozilla Firefox In the URL window, enter about:config and press Enter. In the filter text box, enter network.negotiate. Double-click the network.negotiate-auth.trusted-uris option and enter the host name of Adaxes Web interface (e.g. host.company.com). Repeat previous step for the network.negotiate-auth.delegation-uris option. Google Chrome Add the Software\Policies\Google\Chrome\AuthServerWhitelist key equal to *.<domain-name>.local to the registry Add the Software\Policies\Google\Chrome\AuthNegotiateDelegateWhitelist key equal to *.<domain-name>.local to the registry

Hello @Stan_natS, how did you create the screenshot? The function using the 'PrtScr' key is permitted. This means that someone is sitting at your computer and operating the keyboard. Only the creation of a screenshot that is triggered by software should be prevented.

Thank you my friend, for being quick to respond. I'm glad there were people who asked about this subject. Well, the Kaspersky team could do this without customers having to hide it. but that's ok, thank you. ?

Danke Schulte, werde es beobachten, ab wann die Meldung wieder kommt. Kann etwas dauern, bin nicht täglich am Rechner. Mein letzter download war von der Seite ITSG, einem Sozialversicherungsmeldeportal der deutschen Sozialversicherung. Melde mich, sobald der "quick driver updater" wieder auftaucht.

Hello @tniou, Welcome! Thank you for your contribution👏 Agreed, there has been a lot of complaints about Secure Keyboard input is enabled popup, because, it’s a PIA😡! We think there’s an easy fix for this, similar to Kaspersky’s Protected browser, for any field where the Secure Keyboard input is enabled popup (apart from the fact the tiny keyboard icon is already present in the righthand side of all such fields, nothing like overkill Kaspersky!!); all they have to do is use a green border on all Secure Keyboard input is enabled protected fields → it’s not 🚀 science Kaspersky🙄 Thank you🙏 Flood🐳+🐋

Hello @Joefram80, Thank you for posting back, the extra questions & confirming the software version installed? Background scan/rootkits can be searched for manually via the Windows command prompt: "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe" start scan_qscan - when (you) start the cmd.exe, run it with administrator privileges = rightclick the cmd.exe & select Run as administrator, then enter the command to run the scan & allow the process to complete. The Background scan runs automatically once a day and after a computer restart. Also the Background scan runs as a part of Full Scan & or Quick Scan, so if (you) have executed a Full Scan, there's no need to run an additional Background scan - all of this is true unless there's a problem or the Background scan has been turned OFF. Other ways to find the version: On the Windows Taskbar or hidden icons, rightclick the Kaspersky icon, select About? Open the Kaspersky app, in the lower-left-hand-corner, select the Headset? icon, this opens the Support page which shows the (Kaspersky) application version on the fourth line from the top? In Kaspersky Scan Reports, all Scans are logged (we filtered ours to one week, just to show an example) The Kaspersky Background scan documentation states: A background scan is started in the following cases: After the anti-virus databases are updated. Thirty minutes after Kaspersky Total Security launch. Every six hours. If the computer remains idle for five or more minutes (after the screen saver is started). A background scan is interrupted when any of the following conditions is met: The computer becomes active again. If an Idle Scan has not been performed for more than ten days, then the scan will not be interrupted and allowed to finish. The computer (laptop) switches to battery mode. When running a background scan, Kaspersky Total Security does not scan files whose contents are located in OneDrive cloud storage. IF there's any issues or (you) have any concerns, please post back? Thank you? Flood?+?