Аbout Kaspersky Application Activation/Add Key

[MihailSol]

Hello!

I have a question regarding a specific website, https://touch.kaspersky.com/. This website seems to be one that Kaspersky attempts to connect to when verifying an activation key for a client. I've managed to identify other related websites like "ds.kaspersky.com," "activate.activation-v2.kaspersky.com," and "crl.kaspersky.com." However, I'm struggling to find any information about the purpose of "https://touch.kaspersky.com." I need this information to request the networking team's assistance in allowing access to these websites through our routers.

Additionally, I have another query. I'm looking to set up a completely isolated network, and I need to activate the endpoint client without an internet connection. The utility "klnagchk.exe" indicates that everything is okay between the server and the client. However, when I try to run the "Add Key" task or manually add the key to the client, I receive a "Request Timeout" error. Interestingly, once we allow the client to access the internet briefly, it activates successfully. Is there a way to work around this so that the client only checks in with the administration server without requiring internet access?

Thank you for your assistance.

Edited August 17, 2023 by MihailSol

[THask]

Hello MihailSol,

the necessary informations for Communication are here:

https://support.kaspersky.com/kes11/settings/network/15038

and special for your Isolated Network it would reach to give the Network Communication with KSC over Port 13000,  17000 TCP and if you use KSN 13111 TCP than you can Activate also the isolated Devices with the Option use KSC as Activation Proxy.

All Ports used from KSC you can find here:

https://support.kaspersky.com/KSC/14.2/en-US/158830.htm

 

If you want no communication between KSC and the isolated network you can use the Keyfile if you don't use successive License model.

 

BR

THask

[ElvinE5]

Good day

Here are a couple of links to resources that you might find useful. help on external services that KSC uses -

https://support.kaspersky.com/ksc14/settings/server/15052

about https://touch.kaspersky.com/ you can contact the support service to clarify information about what this resource is used for - https://companyaccount.kaspersky.com/account/login

 

As for activation... I'm going to assume that you are using an activation code that must be checked against Kaspersky Lab's servers to ensure it's valid.

according to the idea, the KSC server should act as a proxy for the activation server ... but you need to take care that TCP 17000 is available between the client and the KSC server (on the server it is open by default) ... this is provided that the KSC must have Internet access .

https://support.kaspersky.com/KSC/14.2/en-US/158830.htm

 

the second option (probably more simple) is to use not the code, but the activation file ... you can get it from the code on this resource. 

https://keyfile.kaspersky.com

and already a keyfile to activate clients in a closed network.

They, the code and the keyfile, are completely identical, you can use what is more convenient for you, while the keyfile already contains all the necessary information and does not require confirmation of validity.

Edited August 17, 2023 by ElvinE5

[MihailSol]

You both gave very good information. Thank you both. Sometimes it's difficult to find information about all the things in Kaspersky. I will start reading now the information provided. 

I will try to contact Kaspersky directly to obtain more information about the https://touch.kaspersky.com/. Or meanwhile if someone else knows, would be appreciated!