Using a distribution point for remote Network Agent installation on windows ednpoints

[MH100]

Hello,

I’m planning to designate a device as a Distribution Point to remotely install the Kaspersky Network Agent on my Windows endpoints.

After reviewing the documentation https://support.kaspersky.com/KSC/CloudConsole/en-US/98876.htm, I noticed that there are multiple methods for achieving this. However, I’m specifically concerned with the security settings required on the endpoints to ensure a smooth installation of the Network Agent.

Could anyone clarify which specific Windows security settings, such as firewall rules and required ports, must be configured to allow the Distribution Point to successfully push the agent? For instance, is enabling SMB connections on the endpoint firewalls necessary?

I’m asking because we need to assess which domain policies we may need to adjust, but the documentation doesn't provide enough detail on the necessary Windows configuration for successful deployment.

Any insights or best practices would be greatly appreciated!"