Kaspersky Security Center 14 Windows
Kaspersky Security Center licensing options
Kaspersky Security Center can work in the following modes:
- Basic functionality of Administration Console
Kaspersky Security Center works in this mode before the application is activated or after the commercial license expires. Kaspersky Security Center with support of the basic functionality of Administration Console is delivered as a part of Kaspersky applications for protection of corporate networks. You can also download it from Kaspersky website.
- Commercial license
If you need additional functionality which is not included in the basic functionality of Administration Console, you must purchase a commercial license.
When adding a license key in the Administration Server properties window, ensure that you add a license key that lets you use Kaspersky Security Center. You can find this information at the Kaspersky website. Each solution webpage contains the list of applications included in this solution. Administration Server may accept unsupported license keys, for example a license key for Kaspersky Endpoint Security Cloud, but such license keys provide no new features in addition to the basic functionality of Administration Console.
Feature or property |
Kaspersky Security Center operation mode |
|
---|---|---|
|
No license |
Commercial license |
Basic functionality of Administration Console The following functions are available:
|
||
Vulnerability and patch management: basic functionality The following tasks do not require a commercial license:
|
||
Vulnerability and patch management: advanced functionality The following functions are available:
|
||
Mobile Device Management feature in MMC-based Administration Console The Mobile Device Management feature is used to manage Exchange ActiveSync (EAS) and iOS MDM mobile devices. The following functions are available for Exchange ActiveSync mobile devices:
The following functions are available for iOS MDM devices:
The following functions are available for Android devices:
In addition, Mobile Devices Management allows executing commands provided by relevant protocols. The management unit for Mobile Devices Management is a mobile device. A mobile device is considered to be managed after it is connected to the Mobile Devices Server. |
(A license key must be added to the Administration Server properties.) |
|
Mobile device protection in Kaspersky Security Center Web Console Kaspersky Security Center Web Console provides you with the following features to manage Android and iOS mobile devices:
|
(A license key must be added on each mobile device.) |
|
The following functions are available:
|
||
Integration with cloud environments Kaspersky Security Center not only works with on-premises devices, but also provides special features for working in a cloud environment, such as Cloud Environment Configuration Wizard. Kaspersky Security Center works with the following virtual machines:
|
||
Exporting events to SIEM systems: using the Syslog protocol Using the Syslog protocol, you can relay any events that occur on the Kaspersky Security Center Administration Server and in Kaspersky applications that are installed on managed devices. The Syslog protocol is a standard message-logging protocol. You can use it to export events to any SIEM system. |
||
Exporting events to SIEM systems: QRadar by IBM and ArcSight by Micro Focus Event export can be used within centralized systems that deal with security issues on an organizational and technical level, provide security monitoring services, and consolidate information from different solutions. These are SIEM systems, which provide real-time analysis of security alerts and events generated by network hardware and applications, or Security Operation Centers (SOCs). Under a special license, you can use the CEF and LEEF protocols to export to SIEM systems general events, as well as the events transferred by Kaspersky applications to the Administration Server. LEEF (Log Event Extended Format) is a customized event format for IBM Security QRadar SIEM. QRadar can integrate, identify, and process LEEF events. LEEF events must use UTF-8 character encoding. You can find detailed information on LEEF protocol in IBM Knowledge Center. CEF (Common Event Format) is an open log management standard that improves the interoperability of security-related information from different security and network devices and applications. CEF enables you to use a common event log format so that data can easily be integrated and aggregated for analysis by an enterprise management system. ArcSight and Splunk SIEM systems use this protocol. |
See also: Scenario: Installation and initial setup of Kaspersky Security Center Web Console |