Updating in a private corporate network

Databases in a private corporate network are updated using the configuration file.

To update the software vulnerabilities database:

  1. In the configuration file for the Scanner (kcs-scanner), specify the web address of the update source (for example, a local update server in the private infrastructure of Kaspersky Container Security) as the value of the KCS_UPDATE_URL variable.
  2. Configure the Scanner settings using one of the following methods:
    1. To use a proxy server to update using Kaspersky cloud servers, specify the proxy server value in the SCANNER_PROXY variable as follows:

      http://{USER}:{PASSWORD}@{IP_ADDRESS}:{PORT})

    2. To use the file server with updates for private corporate networks (kcs-updates), do the following:
      • Install kcs-updates as described in the Helm Chart documentation of the solution.

        The recommended frequency for automatic update of the file server with updates for private corporate networks: at least once a day.

      • Specify the value of KCS_UPDATE_URL taking into account the namespace where kcs-updates is installed:
        • If kcs-updates is installed in the same namespace as other solution components, specify http://kcs-updates:8080/kuu/updates.
        • If kcs-updates is installed in a different namespace, specify http://kcs-updates.updates-namespace.svc.cluster.local:8080/kuu/updates.

To update the anti-malware database:

  1. Specify the following variables in the configuration file:

    KESL_PROTOCOL is the protocol for connection to the File Threat Protection component server

    KESL_HOST is the web address of the File Threat Protection component server

  2. Configure the Scanner settings using one of the following methods:
    1. To use a proxy server to update using Kaspersky cloud servers, specify the proxy server value in the SCANNER_PROXY variable as follows:

      http://{USER}:{PASSWORD}@{IP_ADDRESS}:{PORT})

    2. To use the file server with updates for private corporate networks (kcs-updates), do the following:
      • Install kcs-updates as described in the Helm Chart documentation of the solution.

        The recommended frequency for automatic update of the file server with updates for private corporate networks: at least once a day.

      • Specify the values of KESL_PROTOCOL and KESL_HOST taking into account the namespace where kcs-updates is installed:
        • If kcs-updates is installed in the same namespace as other solution components, specify the following:

          KESL_PROTOCOL = http

          KESL_HOST = kcs-updates:8080

        • If kcs-updates is installed in a different namespace, specify the following:

          KESL_PROTOCOL = http

          KESL_HOST = kcs-updates.updates-namespace.svc.cluster.local:8080

Page top