Documentation forServer & Application Monitor

Kaspersky Security Center Antivirus

This SAM template assesses the status and overall performance of a Kaspersky Security Center Antivirus.

Prerequisites

WMI access to the target server.

Credentials:

Windows Administrator on the target server.

Component monitors

Service: Kaspersky Activation Proxy

Returns CPU and memory usage of Kaspersky Activation Proxy. This service that gives Network Agent access to activation servers on which you can activate installed applications.

Service: Kaspersky Lab Administration Server

Returns CPU and memory usage of Kaspersky Lab Administration Server. Administration Server manages Kaspersky Lab applications installed throughout an enterprise network.

Service: Kaspersky Lab Network Agent

Returns CPU and memory usage of Kaspersky Lab Network Agent. Network Agent coordinates the interaction between the Administration Server and Kaspersky Lab applications installed on client computers.

Service: Kaspersky Lab Web Server

Returns CPU and memory usage of Kaspersky Lab Web Server.

TCP Port: Administration server (13000)

Tests the ability of Administration Server to accept incoming sessions. By default, it monitors TCP port 13000. This TCP port is required to gather data from client hosts, connect Update agents, and connect Administration servers. This monitor uses a secure SSL connection.

TCP Port: Administration server (14000)

Tests the ability of Administration Server to accept incoming sessions. By default it monitors TCP port 14000. This TCP port is required to gather data from client hosts, connect Update agents, and connect Administration servers. This monitor uses a secure SSL connection.

TCP Port: Kaspersky Security Center Web-Console (HTTP)

Tests the ability of Kaspersky Security Center Web-Console (HTTP) to accept incoming sessions. By default, it monitors TCP port 8060. This TCP port is required for connecting to the web server to manage Kaspersky Security Center Web-Console and to organize inner corporate portal.

TCP Port: Kaspersky Security Center Web-Console (HTTPS)

Tests the ability of Kaspersky Security Center Web-Console (HTTPS) to accept incoming sessions. By default, it monitors TCP port 8061. This TCP port is required for connecting to the web server to manage Kaspersky Security Center Web-Console and to organize inner corporate portal. Encryption is used upon connection.

TCP Port: Activation Proxy Server

Tests the ability of Activation Proxy Server to accept incoming sessions. By default, it monitors TCP port 17000. This TCP port is required for connecting to an activation proxy server. This monitor uses a secure SSL connection.

TCP Port: Web Console

Tests the ability of Activation Proxy Server to accept incoming sessions. By default, it monitors TCP port 13291 that is used for a secure SSL connection between Web Console and Administration Server.

This monitor is disabled by default.

Warning and Errors Events: Network Agent

Returns warning and error events of Kaspersky Network Agent.

Source name: klnagent
Event log: Kaspersky Event Log

Warning and Errors Events: Administration Server

Returns warning and error events of Kaspersky Administration Server.

Source name: kladminserver
Event log: Kaspersky Event Log

Warning and Errors Events: Web Server

Returns warning and error events of Kaspersky Web Server.

Source name: klwebsrv
Event log: Kaspersky Event Log

Warning and Errors Events: Activation Proxy

Returns warning and error events of Kaspersky Activation Proxy.

Source name: klactprx
Event log: Kaspersky Event Log