Configuring trusted connection with Kaspersky Industrial CyberSecurity for Networks
August 27, 2024
ID 218180
To configure trusted connection between Kaspersky Endpoint Agent and Kaspersky Industrial CyberSecurity for Networks, perform the following actions on Kaspersky Endpoint Agent side:
- Open the policy properties window.
- In the Telemetry collection servers section, select KICS for Networks integration.
The KICS for Networks integration window opens.
- In the Connection settings group, select the Use pinned certificate to secure connection check box.
- Click the Add new TLS certificate button.
The window for adding a new TLS certificate opens.
- Perform one of the following actions to add a TLS certificate:
- Add a certificate file. Click Browse, and in the window that opens, select the certificate file and click Open.
- Copy and paste the contents of the certificate file to the TLS certificate data field.
Kaspersky Endpoint Agent can only have one TLS certificate for the KICS for Networks server. If you have added a TLS certificate before and then add a TLS certificate once again, only the last added certificate is valid.
- Click OK.
Information about the added TLS certificate is shown in the TLS certificate data group of settings.
- If you want to configure additional connection protection by a user certificate, do the following:
- Select the Secure connection with client certificate check box.
- Click the Upload button.
- In the window that opens select the PFX archive and click Open.
- In the User certificate password field, enter the password for the PFX archive.
- Click OK.
- In the upper right corner of the settings group, change the switch from Undefined to Enforce.
The default switch position is Enforce.
- Click OK.
The trusted connection to Kaspersky Industrial CyberSecurity for Networks server is now configured.