A
A
Alexander Bulgakov2019-05-28 11:14:44
Antivirus
Alexander Bulgakov, 2019-05-28 11:14:44

How to upgrade KES 10 to KES11?

The situation is the server of Kaspersky Security Center. There is a fleet of machines with administration agents installed. Kaspersky Endpoint Security versions 10 and 11 are partially installed on these machines. All 10th versions need to be upgraded to 11. How can I do this through KSC? If you create a task to install the KES11 package, then the server swears that KES10 is installed and you need to remove it. Can this be done somehow purely by means of the server, or do I need to update KES separately on each computer?

Answer the question

In order to leave comments, you need to log in

1 answer(s)
V
Vladimir Kuzin, 2019-06-19
@Bobson8

My advice to you - if there are not many computers with a problem - it's better to reinstall everything manually. With each version of the server and antivirus, Kaspersky becomes more "tricky". What they did in the 11th version is generally known to one Almighty. I, too, got stuck with this update to the most annoying. Not only that, during installation, Casper can swear at anything - up to the mismatch of the installed encryption version, even if the module is not enabled and is not supported by a license! (so it was in my case) Then he can swear at the included self-defense, that's also heresy - the kaspersky server cannot disable the kaspersky self-defense in the task! Pure idiocy. I already regret using this product, but corporate standards are their motherfuck...
In general - never trust the update of kasperky on top of anything. Whether it's the transition from one version of the server to another, or updating the antivirus. Only and exclusively so:
1) First, backup everything and everything. And manually! If you rely only on the backup from the server task - be sure - everything will be fucked up. Only manually, only by exporting/importing policies from active and working ones.
2) Removal of the original software (server or antivirus) with the removal of databases
3) Clean installation, with new settings and import from old policies and settings.
4) Mandatory verification of the correctness of tasks and policies, be sure to go through ALL the settings!
5) Mandatory monitoring for the first 2-3 days, especially tasks on the server.
6) If you reinstalled the server, albeit with identical settings, but left the hosts as they are, re-register all through klmover, otherwise the server will see the computers, but it will not be able to manage.
After a clean reinstall, I ran into a problem for a week - the database got dirty and Kaspersky could not do "database maintenance", which means that events are not registered, tasks do not work, info about hosts is not updated. The decision, as always, turned out to be terribly ridiculous - reinstall everything again, delete the database, and then! - while the server is still alive - disable or reduce the storage period for storing most of the events! And why the heck do you shove them by default so much that they litter the base in 3 days? There are more questions than answers. So stock up on warmth, free time and excuses for colleagues, they will be very useful to you.

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question