About device statuses
Kaspersky Security Center Linux assigns a status to each managed device. The particular status depends on whether the conditions defined by the user are met. In some cases, when assigning a status to a device, Kaspersky Security Center Linux takes into consideration the device's visibility flag on the network (see the table below). If Kaspersky Security Center Linux does not find a device on the network within two hours, the visibility flag of the device is set to Not Visible.
The statuses are the following:
- Critical or Critical/Visible
- Warning or Warning/Visible
- OK or OK/Visible
The table below lists the default conditions that must be met to assign the Critical or Warning status to a device, with all possible values.
Conditions for assigning a status to a device
Condition | Condition description | Available values |
|---|---|---|
安全应用程序未安装 | Network Agent is installed on the device, but a security application is not installed. |
|
检测到太多病毒 | Some viruses have been found on the device by a task for virus detection, for example, the Malware scan task, and the number of viruses found exceeds the specified value. | More than 0. |
实时保护级别与管理员设置的级别不同 | The device is visible on the network, but the real-time protection level differs from the level set (in the condition) by the administrator for the device status. |
|
恶意软件扫描已长时间未执行 | The device is visible on the network and a security application is installed on the device, but neither the Malware scan task nor a local scan task has been run within the specified time interval. The condition is applicable only to devices that were added to the Administration Server database 7 days ago or earlier. | More than 1 day. |
数据库已过期 | The device is visible on the network and a security application is installed on the device, but the anti-virus databases have not been updated on this device within the specified time interval. The condition is applicable only to devices that were added to the Administration Server database 1 day ago or earlier. | More than 1 day. |
长时间没有连接 | Network Agent is installed on the device, but the device has not connected to an Administration Server within the specified time interval, because the device was turned off. | More than 1 day. |
检测到活动威胁 | The number of unprocessed objects in the 活动威胁 folder exceeds the specified value. | More than 0 items. |
需要重新启动 | The device is visible on the network, but an application requires the device restart longer than the specified time interval and for one of the selected reasons. | More than 0 minutes. |
安装了不兼容的应用程序 | The device is visible on the network, but software inventory performed through Network Agent has detected incompatible applications installed on the device. |
|
授权许可已过期 | The device is visible on the network, but the license has expired. |
|
授权许可即将过期 | The device is visible on the network, but the license will expire on the device in less than the specified number of days. | More than 0 days. |
无效的加密状态 | Network Agent is installed on the device, but the device encryption result is equal to the specified value. |
|
检测到未处理的安全问题 | Some unprocessed security issues have been found on the device. Security issues can be created either automatically, through managed Kaspersky applications installed on the client device, or manually by the administrator. |
|
应用程序定义的设备状态 | The status of the device is defined by the managed application. |
|
设备磁盘空间不足 | Free disk space on the device is less than the specified value or the device could not be synchronized with the Administration Server. The Critical or Warning status is changed to the OK status when the device is successfully synchronized with the Administration Server and free space on the device is greater than or equal to the specified value. | More than 0 MB. |
设备已失去管理 | During device discovery, the device was recognized as visible on the network, but more than three attempts to synchronize with the Administration Server failed. |
|
保护已禁用 | The device is visible on the network, but the security application on the device has been disabled for longer than the specified time interval. In this case, the state of the security application is stopped or failure, and differs from the following: starting, running, or suspended. | More than 0 minutes. |
安全应用程序没有运行 | The device is visible on the network and a security application is installed on the device but is not running. |
|
Kaspersky Security Center Linux allows you to set up automatic switching of the status of a device in an administration group when specified conditions are met. When the specified conditions are met, the client device is assigned one of the following statuses: Critical or Warning. When the specified conditions are not met, the client device is assigned the OK status.
Different statuses may correspond to different values of one condition. For example, by default, if the 数据库已过期 condition has the More than 3 days value, the client device is assigned the Warning status; if the value is More than 7 days, the Critical status is assigned.
If you upgrade Kaspersky Security Center Linux from the previous version, the values of the 数据库已过期 condition for assigning the status to Critical or Warning do not change.
When Kaspersky Security Center Linux assigns a status to a device, for some conditions (see the Condition description column) the visibility flag is taken into consideration. For example, if a managed device was assigned the Critical status because the 数据库已过期 condition was met, and later the visibility flag was set for the device, then the device is assigned the OK status.