Submit a ticketCall us

Looking to compare latest NPM features with previous versions of NPM?
The NPM new feature summary offers a comparison of new features and improvements offered with this release.

 

Home > Success Center > Log & Event Manager (LEM) > Integrating Kaspersky Administration Kit 8 with SolarWinds LEM

Integrating Kaspersky Administration Kit 8 with SolarWinds LEM

Created by Mindy.Kerber, last modified by Erin Stenzel on Oct 25, 2016

Views: 43 Votes: 0 Revisions: 7

Overview

Kaspersky Administration Kit 8 system and application logs are stored on a SQL database defined by the administrator during installation. These include all of the log files from each Kaspersky agent, and they can be collected and monitored with SolarWinds LEM using a LEM Agent on the Kaspersky Administration Kit server.

Environment

This article applies to Kaspersky Administration Kit version 8 and higher, and SolarWinds LEM version 5.3 and higher.

Detail

Requirements

You will need the following information about your Kaspersky Administration Kit database prior to configuring the Kaspersky Aministration Kit tool on the LEM Agent. These items are defined during the Kaspersky Administration Kit installation. Consult with your SQL administrator to acquire this information.

  • Database Server Host Name: Enter localhost if your server uses SQL Express. An IP address may also be used.
  • Database Name: The default name is KAV.
  • Database Server Instance Name: The default name is KAV_CS_ADMIN_KIT.
  • Database Server Port:
    If you are using MSSQL 2005 or 2008,
     the default port is 1433.
    If you are using SQL Express 2005 or 2008, complete the following procedure to determine the dynamic port assigned to the KAV database instance:
    1. Open SQL Server Configuration Manager.
    2. Expand SQL Server your version Network Configuration (32bit).
    3. Click Protocols for your database server instance name, and then select Action > Properties.
    4. In the Protocol Name list, click TCP/IP, and then select Action > Properties. The Dynamic Port # is at the bottom of the list.
      Note: If TCP/IP is disabled, enable it. This requires that you restart the SQL service.
  • Database Server Username and Password: If you are using mixed mode SQL authentication, enter administrator-level credentials for the Kaspersky Administrator Kit server.

Configuring Logging for Kaspersky Administration Kit

You can configure each Kaspersky agent to send specific log data to be stored on the Kaspersky Administration Kit server.

To configure logging for a Kaspersky agent, complete the following procedure:

  1. Open the Kaspersky Administration Kit Console.
  2. Locate the agent policy you want to configure.
  3. Click the policy and select Action > Properties.
  4. Click the Events tab.
  5. Modify the policy according to your preference.
  6. If you are finished modifying the policy, click Activate.

Configuring a LEM Agent on the Kaspersky Administration Kit Server

  1. Install a SolarWinds LEM Agent on the Kaspersky Administration Kit server using the SolarWinds LEM Agent Installer or Remote Agent Installer.
  2. Open the LEM Console, and navigate to Manage > Nodes.
  3. Find the Kaspersky Administration Kit Agent in the list, click the gear icon next to it, and then click Tools.
  4. Find the Kaspersky Administration Kit 8 tool in the list, click the gear icon next to it, and then click New.
  5. Complete the form using the information gathered above in the Requirements section.
  6. Click Save.
  7. Click the gear icon next to the new tool, and click Start.
  8. If the tool does not start, verify the tool settings against the SQL server settings.

 

Once this procedure is complete you will begin seeing Alerts from your Kaspersky Administration Kit server in your LEM Console. For additional visibility, create a filter for these alerts. For example: AnyAlert.ToolAlias = *Kaspersky*, provided you retained the default tool alias when you configured the tool.

 

Disclaimer: Please note, any content posted herein is provided as a suggestion or recommendation to you for your internal use. This is not part of the SolarWinds software or documentation that you purchased from SolarWinds, and the information set forth herein may come from third parties. Your organization should internally review and assess to what extent, if any, such custom scripts or recommendations will be incorporated into your environment.  You elect to use third party content at your own risk, and you will be solely responsible for the incorporation of the same, if any.

 

 

 

Last modified
16:13, 25 Oct 2016

Tags

Classifications

Public