Security for Virtualization | Agentless
Kaspersky Security for Virtualization | Agentless is designed to protect virtual environments built on VMware technologies, including vSphere, vCNS, vShield and NSX, and does not affect platform performance. So you can benefit from an industry-leading security solution while retaining consolidation ratios.
Specifically designed for VMware security
Security that’s tailored to the unique needs of virtualization
Kaspersky Security for Virtualization | Agentless delivers Kaspersky Lab’s latest anti-malware and network protection technologies in a solution that’s been specifically developed for VMware-based virtual environments. Although traditional security products require a full security agent to be installed on each virtual machine, Kaspersky Security for Virtualization | Agentless is an agentless security solution – so, a single security virtual appliance protects all virtual machines on the host.
Preserves the performance of virtual servers and desktops
Kaspersky Security for Virtualization | Agentless has been designed to protect virtual servers and virtual desktops – with no significant impact on hypervisor performance. So you can protect your virtual machines – and the confidential business data held on them – while also achieving high consolidation ratios and high service levels for your users.
Reduces the load on your systems – so each host machine can achieve more
Kaspersky Security for Virtualization | Agentless reduces the load on each virtual host – including the following resources:
- I / O
Eliminates ‘update storms’ and ‘scanning storms’
With just one instance of the security appliance protecting the entire virtual host, Kaspersky Security for Virtualization | Agentless helps to eliminate anti-malware 'Update Storms' and 'Scanning Storms'.
A choice of licensing options – simplifies licences and reduces cost
Kaspersky Security for Virtualization | Agentless offers a choice of ‘per virtual machine’ or ‘per core’ licensing – so you can choose the option that’s most cost-effective for your business. For large data centres and IaaS (Infrastructure as a Service) providers, the number of virtual machines will regularly fluctuate – so ‘per core’ licensing can offer benefits.
Easy deployment and management – boosts uptime and controls costs
A single management console – for virtual, physical and mobile devices
Kaspersky Security Center – which is included in Kaspersky Security for Virtualization | Agentless – provides a single unified management console for controlling a wide range of Kaspersky security technologies. You can manage the protection of virtual, physical and mobile devices, and enforce consistent security policies across your entire IT estate – all from one console.
Instant protection of new virtual machines
Because security is delivered as a single virtual appliance, Kaspersky's award-winning anti-malware automatically protects all virtual machines on the host – including new virtual machines.
Solution deployment with no downtime
During deployment, there’s no need to reboot any machines or to put the host server into maintenance mode. This helps to maintain productivity for your users – and it’s vitally important for data centres that are committed to achieving ‘five nines’ (99.999%) uptime or better.
Applying different settings for different machines
Kaspersky Security for Virtualization | Agentless lets you apply different security settings to different groups of virtual machines. This helps to preserve the performance of your systems – by letting you exclude any scanning functions that are not relevant to a specific application.
Greater visibility – with detailed reporting
Kaspersky Security Center makes it easy to generate detailed reports that give administrators greater visibility of events and completed tasks. Because Kaspersky Security Center lets you manage a wide range of Kaspersky security applications, you can produce reports on all virtual, physical and mobile devices that are being protected by Kaspersky security technologies.
World-class anti-malware for VMware security
File-level anti-malware protection
Kaspersky Security for Virtualization | Agentless is a virtual appliance that plugs into VMware's vShield Endpoint – to deliver world-class anti-malware protection for your virtual machines. Automatic, real-time protection is available for every active virtual machine – on-access and on-demand.
Cloud-assisted protection against the latest threats – including zero-days
The cloud-based Kaspersky Security Network (KSN) identifies new threats and provides automatic updates to your IT systems. With an identification time that can be as quick as 0.02 seconds, KSN even helps to protect you against zero-day threats.
Schedule scans according to your needs
Routine scanning can be performed on all virtual machines, according to your own pre-set schedule. Kaspersky Security for Virtualization | Agentless automatically avoids simultaneous scanning of large numbers of machines – in order to help manage the load on your systems.
Effectively removes malware
Kaspersky’s latest antivirus technologies detect malware, block its activities and delete it – and notify your IT administrators.
Defends your IT infrastructure against network attacks
Network-level protection that’s integrated with VMware vCloud
Kaspersky’s Network Attack Blocker monitors network traffic for activity that is typical of network attacks. Upon detecting a network attack, Network Attack Blocker will block the attacking computer. Kaspersky is the first security vendor to provide this network-level functionality with support for VMware vCloud Networking and Security: vCloud Ecosystem Framework technology.
Efficient security technologies – with no significant impact on performance
Automatically tracks scans – for greater efficiency
Kaspersky Security for Virtualization | Agentless automatically ensures that recently scanned files are not re-scanned during routine, scheduled scanning.
When a file is accessed on a virtual machine, Kaspersky Security for Virtualization | Agentless will automatically scan the file – to ensure it’s safe – and then store the anti-malware scan verdict within an area of shared cache. When the same file is accessed on another virtual machine – on the same virtual host – Kaspersky Security for Virtualization | Agentless will know that a further scan is unnecessary. The file will only be re-scanned if it is changed or if the user runs a manual scan. This saves a lot of resources – especially in virtual desktop environments, where many files on each virtual machine are identical sets of operating system (OS) and application files.
Kaspersky’s Shared Cache technology helps to enhance IT performance and reduce the load on your computing infrastructure – so you can reallocate resources to other tasks, without compromising on security levels.
Highly integrated with VMware technologies
Security for large-scale VMware NSX-enabled environments
Kaspersky Security for Virtualization | Agentless is certified by VMware and supports VMware NSX, allowing very large virtualized environments to be enhanced with industry-leading anti-malware protection, as well as network attack blocking.
Fully supports VMware vMotion
With full support for VMware vMotion, Kaspersky Security for Virtualization | Agentless ensures that security is not interrupted when a workload is moved from one ESXi host to another. If the new host has the necessary licences, the security will automatically transfer along with the workload – and all security settings will remain as you configured them.
Seamlessly integrated with VMware vCenter
Kaspersky Security for Virtualization | Agentless receives information about virtual machines from VMware vCenter – including a list of all virtual machines and all relevant parameters. As well as giving IT administrators higher levels of visibility, this close integration with vCenter ensures that protection is automatically provided whenever your IT team configures a new virtual machine.
Tested across a wide range of VMware environments
Kaspersky Security for Virtualization | Agentless is also compatible with:
- VMware vSphere Distributed Resource Scheduler (DRS)
- VMware vSphere High Availability (HA)
- VMware Horizon View
Requirements for File-level protection
- VMware vSphere version 6.0, 5.5 or 5.1
- VMware vShield Endpoint from VMware vCloud Networking and Security 184.108.40.206 suite (or VMware NSX Guest Introspection)
- VMware vShield Manager from VMware vCloud Networking and Security 220.127.116.11 suite (or VMware NSX Manager)
- VMware Tools installed on each protected VM (VMware Guest Introspection Thin Agent driver or VMware vShield Endpoint Thin Agent driver)
- NOTE: VMware vShield Endpoint license is included in VMware vSphere Standard, Enterprise, Enterprise Plus editions, as well as in the vSphere Essentials Plus Kit
Requirements for Network Attack Blocker
- VMware vSphere version 6.0, 5.5 or 5.1
- VMware vShield Manager from the VMware vCloud Networking and Security 18.104.22.168 (or VMware NSX Manager)
- VMware Distributed Virtual Switch 5.1.0 or later
Requirements for Integration Server
- Windows 2012 R2
- Windows Server 2012, installed in Server Core mode
- Windows Server 2012
- Windows Server 2008 R2, installed in Server Core mode
- Windows Server 2008 R2
Supported guest operating systems
- Windows 8.1 (32-bit / 64-bit) (vSphere 5.5 - ESXi build 1892794 only)
- Windows 8 Professional / Enterprise / Ultimate (32-bit / 64-bit) (vSphere 5.5 only)
- Windows 7 Professional / Enterprise / Ultimate SP1 or higher (32-bit / 64-bit)
- Windows XP Professional SP3 (32-bit)
- Windows Server 2012 R2 (64-bit) only with vSphere 5.5 ESXi build 1892794 or above
- Windows Server 2012 without ReFS (Resilient File System) support (64-bit)
- Windows Server 2008 R2 (64-bit)
- Windows Server 2008 (32-bit / 64-bit)
- Windows Server 2003 R2 (32-bit / 64-bit)
- Windows Server 2003 SP2 or later (32-bit / 64-bit)