I have the Kaspersky Security Cloud (KES 11) deployed in our organization. I want to enable the BadUsb protection on all devices and I want to do it automatically on all devices. I was trying to login to some test machines remotely to enable this feature (modify the software settings using the control panel) however all our KES installations are running under "profile security" and thus "modify software" in control panel is disabled.
Is there any way to enable this feature remotely by using some administrative templates like GPO's ?
We've recently seen some BadUsb attacks therefore the case is urgent and any help will be greatly appreciated.
Best answer by Caos
This module is activated, from the moment than Kaspersky Endpoint Security Cloud is installed:
From Kaspersky Endpoint Security Cloud it can be deactivated using the profile password
This mention in the help is wrong and as I have been told it will be removed from it in the next update of the online help.
It is not scheduled to be included in the next version, therefore, the definitive response of the laboratory is that this product does not have badusb administration and it is not planned to include it, the mention in the online help will be deleted.
The only "unofficial" way to use this KES capability would be if it is not managed from Cloud and manually activated locally (by uninstalling the network agent).