Protection

The policy includes settings for the component Protection. Protection is launched when the operating system of the mobile device starts. The component remains continuously in the operational memory of the device and scans the file system. The policy contains settings which allow you to set the scope of the scan and select an action to be performed when a malicious object is found.

Supported on: Kaspersky Endpoint Security 8 for Smartphone

Registry HiveHKEY_LOCAL_MACHINE
Registry PathSOFTWARE\Policies\Microsoft\Windows Mobile Settings\Registry\HKLM\Software\Kaspersky Lab\Endpoint8\Policies
Value NameOAS_Enable
Value TypeREG_DWORD
Enabled Value1
Disabled Value0

Objects to be scanned

Scanned file types


  1. All files
    Registry HiveHKEY_LOCAL_MACHINE
    Registry PathSOFTWARE\Policies\Microsoft\Windows Mobile Settings\Registry\HKLM\Software\Kaspersky Lab\Endpoint8\Policies
    Value NameOAS_ExecutablesOnly
    Value TypeREG_DWORD
    Value0
  2. Only executable files
    Registry HiveHKEY_LOCAL_MACHINE
    Registry PathSOFTWARE\Policies\Microsoft\Windows Mobile Settings\Registry\HKLM\Software\Kaspersky Lab\Endpoint8\Policies
    Value NameOAS_ExecutablesOnly
    Value TypeREG_DWORD
    Value1

Reaction to threat

Action on threat detection:


  1. Quarantine
    Registry HiveHKEY_LOCAL_MACHINE
    Registry PathSOFTWARE\Policies\Microsoft\Windows Mobile Settings\Registry\HKLM\Software\Kaspersky Lab\Endpoint8\Policies
    Value NameOAS_Action
    Value TypeREG_DWORD
    Value0
  2. Delete
    Registry HiveHKEY_LOCAL_MACHINE
    Registry PathSOFTWARE\Policies\Microsoft\Windows Mobile Settings\Registry\HKLM\Software\Kaspersky Lab\Endpoint8\Policies
    Value NameOAS_Action
    Value TypeREG_DWORD
    Value1
  3. Log event
    Registry HiveHKEY_LOCAL_MACHINE
    Registry PathSOFTWARE\Policies\Microsoft\Windows Mobile Settings\Registry\HKLM\Software\Kaspersky Lab\Endpoint8\Policies
    Value NameOAS_Action
    Value TypeREG_DWORD
    Value2


endpoint8.admx

Administrative Templates (Computers)