Our primary use case for Kaspersky Endpoint Security is to protect our endpoint machines and ideally we are also looking at protecting our server. However, I had challenges deploying it to the servers. It was making them really slow.
The feature that I have found most valuable is its deployment. It is easy to centrally deploy. You can deploy it on the Administration Console then deploy it to the different endpoint machines without specifically deploying it manually on each machine. Its deployment is really user friendly.
Additionally, scheduled tasks like scanning and safe rules, taking rules and grouping the different machines, being able to pick updates automatically and deploy them remotely are generally very easy, though we've had some challenges.
There are quite a number of areas for improvement. The first area for improvement is that I find this solution to be very resource intensive when you're running a particular task, even a mere scanning task, even though it's running in the background. When you go to inspect the resources you realize it makes the machine very slow. It takes up a lot of resources even though there are no particular scanning tasks scheduled to run. That's one of the issues.
The second area for improvement had to do with machines at one point being unable to communicate with the Central Server or the Heartbeat.
Another issue is related to installations. There is a feature for remotely deploying the solution on your endpoint machines, but some machines can fail. There was a particular incident where I needed to reinstall the solution again and it wasn't uninstalling. So the uninstallation process was a bit challenging. I had to install the machine again manually. They were Windows machines so I had to go and restore the machine again. Uninstalling it and reinstalling it on some machines can be a bit challenging.
Additionally, the way it handles threats is an area for improvement. Suppose there is a particular threat that has been detected, maybe someone inserted their flash drive or something. It does not give me an option to configure. I don't know if I was doing it right so that the threat is neutralized without me having to log on to the Administration Console. Then you go to Active Threats and manually delete that threat. I thought it would be intelligent enough. For instance, if I compare it to the Defend, if the flash drive has a virus it'll delete it automatically or quarantine it and give me a notification. Here, I don't get notifications. There is no feature providing me with real time notifications. I have to manually go to the Administration Console, log on and try to view if there are active threats on the network.
There is also the issue of synchronization with the Active Directory particularly if I'm using the Linux server. Sometimes you have a machine you have deleted from the Active Directory or disconnected from the network but that machine is still appearing in the Administration Console and you have to delete it manually. These are some of the challenges we meet with Kaspersky Endpoint Security.
In terms of what I would like to see in the next release, I would like it to be a bit lighter. I've used a couple of other solutions and I find them lighter to use than Kaspersky. Kaspersky really has to improve on that aspect of making sure that it's not consuming a lot of resources.
I have been using Kaspersky Endpoint Security for the last five years.
Kaspersky Endpoint Security is scalable.
Normally, we don't contact tech support directly. We rely on the partner here who supplies the solution.
Our license is a paid license which we pay annually. Every year we have been renewing the licenses.
I don't have any issues with the price. I think the pricing is fair.
We have been using Kaspersky Endpoint for Business Advanced. We are making a switch over to Sophos Intercept Advanced.
On a scale of one to ten, I would give Kaspersky Endpoint Security an eight.