Operation Mode

If necessary, Doctor Web can be connected to a corporate or private anti-virus network managed by Dr.Web Enterprise Security Suite (Dr.Web ESS). To operate in the central protection mode, you do not need to install additional software or uninstall your Dr.Web solution.

To provide you with this option, Dr.Web Agent can operate in one of the two following modes:

Standalone mode when a protected computer is not included in an anti-virus network or managed remotely. In this mode, configuration files and key files reside on local drives, and Dr.Web Agent is fully controlled from the protected computer.

Enterprise mode (or central protection mode), when protection of the computer is managed from the central protection server. In this mode, some features and settings of Dr.Web for UNIX File Servers may be modified and blocked for compliance with a general (for example, company) security policy. Licence key file for operation in this mode is received from the central protection server. Your personal key file on the local computer is not used.

warning

Note that drweb-agent can operate in enterprise mode only with Dr.Web ESS 6. If you want to ensure connection to the central protection server Dr.Web ESS 10, install and configure the new agent version, implemented as drweb-agent10 module. For details on how to install and configure drweb-agent10, refer to the Migration to Dr.Web ESS 10 section.

To use central protection mode

1.Contact the anti-virus network administrator of your company for a public key file and parameters of connection to the central protection server.

2.In the Dr.Web Agent configuration file (by default, %etc_dir/agent.conf), adjust the following parameters in the [EnterpriseMode] section:

Set the PublicKeyFile parameter value to location of a public key file received from anti-virus network administrator (usually, %var_dir/drwcsd.pub).This file includes an encryption public key for access to Dr.Web ESS. If you are the anti-virus network administrator, you can locate the file in the corresponding directory on the Enterprise Server.

Set the ServerHost parameter value to the IP-address or host name of the Enterprise Server.

Set the ServerPort parameter value to the Enterprise Server port number.

3.To connect to the central protection server, set the UserEnterpriseMode parameter value to Yes

In the central protection mode, some features and settings of Dr.Web for UNIX File Servers may be modified and blocked in compliance with the general security policy. A key file for operation in this mode is received from the central protection server. Your personal key file on the local computer is not used.

Внимание!

To run Dr.Web Agent in the central protection mode, drweb-agent-es package must be installed.

To enable Dr.Web for UNIX File Servers to fully support the central protection mode, set Dr.Web Monitor to operate in enterprise mode. For more details, see Operation Mode of Dr.Web Monitor.

To use standalone mode

1.Ensure that all parameters in the [StandaloneMode] section of the Dr.Web Agent configuration file (by default, %etc_dir/agent.conf) are adjusted properly.

2.In the [EnterpriseMode] section of the Dr.Web Agent configuration file, set the UseEnterpriseMode parameter to No.

When switching to this mode, all settings of Dr.Web for UNIX File Servers are unlocked and restored to their previous or default values. You can access all features of Dr.Web for UNIX File Servers solutions again and configure them.

Внимание!

For correct operation in the standalone mode, Dr.Web for UNIX File Servers requires a valid personal key file. The key files received from the central protection server cannot be used in this mode.

Using Dr.Web for UNIX File Servers and Dr.Web Anti-virus for Linux together in the central protection mode

Because of the implementation features, Dr.Web for UNIX File Servers and Dr.Web Anti-virus for Linux cannot be simultaneously operate in the central protection mode if they are both installed on the same computer. To enable Dr.Web for UNIX File Servers to operate in the central protection mode, change the operation mode of Dr.Web Anti-virus for Linux to the Standalone mode and delete or move to another directory the following files: %etc_dir/agent/drweb-cc.amc and %etc_dir/agent/drweb-spider.amc.

If you want to switch Dr.Web Anti-virus for Linux back to the central protection mode later, we recommended to save the files as a back up copy in a directory that is different from %etc_dir/agent. In this case, disable the central protection mode of Dr.Web for UNIX File Servers, copy back up copies of drweb-cc.amc and drweb-spider.amc files to the %etc_dir/agent/ directory and follow the instructions provided in the Dr.Web Anti-virus for Linux User Manual.