General Settings Dialog

This dialog contains general KeyServer settings that will apply to all users. It is accessed from the Config Menu.

OPEN General Settings dialog

Product Recognition Service

This section of the Dialog lets you enable, disable, and configure the Product Recognition Service (PRS). Usually, PRS should be turned on and configured to run at some time during the middle of the night. Note that when the “Submit Manually defined Products” option is enabled, your server will send to PRS data on Products that you created. This is useful to Sassafras because it helps us to understand what Products are missing from our definitions, and to prioritize them for inclusion in a future update.

PRS pane of General Settings dialog

PRS Location: Typically you will leave this set the to default, “”. KeyServer will use the HTTPS protocol to contact PRS at that address. In cases where network configuations do not permit HTTPS communication with PRS, try changing this setting to “”. KeyServer will then use the non-encrypted HTTP protocol to contact PRS.

Proxy Server: If the host on which KeyServer or KeyConfigure run requires all Internet-bound communication to happen through a proxy server, enter that server's address (and port). For example, you would use “” if your proxy service runs on a host with that name, and accepts HTTP and HTTPS traffic on the default ports. You can also specify an IP address, or if the proxy service is on a non-default port, you can specify that by adding a colon “:” followed by the port number (e.g., “”). Do not include the protocol prefix (http:..., etc.) in this field.

Contact PRS daily at: Leave this option checked in order to have your server check with PRS for new Product definitions. The very first time it starts, your server will pick a random time of day at which it will contact PRS. You can change this time to suit your needs, for example if you have scheduled downtimes that would interfere with the time that was selected by your server.

Submit Manually defined products: Checking this option allows your server to upload data on the Products that you have created. This data is stripped of identifying information, and is used only in aggregate form in order to aid Sassafras in the definitions of products. If sending this data is not allowed due to organizational or other policies, leave this option off.

Last Update from PRS: Your server updates this field each time it attempts to contact PRS. Success or failure is indicated by a green check or red ×. If you want to have PRS check immediately for new Products, click the Contact Now button. Note that it may take several minutes for the transaction to complete and the new time to be reflected in Last Update from PRS.

PRS ID: Your server generates a random, anonyous ID that it uses in all communication with PRS. This allows PRS to avoid duplicate data and make associations to related data in a manner that preserves the anonymity of the submitter.


The Audits tab has settings for controlling how often clients are asked to perform a software audit, and for scheduling processing that applies to the collected audit data.

Audits pane of General Settings dialog

Reschedule Audit every: Configure the time interval used to perform audits on computers which are set to audit automatically. Repeated audits allow you to keep audit information accurate as new software is installed and old software is uninstalled. The default audit interval is 4 weeks. Note that you can make a particular computer stop performing repeated audits by configuring this option in the Computer Details. By doing so, you will keep the existing audit information, but stop automatic re-audits. You will still be able to see the existing audit information by right-clicking the computer and selecting Show Installs, but the standard audit reports will only report on computers set to audit. See K2 Licensing for information on how the audit interval affects licensing of K2.

Throttle Network Traffic: Optionally set a threshold for network traffic associated with client audits. If the KeyServer begins to get more traffic than this upper bound, it will tell clients to slow the rate at which they are sending audit data. By default, there is no throttle. Under normal circumstances, you should not need to set a throttle, since generally clients will perform audits at various different times, and the audits will never account for very much network traffic. If however you have a situation where many clients are sending audits simultaneously, and you notice that KeyConfigure is slow to respond, you may want to set a throttle.

Generate Product Audit Daily At: is used to configure a daily process that examines the programs discovered on each computer, and generates a table that tracks which products are installed on each computer.

Generate Product Audit After Optimizing causes the Audit Product database to be generated essentially when Products have been changed or created - in addition to the scheduled daily computation. This can make new data available sooner, without waiting for the daily schedule.

Use Audit Product database in Product Reports will cause your local KeyConfigure to use this precomputed data for certain Product related reports, instead of recomputing the same information as part of the report. This will make reports such as the Audit Products reports complete more quickly, but they will also show data that is valid as of the last time this data was generated - not up to the minute based on new program audits.

Notice that with the default settings, every client computer will perform an audit when it first connects to the KeyServer, as well as incremental audits every 4 weeks. If you do not want clients to perform audits automatically after they first connect, you will need to change the discovery rule for new computers. If you want audits to occur only once, but not be rescheduled automatically, you will need to remove the Reschedule Audit every ... option in this dialog.

Generating Product Audits can help run reports quickly. In addition if you are Exporting data, you may find that by generating Product Audits, you can avoid exporting the entire Program Audit table.

User Privacy / Computer Privacy

This section of the Dialog lets you configure how user and computer names are recorded. By default, the real values are recorded. However, you may choose to scramble the names, which will map each name to a “nonsense” string, which will always be the same for that name. Or, you can tell KeyServer not to record names. The one thing that will always be recorded with each event is the computer ID. This cannot be changed. However, one related feature is that you can delete usage older than some configured date when you run the KSdbConsist tool. Note that if you are trying to hide computer names, you may want to disable the Computer Name as an acceptable Computer ID type (in the Computer ID Types dialog in the Config Menu) - since the computer ID will not be changed even when the privacy settings are enabled.

Privacy pane of General Settings dialog

Purchase Currency

The Default Currency setting affects what currency is assumed for purchases where a currency is not explicitly set. It also determines what currency will be used in Purchase related reports.

Currency pane of General Settings dialog

Default Background Warning Actions

This section of the General Settings Dialog lets you configure what actions will occur by default when a managed program is idle. Note that these options only apply to programs when they are being managed by a Policy. Also, in the Policy Details Window, you can configure whether programs using the Policy will have these idle settings, or whether to do something else for that Policy.

Idle pane of General Settings dialog