Kiosk System Requirements

Hardware requirements

When MetaDefender Kiosk is installed on a separate system than MetaDefender Core, the system must meet the following requirements:

64-bit Architecture
Minimum system memory: 4 GB
Minimum available hard drive space: 10 GB
Minimum CPU architecture: 4 cores

When MetaDefender Kiosk is installed on the same system as MetaDefender Core, refer to the MetaDefender Core user guide for additional system requirements.

Software requirements

MetaDefender Kiosk can process files on devices with Windows file systems, Ext2/3/4, HFS Plus, HFSX, and APFS.

Operating System (64-bit only)
- Windows 7 Requires Service Pack 1 and Microsoft updates KB2533623 and KB3033929
- Windows 8
- Windows 8.1
- Windows 10
- Windows 11 (version 22H2 is not officially supported)
Windows Installer - 4.5 or higher
OPSWAT MetaDefender Core® - In order to scan files with MetaDefender Core's multi-scanning capabilities, MetaDefender Kiosk requires a MetaDefender Core. You can install the MetaDefender Core server on the same machine as MetaDefender Kiosk, or on a separate machine that MetaDefender Kiosk can access over the network. The requirements for MetaDefender Core vary depending on which version you plan to use. Refer to the MetaDefender Core user guide for installation instructions.

It is recommended that the OS of the system is maintained with the latest updates.

Windows 11, version 22H2 is not officially supported

Security requirements

The system administrators are required to make a Kiosk machine more secure by following these actions:

Set a BIOS password
Enable TPM and Secure Boot in the Windows system
Turn on BitLocker encryption

Kiosk is expected to be operated on a local, physical system. Operating a Kiosk in a remote desktop session is not supported. It is recommended to disable RDP access to the kiosk system if it is not required for your deployment environment.

Installed third party components

The following third party components are installed as part of the MetaDefender Kiosk installation process. These components may be shared with other applications.

All of these are required by MetaDefender Kiosk. Uninstalling them may result in unexpected behavior of other applications.

Component	Details
Microsoft Visual C++ redistributable	Microsoft Visual C++ 2010 Redistributable - x86 Microsoft Visual C++ 2010 Redistributable - x64 Microsoft Visual C++ 2012 Redistributable - x86 Microsoft Visual C++ 2012 Redistributable - x64 Microsoft Visual C++ 2013 Redistributable - x86 Microsoft Visual C++ 2013 Redistributable - x64 Microsoft Visual C++ 2017 Redistributable - x86 Microsoft Visual C++ 2017 Redistributable - x64
Paragon Software (optional)	APFS for Windows by Paragon Software HFS+ for Windows by Paragon Software Linux File Systems for Windows by Paragon Software

Installed services

The following list are services that MetaDefender Kiosk depends on for operating.

Product Services	Additional Information
MetadefenderSVC
ometascan, ometascan-node, ometascan-postgresql (Core v4.19+)	If Core is installed locally to Kiosk
Third Party Services
ParagonAPFSMounter	If APFS for Windows by Paragon Software is installed
apmwinsrv	If HFS+ for Windows by Paragon Software is installed
ParagonLinuxFSMounter	If Linux File Systems for Windows by Paragon Software is installed
Windows Services
Winmgmt	This service has dependencies on other Windows services

Required available ports

The following ports need to be available for the machine MetaDefender Kiosk is installed on.

Component/service	Port
MetaDefender Kiosk Web Console	8009
MongoDB	27019

Application directories and registry key

Installation location

Installation directory can be configured. Default location is C:\Program Files (x86)\OPSWAT\Metadefender Kiosk\Client.

Application directory

The %ProgramData%\OPSWAT directory is used for storing MetaDefender Kiosk application data.

Registry key

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\OPSWAT is the registry key for all OPSWAT products.

Real Time Protection \ Antivirus exclusion requirements

Real Time Protection (RTP) from any 3rd party software may adversely affect Kiosk operation as it will likely interfere with Kiosk's handling of media. It is recommended to either fully disable RTP or create exclusions to allow Kiosk to function and scan media without any interruptions.

Disabling Real Time Protection (RTP)

If setting up hardware not provided by OPSWAT, or your license key is not including Windows Defender as a part or MultiScan engine, ensure that Windows Defender Real Time Protection is disabled:

Under Virus & threat protection settings disable Tamper Protection
Under Local Group Policy Editor: Computer Configuration > Administrative Templates > Windows Components > Microsoft Defender Antivirus > Real-time Protection → Turn off real-time protection to Enabled
Apply and reboot the system

Directories exclusion settings if RTP must be on

If your policy does not allow for RTP to be disabled, it is necessary to exclude these directories:

Kiosk install directory
Kiosk temp directory (%LocalAppData%\OPSWAT\Metadefender Kiosk\Temp)
any known drive letters media will be mounted to when inserted

For Core, please refer to this knowledge base article on RTP exclusions.

These steps may need to be redone after a Windows update since it may cause the Windows Defender settings to be reset.

Programs not removed during uninstall

The Microsoft redistributables are not removed when MetaDefender Kiosk is uninstalled.

Last updated on

Was this page helpful?