Description

You may want to allow certain users to do everything, but without giving them access to modify policies, manage users, or assign roles. However, when using default roles provided by KSC, some permissions are either too broad or unchangeable.

Steps to Create the Custom Role:

1. Open Kaspersky Security Center.
2. Go to Administration Server Properties → Users Roles.

1. Click “Add” to create a new role.
2. Enter a role name (e.g., Rule for Hospitals).
3. In the Rights tab:
   • Allow the necessary permissions such as:
     • View reports
     • Run tasks
     • Monitor devices
   • Do not grant permissions related to:
     • Policy creation
     • Policy editing
     • Policy assignment

1. Click OK to save the role.

Assign the Role:

1. Go to Security → Users.
2. Select the user or group who needs restricted access.
3. Assign the newly created role (Rule for Hospitals) to them.

Result:

• The user can perform routine operations like monitoring, Running tasks and Reporting.
• The user cannot:
  • Modify policies

• • Manage or assign users and roles

• Ensures security, compliance, and accountability across the KSC environment.