When working in distributed solution mode, users with the Senior security officer role can delete only a user-defined IDS rule that was imported into the current server. It means that in the PCN web interface, you can only delete a rule that was created on the PCN. In the SCN web interface, you can only delete a rule that was created on the SCN.
To delete a user-defined IDS rule:
This opens the action confirmation window.
The rule is deleted.
You cannot delete IDS rules defined by Kaspersky. If you do not want to use a Kaspersky IDS rule for scanning, add it to exclusions.
Users with the Security auditor role cannot delete user-defined IDS rules.
Users with the Security officer role cannot gain access to user-defined IDS rules.