Configuring access permissions for Kaspersky Security for Windows Server and the Kaspersky Security Service
To configure the access permissions for a user or group you need to specify the security descriptor string using the security descriptor definition language (SDDL). For detailed information about the security descriptor string, please visit the Microsoft website.
To configure the access permissions for a user or group:
In the main window of the Web Console, select Devices → Policies & profiles.
Click the policy name you want to configure.
In the <Policy name> window that opens select the Application settings tab.
Select the Supplementary section.
Perform one of the following steps:
Click Settings in the User access permissions for application management subsection if you want to edit the list of users who have access permissions for managing Kaspersky Security for Windows Server functions.
Click Settings in the User access permissions for Kaspersky Security Service management subsection if you want to edit the list of users who have access permissions for managing the Kaspersky Security Service.
Add a user or group by specifying the security descriptor string in the User access permissions for application management or User access permissions for Kaspersky Security Service management window.