KSC Open API
Kaspersky Security Center API description
Role 


+--- (paramParams)
     +---KLHST_ACL_ROLE_DN = (paramString)"<display name>"
     +---KLHST_ACL_ROLE_NAME = (paramString)"<guid name>" // use only in UpdateRole, for example 'CD4C4C77-7990-4a39-82D9-9473E729B7D3'
     +---KLHST_ACL_ROLE_ID = (paramInt)<id> // use only in UpdateRole
     +---KLHST_ACL_ROLE_BUILT_IN = (paramBool)<is built in> // Role is built in
     +---KLHST_ACL_ROLE_INHERITED = (paramBool)<is inherited> // Role is inherited from the primary server
     +---KLHST_ACL_ROLE_READ_ONLY = (paramBool)<is read only> // Role is read only
     +---role_products (paramParams)
         +---<1093> (paramParams)
             +---<1.0.0.0> (paramParams)
                 +---role_perm_allowed (paramArray) // allowed permissions list
                 |   +---0 (paramParams)
                 |       +---data (paramParams)
                 |           +---<functional area> (paramParams) // see Functional areas
                 |           |   +---operation_mask = (paramInt)<access mask> see Access rights
                 |           |   +---product = (paramString)"<product>" // see Functional areas
                 |           |   +---version = (paramString)"<version>"
                 +---role_perm_denied (paramArray) // denied permissions list
                     +---0 (paramParams)
                         +---data (paramParams)
                             +---<functional area> (paramParams)
                                 +---operation_mask = (paramInt)<access mask>
                                 +---product = (paramString)"<product>"
                                 +---version = (paramString)"<version>"

Default roles:

Main Administrator18BA84FF-034A-4bb6-98F8-FBBBB8B517E2
Main Operator99C77992-53E6-41ff-B1A3-DE0122F6FC3E
Management Administrator0D33583C-B0EB-4d87-A183-A76075F567C4
Management OperatorE62038AE-0422-4fe9-9091-3E11E07418B6
Installation Administrator92C9E814-F944-4bbe-AC50-E7020DC45DF5
Installation Operator0FBE9530-C6CD-429e-BCD1-B0E37F4782AB
System Management AdministratorDBA9B371-12D3-464e-B275-AB07A40EE679
System Management Operator6F9D1A46-FFE1-470b-B5D6-E7678B224313
Mobile Device Management Administrator0E61C94D-367A-4e8c-99B6-AF2BDA605FD6
Mobile Device Management OperatorD32BCB1C-12A6-480a-8C18-47E2B7D8470C
Mobile Device Management Self-Service User652A8D23-9291-4d34-8473-7F626D7EC507
Endpoint's AdministratorDE665BF8-6E69-4479-9452-C8BDAC338040
Endpoint's Operator5D2FE991-57EC-4823-9ACC-DCCDCB256663
AuditorC7BAA2B3-487B-4be9-9E71-3ACF18A2BE43
Executive View8BD8785F-B232-4213-8C0B-E6E9F825FADD
Security Officer54036F38-1619-4128-92F6-1D7A43B78B60