Managing access to application functions

This section describes user access restrictions for application functions.

In Kaspersky MLAD, you can use roles to restrict users' access to application functions depending on the tasks performed by users.

A role is a set of rights to access application functions that you can assign to a user.

Depending on the assigned role, users may have access to the following functions of Kaspersky MLAD:

Accessible functions of the application

Functional scope	System administrator	User role
Managing user accounts: Creating and editing a user account Revoking authentication tokens for a user account Viewing rights for a user account
Managing roles: Creating and changing a role Deleting role Viewing access rights for a role
Viewing the rights of users
Managing incident notifications: Creating, editing, and deleting incident notifications Enabling and disabling sending notifications about incidents
Configuring Kaspersky MLAD
Managing assets: Creating and modifying an asset Creating a tag and adding a tag to an asset Editing a tag Moving assets and tags Deleting an asset or tag Checking the current structure of tags Importing and exporting asset configurations
Managing ML models: Uploading an ML model Activating an imported ML model Creating an ML model Changing an ML model Adding and modifying a neural network element of an ML model Adding and modifying an ML model element based on a diagnostic rule Removing an ML model element Cloning an ML model Creating and modifying a template based on an ML model Creating an ML model based on a template Removing an ML model template Training elements of an ML model and viewing the results of training ML model elements Preparing an ML model for publication Publishing an ML model Removing an ML model		(by appointment)
Managing Kaspersky MLAD services: Viewing the statuses of services Starting, stopping, and restarting services		(by appointment)
View Kaspersky MLAD logs.		(by appointment)

All application users have the following default rights:

• Viewing summary data in the Dashboard section
• View primary and operational data by tags in the History and Monitoring sections
• Viewing the values of the process parameters received from the monitored asset's sensors at a certain point in time in the Time slice section.
• Working with events and patterns:
  • Configuring attention settings and display of event parameters
  • Creating and deleting monitors
  • Viewing the event and pattern history
• Working with incidents and groups of incidents:
  • Viewing incidents and incident groups
  • Adding a status, cause, expert opinion or note to an incident or incident group
  • Exporting incidents to a file
• The following actions in the Models section:
  • Creating, modifying, and deleting markups
  • Starting and stopping ML model inference
  • Viewing the data flow graph of an ML model
• Manage presets:
  • View presets
  • Create, modify, and delete models
  • Load a preset configuration from a file
  • Save a preset configuration to a file
• Change your own password

You can also create a role with a Rights to all actions permission. Users with this role have access to system administrator functions.

You can view the available user roles and their access rights to application functions in the Roles section of the administrator menu.

You can view application functionality access rights for specific users in the Users section of the administrator menu.

Page top