When installing Kaspersky Security Center 10, the KLAdmins and KLOperators user groups are created automatically. These groups are granted permission to connect to the Administration Server and work with Administration Server objects.
KLAdmins and KLOperators groups are created:
- On the Administration Server and in the domain the Administration Server belongs to, if Kaspersky Security Center 10 is installed under a user account belonging to the domain.
- On the Administration Server, if Kaspersky Security Center 10 is installed under the system account.
You can use the standard operating system administration tools to view the KLAdmins and KLOperators groups, and to edit the permissions of users belonging to them.
The KLAdmins group is granted all access permissions. These permissions cannot be modified. Users belonging to the KLAdmins group are Kaspersky Security Center 10 administrators.
The KLOperators group is granted only Read and Execute permissions. Users belonging to the KLOperators group are Kaspersky Security Center 10 operators.
Kaspersky Security Center administration rights are granted to the local administrators of devices on which the Administration Server is installed.
After installing the application, the Kaspersky Security Center administrator can:
- Modify the permissions for KLOperators groups.
- Grant permissions to access Kaspersky Security Center functions to other user groups and individual users who are registered on the administrator’s workstation.
- Grant access rights to users in each administration group.