How to manage user roles
Access to the functionality of the Kaspersky application on the command line depends on the user's role.
A role is a set of rights and privileges for managing the application.
Three user groups are created in the operating system: kfladmin, kfluser, and nokfl. When you assign an application role to a system user, the user is added to the corresponding group (see the Roles table below). When you revoke a role from a user, this user is removed from the corresponding group.
If no application role is assigned to a system user, that user belongs to a separate group of users without rights.
Thus, the roles correspond to the three groups of operating system users:
- kfladmin corresponds to the Administrator role.
- kfluser corresponds to the User role.
- nokfl is assigned to a user if no other roles are assigned. In this case, the user belongs to a separate group of users without privileges
User roles
Role name
Role in application
OS user group
Permissions
Administrator
admin
kfladmin
Managing application settings and task settings in the graphical interface of the application and on the command line without using the
sudocommand.Manage application licensing.
Assigning roles to users.
Revoking user roles (the administrator has no right to revoke the admin role from himself).
View and manage users' Storages.
User
user
kfluser
Manage only user file scan tasks.
Start and stop Update tasks.
View reports for the tasks created by this user.
View specific events that are common for all application users.
—
—
nokfl
No role is assigned in the application, no permissions.