Page Comparison

...

• Admin - Provides full access to all features and controls. By default, the user "admin" is assigned to both the "Admin" and the "Everyone" roles.
• Everyone - Every new user is assigned to this role by default. It does not include any permissions.
• System - This role is not visible in the Management Console.

...

Roles contain permissions for users to manage the Identity Server. You can create different roles with various combinations of permissions and assign them to a user or a group of users.

Follow the instructions below to create a new user's role.

1. Log in to the Management Console by entering your user name and password.
   Image Removed
2. Click Configure from the main menu to Sign in. Enter your username and password to log on to the Management Console.
3. Click Configure to access the Configure menu.
   Image Modified 
4. In From the Configure section menu,  click select Users and Roles to access the User Management page.Image Removed
5. In On the User Management section page,   click on the UsersRoles link.
   Image Modified
6. The Users menu facilitates the Add New User, Bulk Import Users, Change Password, Assign Roles, View Roles, and Manage User Profile features.
   Image Removed
7. Click on the On the Roles page, click on Add New Role link.
   In the Add Role page, enter the role details.
   Image Removed
   

   Info
   The Domain label specifies the user-store where the role information is saved. The domain is set to PRIMARY by default in the single-user-store option, whereas in the multiple-user-store, all the user-stores are populated in the domain drop-down list allowing you to choose the required user-store.

   There are two options available with the Add Role page, namely Role Only and Role with Permissions options. Click the Finish button to save the role with no permissions. Clicking the Next button directs you to the Role with Permissions option.

   infoImage Added
8. Enter the name for the role and click "Next." You can also click "Finish," in which case the new role will be created with default permissions (none) and no assigned users.
   Image Added
9. The permission model of WSO2 Identity Server is hierarchical. Permissions can be assigned to a role in a fine-grained or a coarse-grained manner. For example, you can either select the whole class of permissions, such as as Configure, by checking the corresponding box, or you can expand that class and select one or several items. 
   Image Modified
10. The Permission List page shows two methods, namely “Save Role Only” and “Attaching Users With the Role” .
11. Click the Finish button after marking the required permissions in the permission list tree. This enables you to save the role with the specified permissions. Clicking the “Next” button directs you to the Attaching Users With the Role option.
12. Select the permissions you would like to add to your role and click Next.
    Image Added 
13. Select the users to be assigned to the role. You can conduct a search by name, or view all users by entering "*" into the search field.
    Image AddedImage Removed
14. The User List page enables you to Select all on this page, Unselect all on this page, Select all from page 1, and Unselect all from page 1. You may also select the individual check boxes to choose the required users.
15. Click on the Finish button to assign the selected users to the role.
16. A new role is created with the specified user list. The role name is displayed in the Roles list.
    Image RemovedClick Search.
17. Select the users you want to add the role to.
    Image Added
18. Click on the Finish button.
    Image Added
19. The new role is added to the list.
    Image Added

From here, you can can rename roles, assign new permissions and users, and and delete a role.