Roles contain permissions for users to manage the Identity Server. You can create different roles with various combinations of permissions and assign them to a user or a group of users.
Follow the instructions below to create a new user's role.
1. Sign in. Enter your user name and password to log on to the Management Console.
2. Click the "Configure" button to access the "Configure" menu.
3. From the "Configure" menu, select "Users and Roles."
4. On the "User Management" page, click on the "Roles" link.
5. On the "Roles" page, click on "Add New Role."
6. Enter the name for the role and click "Next." You can also click "Finish," in which case the new role will be created with default permissions (none) and no assigned users.
7. The permission model of WSO2 Identity Server is hierarchical. Permissions can be assigned to a role in a fine-grained or a coarse-grained manner. For example, you can either select the whole class of permissions, such as "Configure," by checking the corresponding box, or you can expand that class and select one or several items.
Select the permissions you would like to add to your role and click "Next."
8. Select the users to be assigned to the role. You can conduct a search by name, or view all users by entering "*" into the search field.
9. Click "Search."
10. Select the users you want to add the role to.
11. Click on the "Finish" button.
12. The new role is added to the list.
From here, you can rename roles, assign new permissions and users, and delete a role.