Roles

In plain English

A role is a named bundle of permissions (like "Help Desk" or "Read Only"). You assign the role to people instead of granting powers one by one — keeping access tidy and audits simple.

📺 Watch the Guided Tour → — a picture-led, plain-English walkthrough.

Console View

Roles Console

Roles define a set of permissions that can be assigned to users or groups. Identity Broker uses Role-Based Access Control (RBAC) to secure the Admin Console and API.

Built-in Roles

Super Admin: Full access to all features and settings.
Help Desk: Can view users and reset passwords/MFA, but cannot change system config.
Read Only: Can view configurations but cannot make changes.
App Admin: Can manage Applications and specific integrations.

Custom Roles

You can create custom roles by selecting specific Permissions to match your organization's delegation model.

Console View​

Built-in Roles​

Custom Roles​

Console View

Built-in Roles

Custom Roles