The User Management component of the WSO2 Carbon facilitates the management
and control of user accounts and user roles at different levels. The key
functionalities of this component include:
Add, modify or remove user accounts
Add, modify or remove user roles
Managing User Roles
Use the Roles page to add new user roles, modify
existing roles, or delete existing roles.
Figure 1: Roles Management
In the navigator, under Configure, click Users and Roles
. The User Management
page appears.
Click on Roles in the System User Store
panel. The Roles page appears.
To add a user role,
Click Add New Role on the
Roles page.
Enter the role name.
Click Next.
Figure 2: Add user role
In step 2, select the permissions you want to assign to the role. Please refer to the
Role Permissions guide for details on permissions.
Figure 3: Add permission to user role
You can modify role permissions, and re-assign the users belonging to
particular role, by clicking Edit Permissions, and
Edit Users respectively on the
Roles page..
In step 3, optionally, you can select the users who
belong to that role. (Some external user stores like LDAP, do not allow to create empty roles. In that case this step is mandatory.)
Click Finish.
The role you created will appear in the Roles
panel.
Figure 4: Add users to role
To delete a role, click Delete on the
Roles page. Please note that you cannot delete
the admin role from the system.
Note:
If you connect to an external user store (like LDAP) in read only mode, you can read existing roles from it
but you can not edit/delete the roles.
In this case, you can still create new roles which will be managed internally and which are editable.
If you connect to the external user store in read/write mode, you can edit the roles in external user store as well.