You can use the Admin App, CLI commands, or REST API methods to change the permissions that a role contains.
About permissions
Each permission in a role grants a user the ability to perform an action in some area of the system. For example, the permission admin:services:read grants the ability to view services through the Admin App.
Admin App instructions
- Use the Individual and Wildcard tabs to edit the permissions for the role.
On the Individual tab, you can enable individual permissions or categories of permissions:
- Select a category of permissions and select one or more individual permissions within the category.
For example, with the permissions selected in this image, a user can read, create, and update certificates, but cannot delete them.
- On the Wildcard tab, you can enable permissions for multiple categories at the same time. To do this:
- Click Add Permission.
- Use the menus to select a category of permissions.
- Leave the last menu set to the wildcard character (*).
- Select a category of permissions and select one or more individual permissions within the category.