Skip to content

We're Hiring!
Docs
Plugin Hub
Support
Community
Kong Academy

You are browsing the Kong Gateway documentation archive. This documentation is no longer actively maintained.
See the latest Kong Gateway documentation.

Kong Gateway [ARCHIVE]
Kong Enterprise [ARCHIVE] pre-2.6
Kong Gateway OSS [ARCHIVE] pre-2.6
Latest Kong Gateway
documentation

Later versions (Enterprise and OSS)
2.5.x
2.4.x
2.3.x
2.2.x
2.1.x
1.5.x
1.3-x
0.36-x
0.35-x
0.34-x
0.33-x
0.32-x
0.31-x

Introduction
- Key Concepts and Terminology

Release notes

Deployment
- Installation
  - Containerized
    
    AWS (EKS)
    
    Docker
    
    Kong for Kubernetes Enterprise
    
    Kong Gateway (Enterprise) on Kubernetes
    
    OpenShift with Kong for Kubernetes Enterprise
    
    OpenShift with Kong Gateway (Enterprise) on Kubernetes
  - Operating Systems
    
    Ubuntu
    
    CentOS
    
    Amazon Linux 1
    
    Amazon Linux 2
    
    Red Hat Enterprise Linux
  - Marketplaces
    
    AWS (AMI)
    
    AWS (EKS)
    
    Azure
    
    Google Cloud
    
    Red Hat
- Deployment Options
- Deployment Guidelines
- Licensing
- Security
- Upgrades and Migrations
  - Migrating to the latest version
  - Migrating from OSS to Enterprise
- Kong Cloud

Getting Started

Guides & References

Admin API

Kong Manager
- Networking
  - Default and Custom Configuration
  - Configuring to Send Email
- Securing Kong Manager
- Authentication
- LDAP Service Directory Mapping
- OIDC Authenticated Group Mapping
- Reset Passwords and RBAC Tokens
- Administration
  - Workspaces in Kong Manager
  - Add a Workspace
  - RBAC
    
    RBAC in Kong Manager
    
    Create a New Role
    
    Create an RBAC User
    
    Add a Role and Permissions
  - Admins
    
    Invite an Admin
    
    Add an Admin
- How-Tos

Kong Dev Portal
- Enable the Dev Portal
- Structure and File Types
- Using the Portal Files API
- Working with Templates
- Using the Editor
- Networking
- Configuration
  - Authentication
    
    Basic Auth
    
    Key Auth
    
    OIDC
    
    Sessions
    
    Adding Custom Registration Fields
  - SMTP
  - Workspaces
- Administration
- Customization
- Helpers CLI

Kong Vitals

Plugin Use Cases

report-issue Report an issue

Create a New Role with Custom Permissions

Kong Gateway Enterprise [ARCHIVE]

2.4.x

Kong Konnect Platform
Kong Gateway
Kong manager
Administration
Rbac

PermalinkCreate a New Role with Custom Permissions

PermalinkPrerequisites

Authentication and RBAC are enabled, following the Getting Started guide
Logged in as the Super Admin or a user that has /admins and /rbac read and write access.

PermalinkCreate a New Role with Custom Permissions

On the Admins page, to create a new Role, click the Add Role button at the top right of the list of Roles.
On the Add Role form, name the Role according to the Permissions you want to grant. Write a brief comment describing the Permissions of the Role.
Click the Add Permissions button and fill out the form. Add the endpoint Permissions by marking the appropriate checkbox.
Click Add Permission to Role to see the Permissions listed on the form.
To forbid access to certain endpoints, click Add Permission again and use the negative checkbox.
See the new Role appear on the Admins page

⚠️ IMPORTANT: Every Admin who needs access to Kong Manager will need at least read access to the home “/” endpoint.

⚠️ IMPORTANT: A negative Permission will always take precedence over a positive one.

Thank you for your feedback.

Was this page useful?

THE CLOUD CONNECTIVITY COMPANY

Kong powers reliable digital connections across APIs, hybrid and multi-cloud environments.
- Company
- Customers
- Events
- Investors
- Careers Hiring!
- Partners
- Press
- Contact
Products
Resources
- eBooks
- Webinars
- Briefs
- Blog
- API Gateway
- Microservices
Open Source
Solutions

Terms•Privacy

© Kong Inc. 2025