Hi all, I have spent hours and hours trying to get this to work. Now I turn to you, hoping that you will be able to help me out. We have imported a large number of users from our current SSO solution into Keycloak. In the admin UI, we want to limit which client roles certain users should be allowed to set. For example, we have the user group Swedish Content Managers. These users should only be allowed to use the admin UI for listing users and for setting or removing the role Swedish Authirized Distributor. I have spent hours and hours trying to set this up with the instructions in the documentation, but have not managed to get it to work all the way. Many thanks /Daniel _______________________________________________________________________ [Email_CBE.gif]Daniel Hammarberg Managing Delivery Architect | Application Services Capgemini Sweden www.capgemini.com<http://www.capgemini.com/> ________________________________ Capgemini is a trading name used by the Capgemini Group of companies which includes Capgemini Sverige AB, a company registered in Sweden (number 556092-3053) whose registered office is at Gustavslundsvägen 131 Box 825 – S-161 24 Bromma. This message contains information that may be privileged or confidential and is the property of the Capgemini Group. It is intended only for the person to whom it is addressed. If you are not the intended recipient, you are not authorized to read, print, retain, copy, disseminate, distribute, or use this message or any part thereof. If you receive this message in error, please notify the sender immediately and delete all copies of this message.