what is the User Self Modification Role in Authentication Manager version 8.x ?
OK, I see it now, it is hidden inside my database.
It's purpose: "Dynamically associated with all users by the system to enable them to modify their details through trusted applications, for example, RSA Self-Service. This role cannot be modified, deleted, or unassigned for a user."
All users have this role. It's just part of the 'plumbing' so to speak.
EDIT: I have the answer in a later post below
Original: Roles on Authentication Manager are Administrative Roles, and the built-in roles make no mention of User Self Modification.
Unless you mean a highly restricted custom admin role ? Or perhaps AM Prime SSP ?
Perhaps you mean allowing users access to the self-service console where a user can change or modify specific identity attributes ? example: here I will allow users to be able to change their first name
the admin role "User Self Modification Role" does not show up in the AM security console but if I run a SQL query for AM admin roles it does show up
User Self Modification Role | f 000000000000000000001000e0031001 | 000000000000000000001000e0011000 | Administrative Role used by the SYSTEM for Trusted Realm Command Execution
I assume this is a built in admin role that is used by the system and cannot be assigned to an administrator.
Retrieving data ...