Once a role has been created, you may want to rename it or change the permissions associated with it. Only users with the Admin role can edit custom roles. 

To edit a Custom Role, follow these steps: 

1. Select Settings from the left navigation bar 
2. Select Roles and Permissions
3. Open the role you would like to edit.
   • Roles such as Admin are non-editable and cannot be modified. You can identify editable role by verifying the role Type on the Roles and Permissions screen.
     
4. Select Edit at the top to edit the Name and Description
5. Select Edit in the Permissions section to update the role's permissions
   • After a role has been assigned, the scope assigned to the user cannot be modified. Review the NOTE section below. 
6. Click Save to apply your updates
   

NOTE: After a role has been assigned you cannot modify a custom role’s permissions if the permission you are attempting to add has a narrower scope context than that of the role. 

For example, sample Role A below has a Scope of Tenant and Branch, because the Role’s scope is determined by its narrowest shared permission scope. 

• You can add a permission with Tenant, Branch scope context to maintain its scope context. 
• You can add a permission with Tenant, Branch and Group scope context to maintain its scope context. The scope will not expand, since not all of the permissions share the Group Scope.
• You can remove all permissions with Tenant, Branch scope and leave only permissions with Tenant, Branch and Group scope. This will expand the role's access context to Tenant, Branch, Group. 
• You cannot add a permission with Tenant only scope context as it will result in the following error message: 
  
  Narrowing the Scope of a role is not allowed, as it would restrict previously granted access context levels.