How to configure or share Admin Control to non admin role user or a new role (XYZ) with limited admin rights



This is my 1st post on this forum regarding to admin rights or control to non admin role user or a new role nam (XYZ) with required limitations
as example a user with limited permission who can manage webhooks whats-app or other omnichennal apps as well mail boxes. i dont want to share all rights of admin control to that user in case of limited system configuration rights or permission .

Server Setup Information

  • Version of Rocket.Chat Server: 4.5.0
  • Operating System:
  • Deployment Method: Docker
  • Number of Running Instances:
  • DB Replicaset Oplog:
  • NodeJS Version: v14.18.3
  • MongoDB Version: 5.0.6 / wiredTiger (oplog Enabled)
  • Proxy: Nginx
  • Firewalls involved:

Any additional Information


Welcome to our forums :slight_smile:

You can create a new role, let’s say “midmanager” and apply to that role the permissions you want.

Then you add this “midmanager” role to the users you want to provide the related access.

Let me know if this helps.


i did it as you told me created a new role name mid-manager after assign this role to a user it works but when i logout and then re login that user it does not work even in role setting i could not delete that role and where it shows it is invalid role and delete or edit options are disabled .

i am using docker coruntly rocket chat version is 4.5.0 i tried to update on latest release 4.5.2version but on docker hub its still pending

try this for docker image:

@dudanogueira Hi!

I’m experiencing similar issues. I’m running version 4.5.4 (docker). I crated a new role called “student” and copied exactly the same permissions from “user” to “student”. I then assigned this role to a new user, but this new user is unable to create channels, direct messages, teams etc. Actually, they can’t even see the “Create new” button. Am I missing something?

so your user’s had the both the user role and the student role?

everyone should be a user. unwanted default permissions should be removed from user, and added to specific roles, that will be assigned only to the ones that is supposed to be in that roles.