# RBAC in Legacy Console

> \[!IMPORTANT]
>
> Role-Based Access Control (RBAC) is available as a public beta release in the Legacy Console. Beta products aren't covered by a Twilio SLA. Learn more about [beta product support](https://help.twilio.com/hc/en-us/articles/115002413087-Twilio-Beta-product-support).

## View role assignments

1. In the Legacy Console, go to [Twilio Admin](https://admin.twilio.com/).
2. Click **Access control** to open the **Role assignments** page. You can return to this view by clicking **Role assignments** in the navigation bar.
3. Search role assignments by name, email, SID, role, or scope. A scope defines where a role assignment applies: an organization, account, or subaccount.
4. To view a user's role assignment details, click the user's name.

## Add a new role assignment

When you assign roles to a user, you start by selecting the scope: organization, account, or subaccount. Then you can assign one or more roles to the user for the specified scope. Depending on the scope, you can select from General or Built-in roles. Learn more about [role types](/docs/iam/access-control/types-of-roles).

Users can have multiple roles in multiple scopes. You can assign up to 50 built-in roles per user across all scopes.

1. In the Legacy Conosle, go to [**Access Control** > **Role Assignments**](https://admin.twilio.com/access-control/role-assignments).
2. Click the user's name to open the **Role Assignment Detail** page.
3. On the **Role Assignment Detail** page, click **Add another assignment** to add a new role assignment.
4. Under **Scope**, search the organization, account, or subaccount you want to give access to. You can type the friendly name or SID to search.
5. Select the **Role** to add.
6. To add additional roles to the same scope, click **Add Role** .
7. To add a role to another scope, click **Add another assignment**.
8. Click **Save** to confirm the changes.

## Delete a user's role assignments

1. In the Legacy Console, go to [**Access Control** > **Role Assignments**](https://admin.twilio.com/access-control/role-assignments).
2. Click the user's name to open the **Role Assignment Detail** page.
3. On the **Role Assignment Detail** page, click **Edit assignment**.
4. To delete individual roles, click the dustbin icon beside the role.
5. To delete all the roles for a scope, click **Delete Assignment**.
6. Click **Save** to confirm the changes.

## View roles & permissions

1. In the Legacy Console, go to [\*\*Access Control \*\*> **Roles**](https://admin.twilio.com/access-control/roles).
2. The **Roles** page lists product groups, role names, and descriptions. A product group corresponds to a Twilio product such as Messaging or Phone Numbers. The General product group covers [general roles](https://support.twilio.com/hc/en-us/articles/223136227-What-s-the-Difference-Between-User-Roles-Owner-Administrator-Developer-Billing-Manager-and-Support-) and the Organization product group covers [organization roles](/docs/iam/organizations#organization-roles).
3. Click a role to view its permissions. General account roles and organization roles don't have individual permissions listed.

> \[!NOTE]
>
> * Only users with the Organization Owner or Organization Admin role can access the Access Control pages.
> * In the Legacy Console, you can't delete organization roles from the Access Control pages. Go to the user's detail page on the [**Managed users**](https://admin.twilio.com/managed-users) page to delete organization roles.
> * You can't delete the Owner role for an account from the **Access Control** page.