User with admin and security_admin roles is having issues adding / removing members from Groups containing the admin role - Support and Troubleshooting

User with admin and security_admin roles is having issues adding / removing members from Groups containing the admin role Issue A user with the admin and security_admin roles cannot add nor remove members from Groups containing the admin role. When trying to add members, the user will see the following error message: "User is not authorized to perform this action".

Release All

Cause The admin role contained several other roles as part of its configuration, one of those roles had 'Elevated privilege' checked.

If the admin role contains another role that has Elevated privilege checked, a user with the admin role must use 'Elevate Roles' to elevate to the contained role to utilize the expected admin privileges.

Resolution For the user to add members to the group containing the admin role, the user must elevate his role first to the contained role:

When logged in to the instance, click on the user's name (i.e. System Administrator) on the top right of the banner's header and select "Elevate Roles".

On the following window, select the contained role and press OK. After elevating roles, that user should be able to add and remove members from groups containing the admin role.

Related Links Elevate to a privileged role