# Access Roles

An access role is a set of one or more access policies that can be assigned to one or more users, or one or more access keys. Access roles can be managed via <https://app.bird.com/settings/security/access-roles>

When creating access policies you should give access only to the resources you need to access via the API.&#x20;

## Creating an access role

In this example we will create an access role that will attach the access policy that was created in the [access policies](https://docs.bird.com/api/access-policies#creating-an-access-policy) example

<figure><img src="https://3210271997-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FdnJZeZvhOMhDQA8SpjQM%2Fuploads%2F7VdjeAKLFpNfdvnqkWax%2FWork%20Here%20-%20Horizontal%20Frame%20(7).png?alt=media&#x26;token=cc05f838-1744-408d-84a1-af9c4ad05e45" alt=""><figcaption><p>Create a new role</p></figcaption></figure>

1. The first step is to give the role a meaningful **name** and **description**.&#x20;
2. Next attach one or more policy definitions. To select a custom policy make sure type is set to **organization.**
3. Finally Create Role

<figure><img src="https://3210271997-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FdnJZeZvhOMhDQA8SpjQM%2Fuploads%2FWauoKHXaPWKvi6tOBMiH%2FWork%20Here%20-%20Squared%20Frame%20(5).png?alt=media&#x26;token=d40f4e71-3803-4267-b88e-01931fdca055" alt=""><figcaption><p>Create an access role</p></figcaption></figure>

## Understanding role policies

When creating a role you can add one or more access policies to provide (or deny) access a role access to certain API endpoints. As well as attaching custom policies that you have created, MessageBird has provided a number of managed policies to carry out common actions.

| Field Name | Description                                   | Values                                                   |
| ---------- | --------------------------------------------- | -------------------------------------------------------- |
| Type       | Select from either custom or managed policies | <p>Organization<br>Managed</p>                           |
| Policy     | Select the policy                             | Any Organization or Managed policy that has been created |


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.bird.com/api/api-access/access-roles.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.