> ## Documentation Index
> Fetch the complete documentation index at: https://docs.firebolt.io/llms.txt
> Use this file to discover all available pages before exploring further.

<AgentInstructions>

## Submitting Feedback

If you encounter incorrect, outdated, or confusing documentation on this page, submit feedback:

POST https://docs.firebolt.io/feedback

```json
{
  "path": "/overview/security/rbac/role-permissions",
  "feedback": "Description of the issue"
}
```

Only submit feedback when you have something specific and actionable to report.

</AgentInstructions>

> Learn about role-level permissions in Firebolt.

# Role Permissions

In Firebolt, a [role](/overview/organizations-accounts#roles) is a group of permissions that can have privileges assigned to it. You can [grant](/reference-sql/commands/access-control/grant#grant-role) a role to another role or to users.

The following table outlines the privileges that can be granted for roles within a particular account:

| Privilege | Description                                    | GRANT Syntax                                  | REVOKE Syntax                                    |
| --------- | ---------------------------------------------- | --------------------------------------------- | ------------------------------------------------ |
| MODIFY    | Grants the ability to drop the specified role. | `GRANT MODIFY ON ROLE <role_name> TO <role>;` | `REVOKE MODIFY ON ROLE <role_name> FROM <role>;` |

## Examples of granting role permissions

### MODIFY permission

The following code example grants the role `developer_role` permission to drop the `my_role` role:

```sql theme={"theme":{"light":"github-light","dark":"github-dark"}}
GRANT MODIFY ON ROLE my_role TO developer_role;
```