User roles can be specified as administrators of kPow.
kPow Admins have access to the full kPow Admin UI and admin specific features like creating temporary RBAC policies and managing staged mutation requests.
Admin roles are specified within your Role Based Access Control configuration.
View the documentation for temporary policies here
View the documentation for staged mutations here