hello, is it possible to create a cluster-wide role via role templates? E.g., I would like to create a role to allow list all CRDs, which must be the clusterwide role. If I just add it as another roletemplate, it does not work. Creating some namespace scoped role works as expected. I did not find a word about this in rancher documentation.

Yeah so you'll need to use ClusterRoles and ClusterRolebindings vs Roles and RoleBindings

I meant the rancher Role Templates, those are projected into K8s RBAC, but I wonder, if you can create the cluster role via the template as described here: https://ranchermanager.docs.rancher.com/how-to-guides/new-user-guides/authentication-permiss[…]e-based-access-control-rbac/cluster-and-project-roles

to confirm, you have gone to users and auth --> role templates --> clusters tab and created a role there, then added the target user / group as a member of that cluster with that role?

ah, yes, this is correct, thank you. I wondered, if create-ns role is under Project/Namespace and it is actually clustrescope role, then if I can create the same Project/Namespace clusterwide role.