CA Identity Manager r8.x, used with CA SiteMinder, had the ability to use Access Roles to enable/disable access to SiteMinder controlled web resources based on role membership. This "Role Based Access Control" (RBAC) was originally disabled in r12 due to CA Identity Manager's decoupling from CA SiteMinder. RBAC has been reintegrated with CA Identity Manager r12 CR9 but this capability is disabled by default. The purpose of this document is to explain the process of enabling RBAC in CA Identity Manager r12 CR9.
Please see the following document: https://support.ca.com/phpdocs/7/5655/TEC507048.pdf