Navigate to the realm (or organization) to which you will add the authentication configuration service.
Click the Subjects tab.
Filtered Roles or Roles.
Select the role for which to set the authentication configuration.
If the Authentication Configuration service has not been added to the role, click Add, select Authentication Service and click Next.
Select the Default Authentication Chain that you wish to enable from the pull down menu.
If you are creating a new role, the Authentication Configuration service is not automatically assigned to it. Make sure that you select the Authentication Configuration service option at the top of the role profile page before you create it.
When role-based authentication is enabled, the LDAP authentication module can be left as the default, as there is no need to configure Membership.