Sample Policy for Administrative Sys Backend Policies

Is there a reference available for a comprehensive Administrative policy structure that includes Sys Backend to mimic root access. I keep applying capabilities against backend constructs but they don’t appear in the UI when I’m logged in with an account that is bound to that policy?

You’re not giving much specific detail here … But if comprehensive access is what you want, how about just applying a policy granting all capabilities, including sudo, to sys/* ?

This is sort of a bad idea but …

path "*" {
    capabilities = ["create", "read", "update", "delete", "list", "sudo"]
}

works.

If you want to be more refined … check:

You can get a list of the various sys/* and then check audit/*.