diff --git a/cli/cmd/role.go b/cli/cmd/role.go
new file mode 100644
index 0000000000000000000000000000000000000000..5e587e05c72fe6e5c730090914dff3217f5b0fb4
--- /dev/null
+++ b/cli/cmd/role.go
@@ -0,0 +1,49 @@
+/*
+Copyright © 2021 da/net Research Group <danet@h-da.de>
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are met:
+
+1. Redistributions of source code must retain the above copyright notice,
+   this list of conditions and the following disclaimer.
+
+2. Redistributions in binary form must reproduce the above copyright notice,
+   this list of conditions and the following disclaimer in the documentation
+   and/or other materials provided with the distribution.
+
+3. Neither the name of the copyright holder nor the names of its contributors
+   may be used to endorse or promote products derived from this software
+   without specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
+AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE
+LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
+CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
+SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
+INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
+CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
+ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
+POSSIBILITY OF SUCH DAMAGE.
+*/
+
+package cmd
+
+import (
+	"github.com/spf13/cobra"
+)
+
+//var duid string
+
+// networkElementCmd represents the network element command.
+var roleCmd = &cobra.Command{
+	Use:   "role",
+	Short: "the role command contains all sub-commands for role management",
+	Long:  `The role command contains all sub-commands for role management. It has no functionality in itself.`,
+}
+
+func init() {
+	rootCmd.AddCommand(roleCmd)
+}
diff --git a/cli/cmd/roleCreate.go b/cli/cmd/roleCreate.go
new file mode 100644
index 0000000000000000000000000000000000000000..daabe23cac3efaaf692dde3296aeaf63aabd7acb
--- /dev/null
+++ b/cli/cmd/roleCreate.go
@@ -0,0 +1,90 @@
+/*
+Copyright © 2021 da/net Research Group <danet@h-da.de>
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are met:
+
+1. Redistributions of source code must retain the above copyright notice,
+   this list of conditions and the following disclaimer.
+
+2. Redistributions in binary form must reproduce the above copyright notice,
+   this list of conditions and the following disclaimer in the documentation
+   and/or other materials provided with the distribution.
+
+3. Neither the name of the copyright holder nor the names of its contributors
+   may be used to endorse or promote products derived from this software
+   without specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
+AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE
+LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
+CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
+SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
+INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
+CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
+ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
+POSSIBILITY OF SUCH DAMAGE.
+*/
+
+package cmd
+
+import (
+	"github.com/pterm/pterm"
+	"github.com/spf13/cobra"
+	"github.com/spf13/viper"
+
+	"code.fbi.h-da.de/danet/gosdn/api/go/gosdn/rbac"
+	"code.fbi.h-da.de/danet/gosdn/controller/api"
+)
+
+// networkElementCreateCmd represents the create command.
+var roleCreateCmd = &cobra.Command{
+	Use:   "create",
+	Short: "creates a role in the controller",
+	Long: `Creates an orchestrated network network element on the controller.
+Network element address must be provided with IP and port,e.g., 192.168.1.1:6030. User credentials need to be provided as parameters
+if they diverge from the default credentials (user:'admin' and pw:'arista').`,
+
+	Run: func(cmd *cobra.Command, args []string) {
+		spinner, _ := pterm.DefaultSpinner.Start("Creating new role")
+
+		roles := []*rbac.Role{
+			{
+				Name:        createRoleName,
+				Description: createRoleDescription,
+				Permissions: createRolePermissions,
+			},
+		}
+
+		_, err := api.CreateRoles(createContextWithAuthorization(), viper.GetString("controllerAPIEndpoint"), roles)
+		if err != nil {
+			spinner.Fail(err)
+			return
+		}
+
+		spinner.Success("Roles have been created.")
+
+	},
+	PostRun: func(cmd *cobra.Command, args []string) {
+		// Necessary for prompt mode. The flag variables have to be resetted,
+		// since in prompt mode the program keeps running.
+
+		createRoleName, createRoleDescription = "", ""
+		createRolePermissions = nil
+	},
+}
+
+var createRoleName string
+var createRoleDescription string
+var createRolePermissions []string
+
+func init() {
+	roleCmd.AddCommand(roleCreateCmd)
+
+	roleCreateCmd.Flags().StringVar(&createRoleName, "name", "", "add a name for the role")
+	roleCreateCmd.Flags().StringVar(&createRoleDescription, "description", "", "add a description to the role")
+	createRolePermissions = *roleCreateCmd.Flags().StringSlice("permissions", nil, "add permissions to the role like this: \"/gosdn.networkelement.NetworkElementService/GetFlattened,/gosdn.pnd.PndService/GetPnd\"")
+}