diff --git a/config/rbac/awx_editor_role.yaml b/config/rbac/editor/awx_editor_role.yaml
similarity index 100%
rename from config/rbac/awx_editor_role.yaml
rename to config/rbac/editor/awx_editor_role.yaml
diff --git a/config/rbac/awxbackup_editor_role.yaml b/config/rbac/editor/awxbackup_editor_role.yaml
similarity index 100%
rename from config/rbac/awxbackup_editor_role.yaml
rename to config/rbac/editor/awxbackup_editor_role.yaml
diff --git a/config/rbac/awxmeshingress_editor_role.yaml b/config/rbac/editor/awxmeshingress_editor_role.yaml
similarity index 100%
rename from config/rbac/awxmeshingress_editor_role.yaml
rename to config/rbac/editor/awxmeshingress_editor_role.yaml
diff --git a/config/rbac/awxrestore_editor_role.yaml b/config/rbac/editor/awxrestore_editor_role.yaml
similarity index 100%
rename from config/rbac/awxrestore_editor_role.yaml
rename to config/rbac/editor/awxrestore_editor_role.yaml
diff --git a/config/rbac/editor/kustomization.yaml b/config/rbac/editor/kustomization.yaml
new file mode 100644
index 000000000..3c4d21458
--- /dev/null
+++ b/config/rbac/editor/kustomization.yaml
@@ -0,0 +1,13 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+
+labels:
+  - pairs:
+      rbac.authorization.k8s.io/aggregate-to-admin: "true"
+      rbac.authorization.k8s.io/aggregate-to-edit: "true"
+      
+resources:
+  - awx_editor_role.yaml
+  - awxbackup_editor_role.yaml
+  - awxmeshingress_editor_role.yaml
+  - awxrestore_editor_role.yaml
\ No newline at end of file
diff --git a/config/rbac/kustomization.yaml b/config/rbac/kustomization.yaml
index 731832a6a..33da722b0 100644
--- a/config/rbac/kustomization.yaml
+++ b/config/rbac/kustomization.yaml
@@ -9,6 +9,8 @@ resources:
 - role_binding.yaml
 - leader_election_role.yaml
 - leader_election_role_binding.yaml
+- ./viewer
+- ./editor
 # Comment the following 4 lines if you want to disable
 # the auth proxy (https://github.com/brancz/kube-rbac-proxy)
 # which protects your /metrics endpoint.
diff --git a/config/rbac/awx_viewer_role.yaml b/config/rbac/viewer/awx_viewer_role.yaml
similarity index 100%
rename from config/rbac/awx_viewer_role.yaml
rename to config/rbac/viewer/awx_viewer_role.yaml
diff --git a/config/rbac/awxbackup_viewer_role.yaml b/config/rbac/viewer/awxbackup_viewer_role.yaml
similarity index 100%
rename from config/rbac/awxbackup_viewer_role.yaml
rename to config/rbac/viewer/awxbackup_viewer_role.yaml
diff --git a/config/rbac/awxmeshingress_viewer_role.yaml b/config/rbac/viewer/awxmeshingress_viewer_role.yaml
similarity index 100%
rename from config/rbac/awxmeshingress_viewer_role.yaml
rename to config/rbac/viewer/awxmeshingress_viewer_role.yaml
diff --git a/config/rbac/awxrestore_viewer_role.yaml b/config/rbac/viewer/awxrestore_viewer_role.yaml
similarity index 100%
rename from config/rbac/awxrestore_viewer_role.yaml
rename to config/rbac/viewer/awxrestore_viewer_role.yaml
diff --git a/config/rbac/viewer/kustomization.yaml b/config/rbac/viewer/kustomization.yaml
new file mode 100644
index 000000000..6061d6bf3
--- /dev/null
+++ b/config/rbac/viewer/kustomization.yaml
@@ -0,0 +1,12 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+
+labels:
+  - pairs:
+      rbac.authorization.k8s.io/aggregate-to-view: "true"
+      
+resources:
+  - awx_viewer_role.yaml
+  - awxbackup_viewer_role.yaml
+  - awxmeshingress_viewer_role.yaml
+  - awxrestore_viewer_role.yaml