You may have seen an unexpected Admin role in the normal CA Identity Manager deployment v14.x, and wondered what this is for, why is it assigned to all users out of the box, why can System Manager not manage it, can we remove it, and if yes how do we?
It is a role mean for the Cloud version of Identity Manager. It has been cleaned up for the upcoming release.
The reason this Admin Role is not visible via the UI is because the role is owned by "MSP Administrator, CSP Administrator, Tenant Administrator," and these roles are not present in the normal Identity Manager package.
To remove the role, create an XML file and add/update Owner to include "System Manager."
The role becomes manageable now and can be removed from the user interface.