I am new to opc ua. I am using the prosys Opc Ua Java SDK for opc Ua server developement and UaExpert client with certificate/private key
authentication method.

1)I am able to connect to the server and validate the client certificate(add it to trusted cert store) inside onValidate(Session session, ServerUserIdentity serverUserIdentity) method.
2)I have added NodeAccessInfo in Uamodeler and given All access to a node for “Administrator” and restricted access for other roles.
3)I want to add/give “Administrator” role to a particular client(based on certificate information retrieved from ServerUserIdentity )
which connects to server.

Please clarify How to link client identity to a role in OPC-UA(UaModeler) so that I can achieve below:

OPC-UA can restrict access to UaModeler nodes.A session should map user identity (or the certificate of the client application) to a role.
Thus, the server can grant or deny access to nodes.