You are right, I did. I was thinking row and misread that. I've seen RBAC mostly as row based, not role.

In terms of roles, there isn't a script to do this because the roles will have disparate requirements. Ultimately you need to map roles to specific tables and rights. Build a grid of the roles (admin, manager, developer, reporting user, data entry, etc), the tables, and rights( select, insert, update, delete).

You can do this a few ways, but essentially drop two of these on the axis and the third in the middle.

Once you've determined who gets what rights, it's easy. Create the roles. Add the rights to the roles for the objects, move people into roles.