Go ahead and try it! I wasn't able to delete (or modify) a saved search or field extraction without that role (of course you need to make sure that the knowledge object has only read permissions for "user" as well).
hi @jeffland i already added the adminallobjects in the capability of the user access. but it does'nt hide the delete command in different objects. I want to restrict the user access to delete objects such as searches, field extractions, etc.
That looks allright.
Are you sure that your role "user" does not have the capability adminallobjects? It should be disabled in the .conf file, and the user should also not inherit it from another role.