when we deploy this over an existing 1.0 context, RBAC should get initialized properly.

the bootstrapping mechanism should always ensure that if the server properties file identifies an admin, that that admin has sufficient permissions to adminster rbac. that is so in the case that somehow the rbac stuff gets screwed up, that an admin can still get in.