Thank you, Brent Knigge for attention, but unfortunately it is not what looking for. I understood that there are two types of autManager. And in the Larry's Yii book the DbAuthManager is used.
I'm speaking about how user's role could be change without deleting all settings of rbac. Because, it can be done by deceloper, but not by administrator who will use site.
Here is a long quote from the book:
"«The goal is to invoke the assign() method once for each user, as that's what the RBAC system will need in order to confirm permission.
The first thing you'll need to do is determi