According to the tests, these permissions can be assigned only through yml files and securityadmin.sh. OpenSearch Dashboards doesn’t allow to either duplicate the role or map users.
Also, these permissions don’t allow to use internal users to access these endpoints and admin certificates are still required.