# Grant access to users

Freelucy ships with two roles. Assign them through standard ServiceNow user administration — to individual users, or, preferably, to groups.

## The two roles

<table><thead><tr><th width="104.55434487760067">Role</th><th>Technical name</th><th width="118.27309440262616">Inherits</th><th>What it allows</th></tr></thead><tbody><tr><td>Editor</td><td><code>x_inpgh_lucy.editor</code></td><td>Reader</td><td>Create, remap, and delete relationships, and commit changes.</td></tr><tr><td>Reader</td><td><code>x_inpgh_lucy.reader</code></td><td>—</td><td>View existing relationships of a CI in read-only mode.</td></tr></tbody></table>

The Editor role contains the Reader role, so you only ever need to assign one or the other — not both.

***

## Assign a role to a group (recommended)

{% hint style="success" %}
**Best practice.** Assign roles to groups, not individual users. It scales better and survives team changes without manual cleanup.
{% endhint %}

1. From the ServiceNow homepage, click **All** and filter for **User Administration**, then open **Groups**.

   <figure><img src="https://files.readme.io/c0cd90f-assign_access1.png" alt="Open Groups under User Administration"><figcaption></figcaption></figure>
2. Open the group that should receive Freelucy access.
3. On the **Roles** tab, click **Edit**.
4. Filter by `x_inpgh_lucy` and select **Editor** or **Reader**.

   <figure><img src="https://files.readme.io/ffe2754-assign_access1.png" alt="Filter for the Freelucy roles"><figcaption></figcaption></figure>
5. Click the right arrow to add the role to the Roles List.
6. Click **Save**.

***

## Assign a role to an individual user

Use this only when group-based assignment is not appropriate (for example, a one-off pilot user).

1. From the ServiceNow homepage, click **All** and filter for **User Administration**, then open **Users**.

   <figure><img src="https://files.readme.io/8d405d0-assign_access3.png" alt="Open Users under User Administration"><figcaption></figcaption></figure>
2. Open the user record.
3. On the **Roles** tab, click **Edit**.
4. Filter by `x_inpgh_lucy` and select the role.

   <figure><img src="https://files.readme.io/be9af7a-assign_access1.png" alt="Filter for the Freelucy roles on a user record"><figcaption></figcaption></figure>
5. Click the right arrow to add the role to the Roles List.
6. Click **Save**.

***

## What's next

Continue with [Manage cross-scope privileges](/freelucy/configuration/cross-scope-privileges.md).


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.ins-pi.com/freelucy/configuration/grant-access.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.