After an Oracle Cloud Infrastructure Process Automation instance is created, you must assign IDCS application roles to groups of users in Oracle Identity Cloud Service (IDCS) to allow them to access the Workspace Administration and Designer user interfaces of the Process Automation instance.

1. Open the navigation menu and click Identity & Security. Under Identity, click Domains.
   The Domains page is displayed.
2. If not already selected, select the Compartment in which the domain that contains the group to which you want to assign Process Automation roles resides.
3. In the Name column, click the domain for the group to which you want to assign roles.
   The domain Overview page is displayed.
4. In the navigation pane, click Oracle Cloud Services.
   The Oracle Cloud Services page is displayed.
5. In the Oracle Cloud Services page, navigate to the Process Automation service instance for which you want to assign group roles.
   You can also search for the service instance by entering the prefix or string that begins the Process Automation service instance's display name.
6. Click the Process Automation service instance to open the instance details page.
7. Under Resources, click Application roles.
   The available IDCS application roles are displayed.
8. In the Application roles list, locate the role(s) that you want to assign to the group. At the far right, click Open Details .
9. Next to Assigned groups, click the Manage link.
10. On the Manage group assignments pane, click Show available groups.
11. In the Available groups list, select the group to which to assign the role, and click Assign.