# 5. Getting Started - Access Control Lists

Role Based Access can be managed at the system or project specific level.

In this list of project based ACLs the UserAccess policy governs the rights alice and betty have currently.

In the following Exercise we will allow Alice to also run AdHoc Commands:

Return to the Alice Incognito window and refresh the browser. A new option for Commands should appear in the left navigation menu.

Since this ACL was scoped to alice, logging out and back in as betty will not have Commands in the Welcome Project.