Escalation Chain Permissions from User Access Roles
We have a specific security restraint within our MSP environment for escalation chains. The policy is so that we can set permissions based on roles which only allow for users to see information based on the device hierarchy for that department. While working to setup our portal we found that while other permissions like Dashboards, Devices, Websites and Reports can be custom to the device hierarchy which is ideal, but the Settings does not allow for this.
Based on role assignments we are looking to lock down rights to a specific folder hierarchy which under the current setup you may only give or take rights across the board. This is an issue as we do not want to allow Department A see any detailed information for Department B escalation chains, integrations, or account information. We would like to have the same flexibility to lock down roles to device or dashboard groups.