I think the subject tells it all. This would be handy to organize permissions.
- IT Manager has access to HG1, HG2, HG3,
- 1st local IT guy has access to HG1,
- 2nd local IT guy has acces to HG2 and HG3,
- 3rd local IT guy has access to HG3
For this I would like to create only a role for each HostGroup, not for each user. Does this make sense?