How to apply limitations Restrict user access to the network in the Orion Platform?
There are two parts, inside the section where you create individual users/AD/SAML groups there is a limitations button. Hit that and it will give you a list of attributes you can restrict users with, such as device names and vendors and such. So you could do something like restrict users to only seeing/interacting with nodes that follow a specific naming convention.
Taking it a step further there is a tool on the primary Orion server called the account limitation builder. You can use that tool to add in your custom properties and such as additional fields to restrict users by. So you might lock it down to only nodes where a custom property, for example, called "Owner" is set to "Network"
The main limitation I have run into around the use of limitations is there is no option to filter to nodes where a given property is NULL or empty. The work around I used for a while was to use an alert to set the limitation property to some default value if it is null, but now I just have a database trigger handling that.
*edit I just found out the limitation builder tool is no longer needed for the latest release but anything 2020.2.5 and earlier would still use it.
https://documentation.solarwinds.com/en/success_center/orionplatform/content/core-setting-account-limitations-sw2027.htm
https://documentation.solarwinds.com/en/success_center/orionplatform/content/core-creating-an-account-limitation-sw1268.htm#:~:text=Click%20Settings%20%3E%20All%20Settings%20in,Click%20Add.
