I would like the ability to create account limitations based on Objects versus Nodes. In this case an object could be a Node, Interface, Volume, Application, etc. Currently I am only able to restrict an account based on a node, I can't limit an account to an interface without giving them access to the entire node.
My use case is as follows...
We are a service provider and our customers have access to Orion to see the data on their systems. I would love the ability to give them access to see their bandwidth utilization which is basically one or two interfaces on one of our switches; however, I can't do this without giving them access to the entire switch.
One possible way to do this would be via groups; I put all of the objects I want the customer to see in a group and the assign them the account limitation of that group.