We are about to let end-users into the NimBUS environment to create QoS reports, Dashboards, etc. I've created rules in the ACL to limit probe and robot access, but I was wondering how to limit configuration authority. For example, I want to give them access to create QoS reports in the report_engine, but I don't want them changing report generation times or enabling dynamic reports. Is this type of limitation possible? How are some of you handling user security/permissions?