Current Behavior
Currently, administrators can assign:
Device Limit (maximum number of devices a user can create)
User Limit (maximum number of sub-users a user can create)
However, delegated users are not able to create or manage their own groups within the system.
Even if a user is given device and user creation permissions, they cannot create sub-groups under a specific group assigned to them.
Expected Behavior
We would like administrators to be able to:
Assign a specific parent group to a delegated user
Allow that user to create and manage unlimited sub-groups under the assigned parent group
Allow full management of users and devices within their own group hierarchy
Restrict access so that they cannot see or manage groups outside their assigned structure
In short, delegated users should have hierarchical group management capability limited to their assigned group tree.
Use Case
This feature is especially important for:
Multi-tenant environments
Reseller structures
Fleet management companies managing sub-customers
Organizations with regional or branch-based hierarchy
It would significantly improve scalability and administrative flexibility in larger deployments.
User groups:
Just like we can grant a user permission to create devices (Device Limit) and create users (User Limit), we would also like to allow certain users to create sub-groups under a specific group assigned to them.
For example:
As an admin, I assign the “Istanbul” user group to a user named “abc”.
The user abc should then be able to create sub-groups under Istanbul, such as:
“Üsküdar”
“Beyoğlu”
The user should also be able to assign devices and users within those newly created sub-groups.
However, this permission should be limited strictly to the “Istanbul” group hierarchy and not affect other groups in the system.
So yes, we are specifically talking about hierarchical management of user groups, where a delegated user can create and manage sub-groups under an assigned parent group.
Additional Notes
This enhancement would align well with a more advanced RBAC (Role-Based Access Control) model and hierarchical permission structure.
Please do not duplicate your requests!
Current Behavior
Currently, administrators can assign:
Device Limit (maximum number of devices a user can create)
User Limit (maximum number of sub-users a user can create)
However, delegated users are not able to create or manage their own groups within the system.
Even if a user is given device and user creation permissions, they cannot create sub-groups under a specific group assigned to them.
Expected Behavior
We would like administrators to be able to:
Assign a specific parent group to a delegated user
Allow that user to create and manage unlimited sub-groups under the assigned parent group
Allow full management of users and devices within their own group hierarchy
Restrict access so that they cannot see or manage groups outside their assigned structure
In short, delegated users should have hierarchical group management capability limited to their assigned group tree.
Use Case
This feature is especially important for:
Multi-tenant environments
Reseller structures
Fleet management companies managing sub-customers
Organizations with regional or branch-based hierarchy
It would significantly improve scalability and administrative flexibility in larger deployments.
User groups:
Just like we can grant a user permission to create devices (Device Limit) and create users (User Limit), we would also like to allow certain users to create sub-groups under a specific group assigned to them.
For example:
As an admin, I assign the “Istanbul” user group to a user named “abc”.
The user abc should then be able to create sub-groups under Istanbul, such as:
“Üsküdar”
“Beyoğlu”
The user should also be able to assign devices and users within those newly created sub-groups.
However, this permission should be limited strictly to the “Istanbul” group hierarchy and not affect other groups in the system.
So yes, we are specifically talking about hierarchical management of user groups, where a delegated user can create and manage sub-groups under an assigned parent group.
Additional Notes
This enhancement would align well with a more advanced RBAC (Role-Based Access Control) model and hierarchical permission structure.