Hello,

I have been an End Point Central customer for many years now, all of my user endpoints are managed here.  I am now trying to expand features like Patch Management to my Servers.    The first thing I want to do is separate the Servers from view of my Help Desk Team.  In doing this I cannot find a way of limiting the scope for these techs without significantly sacrificing their albites in the system.

I have created a new Role for these users that is the same as the Admin role.   The only difference is that I have limited the scope by Remote Office.  At first this works great and the Help Desk team is only able to see the computers they should have access to.   But after you start comparing their capability in the system they are much less than when they where Admins.

For example, the Help Desk Team would not longer be able to deploy agents through the normal Agent Installation method (Remote Installation).  They also no longer have access to Configurations that have been created before their role has changed.    Finally, the Admin screen is extremely limited when the tech is no longer an Admin.

In short, how do I separate the servers from the Help Desk Teams view without sacrificing any of their abilities in the system.  I just want to limit what machines they control.

Thanks!