Has anyone run across the asset management permissions role limitation below, and how did you overcome it? I spoke with support for an hour, and they confirmed it worked this way but we couldnt construct a workaround:

Summary:

Example:

A single user is assigned both Asset X and Asset Y.  I want Asset Manager 1 to be able to view and edit Asset X (but not view/edit Asset Y), and Asset Manager 2 to be able to view and edit Asset Y (but not view/edit Asset X).

The limitation with the way the SDP On Demand is constructed is that the ability to create roles for assets does not provide enough ability to restrict access:

• When creating a custom role for an asset manager: I can grant access to all assets, or only assets in the technician's site. 
• Keep in mind, each user (non-technician) can only be associated with one site.  Remember, each asset's site is automatically assigned based on the user's site (and can not be manually edited).
• Since I want to try to restrict access to assets, I set the asset role to be "only view within their site". So in my case where I want two managers to manage different assets assigned to a single user, I am unable to set up the system to prevent each manager from accessing/editing each other's assets.  This is because either each manager has the same site and thus will be able to see all of the assets under users with the same site, or each manager will have different sites and therefore only 1 of the 2 managers will be able to see any of the users's assets (and in reality, the manager sharing the user's site will see/edit all of the user's assets, whereas the manager not sharing the user's site will see non of the user's assets because they are restricted to viewing assets at their site).