An Ops Center user who's setting up their environment sent in a question about their users:
"I'm looking to manage three different data centers from one Enterprise Controller instance. However, the three data centers have different administrators. How can I make sure that each administrator can see and manage only the resources that they're supposed to?"
The answer here is that you can use Ops Center's asset groups, combined with its fine-grained roles capabilities, to control which users can see and do what.
First, you create a new asset group in the Assets section of the UI. In this example, I'm creating a group for one of the three data centers:
Once you've created the group, you can add the correct assets to it, by selecting the assets and clicking Add Asset to Group:
Now that you have the assets for one of the datacenters grouped together, you add that admin to Ops Center:
Then you'll select that user and click the Manage User Roles icon. When the wizard comes up, you make sure they have the correct roles, then deselect the "Use the default role associations" checkbox:
When you click next, you select which groups the roles should apply to. So, for this user, we can apply their Asset Admin role only to the Data Center A group:
And there you have it. Rinse and repeat for other groups and users, and each user will be able to see and manage only the correct assets. For more information, check out the Asset Management and User and Role Management chapters.