Authorization profiles provide role-based access control by associating users who belong to one or more user groups with specific objects. By default, any user who is a member of the Administrators user group can create, edit and delete authorization profiles.  There are two ways users can manage permissions for device groups in BHOM console:

1) While creating the group(BHOM console --> Configuration -->Groups) at the bottom of the group creation process there is a selection for the authorization profile to apply this group to.

    The authorization profile is what determines what the users can see information against.

     

2) The other option is to Edit the Authorization Profile (BHOM console --> Administration -->  Authorization Profile) and click on Objects. This will display Patrol Solutions, PatrolAgent ACLs , Devices and Groups.

Click on Groups and then click the 3 dots on the left side next to Groups and add the Group of objects that the user will be limited to. 

Navigate to the "Devices" section, to find an option to add new devices. Within this section, there is a search field where criteria can be entered, and all devices that match the search criteria will be displayed.  Users can then selectively add only the devices that the specific user should have access to.

Here is a Link to the Documentation for Authorization Profiles: Configuring authorization profiles - Documentation for BMC Helix Operations Management - BMC Documentation