Device specific Privilege Manager rules without having to create a target group for each rule. This would make it easier to give admin permissions to specific user(s) for a specific device.