Inky admin permissions - allow granular control

It appears that Super Admin is required for onboarding customers. This also allows full access to the Inky product. This means that 10+ engineers in our MSP need Super Admin permissions, with the most of rest of the team effectively needing policy management (the second highest tier).

Best practice is to provide only the minimum amount of access to do the job required.

There should be more granular permissions:

-There should be a separate role for user management at MSP level (i.e. an internal MSP IT person owns this role - this typically would not be someone servicing customers day to day)

-There should be a separate role that allows for onboarding new customers (i.e. The professional services/projects/onboarding teams should be able to onboard customers without relying on internal MSP support)

-Permissions should be separated for access to mail security and signature management (to ensure different staff can be provided access based on their skillset to reduce risk of access to settings they shouldn’t modify)