Yes, we need permissions per tab as well. Each tab should be independent of the other tabs. We just underwent a major rework of our organizational structure in Automate/ScreenConnect to increase our security posture, and the lack of these granular permissions was a MAJOR setback. The ability to set permissions has never been very easy within ScreenConnect, but this would help improve it immensely. 

Hi, I second this, it would be very helpful. We have a helpdesk team that needs access to all devices in order to assist when a support call comes in, but we also have a group of devices with sensitive information on them, and we want to restrict access to just that "company" inside Control. Allowing us to exempt a company (or group of companies) from a role would have two benefits: (1) Any member of that role would automatically be able to access any company we add (and we add many per year), and (2) they would not be able to access the restricted company.