With resource-based access control, permissions to individual devices can be assigned granularly for individual users. For example, an admin can give a user (regardless of their role) access to one or more devices that can then be used in all Smart Services (based on their role).