The Tealeaf administrator does not always need access to all data hitting the environment. In fact, we have been asked specifically by certain groups if there was a way to prevent the administrators from accessing certain data. This would be to comply to contractual or legal requirements. Tealeaf needs the ability for membership in secondary directory groups to restrict data access for the administrators to data deemed as ultra sensitive. In other words, if the admin is not a member, they will not be able to access specific sets of data.