In ArcGIS Enterprise 10.8.1 I created a custom role that I made identical to the default publisher role with the only addition being adding the 'create with update capabilities' privilege. I wanted our publishers to be able to create groups so they could collaborate more easily with their users. However, I do not want publishers to be administrators. When a publisher is assigned this custom role with this 1 admin privilege they then have the ability to see every service in our entire Enterprise organization, even if it hasn't been shared with them. I propose making this privilege a non-admin privilege so that publishers can collaborate easily with other users while not giving them access to every service in the organization.
