I think you're talking about LMS 2.6 overall (not just IPM), and yes, you can limit users to specific device groups but only if you are integrated with ACS.
Here's more information:
With CiscoWorks and CiscoSecure ACS integration, you can provide device level authorization. This device level authorization allows you to authorize only selected users to perform certain tasks, such as configuration updates and software image updates.
When the CiscoWorks server is in the ACS Login mode, a new device group, Secure Views is created. This allows you to perform a task on a device or restrict a set of device.
Secure Views enable filtering of group membership based on the user and the application task context in which a request is made.
Filtering is performed only when operating in ACS Login mode. While operating in non-ACS mode, no filtering is performed and evaluating a group results in all devices that group being returned.
Why do you need native HA: The native HA feature allows two Cisco DCNM
appliances to run as active and standby applications, with their
embedded databases synchronized in real time. Therefore, when the active
DCNM is not functioning, the standby DCNM will...
This document will provide screenshots to outline the steps to setup
TACACS+ configuration to ACI and also the configuration required on
Cisco ACS server. Please find the official Cisco guide for configuring
TACACS+ Authentication to ACI:
Is it supported or NOT supported? It's a frequently asked question.
Before APIC, release 2.3(1f), transit routing was not supported within a
single L3Out profile. In APIC, release 2.3(1f) and later, you can
configure transit routing with a single L3Out pr...