The RBAC in DLP allows granting Administrator right but no granularity within that right. There is a specific requirement at several large customer to have an Endpoint Admin Role who can pull Ednpoint Status Reports and Carry out Endpoint Agents tasks/administration without having any other rights.
Similary there is also a need to deligate administrator rights of individual detection components for example endpoint prevent server administration to endpoint team, or email prevent server administration to email team.