Permissions implications
Administrators who have permissions only for individual policies can access domain configuration only from within the policy, and they cannot amend account-level domains. They also receive a restricted set of controls when editing policy-level domains. From this view, they can see all domains but have editing rights only to the policy-level domains associated with their policy.