Ability to filter who can access a cloudstack resource set (possibly domain or...) based on his IP address besides username-password.

[alsko-icom]

The required feature described as a wish

As a a Cloudstack admin, who recently implemented v4.20 for the first time, I am wondering if we can filter which IP address/network can access a set of resources, a domain, subdomain, account, anything that you can offer. Can we maybe access a domain or subdomain through a direct URL without typing it on the box underneath the password? This might mean injecting the domain path on the URL. but the actual need is to filter based on source IP, the connection to the end user UI specific dashboard. In other words allow a user to reach a specific domain or set of virtualization resources. Is something like this implemented? Also, is there a guide out there to describe the methods to achive isolation per tenant/customer?