Opencast 2.x supports role-based visibility to selectively restrict permissions for individual user groups in means of restricting what those users can see and do in the administrative user interface.
The configuration of role-based visibility is not trivial and therefore, it is a particular interest to have a documentation about this feature.