Component execution rights

Hi BIOVIA Community,

I would like to know how you manage component execution rights. I have some components that cannot be executed by
everyone. 
I find some solutions but I'm not completly satisfy with it:

- use the "Access Rights" fonctionality through Admin portal to hide these components from PP client. But, I might need
to hide protocols that use these components as well. Because hiding a component does not prevent its execution in a
protocol. That could be a tedious process to find all protocols into PP client and deal with access rights.

- add a "Check User Is Group Member" component into each component with restricted execution (and create a PP group for
authorized users). But I would have to edit all these components, and save them with the "owner access only" to prevent
the filter from being disabled from the PP client.

Have you encountered this situation and is there an other solution ?

I was looking for some directive into a package.conf file that would restricted the execution of all a package's
components or protocols but infortunately I didn't find anything.

Thanks in advance.