Hi
@sdktr, yes, it sounds like you could model that with actions and use
CheckResources to check all the privilege levels in one request.
The one thing I wonder is if privilege levels end up working a bit like roles - are there different actions you can perform with a device if you have priv level 3 vs 1? If so, it might be preferable to model those actions directly in the policies.