I was genuinely stunned that this wasn't an option when I first went looking for it. I would think that this sort of feature would be a basic requirement, especially considering endpoints are supposed to be otherwise fully isolated.