Role for certificate removal?

Citrix Admins need the ability to remove certificates from their servers.
Expected outcome:
A Citrix Admin role is created, they are able to remove thier server certificates from Foreman.
Foreman and Proxy versions:

Foreman and Proxy plugin versions:

Other relevant data:
My thought was to create a role that allows a group of admins to administer a set of defined servers certificates. This way if they mess up and remove the wrong cert it only affects their machine.
Is that possible?