If we have requirement of making mobile access to the users, so we need to do IFD for sure.
but there are scenarios that we donot have to give mobile access to all the users.
so to control this, means to give only permission to few set of users, we can manage that in the security role as below....
this is just on or off access, there is no other level of access.
hope this helps...