Created an app on the deployment server which is used to tell the Universal Forwarder which directories and logs to monitor. There is no issue with this aspect, the logs are being monitored as expected.
What I would like to do is setup permissions on the Universal Forwarder so that other groups can read/write to the directories that are created by the UF.
Used RPM to install to /opt/splunkforwarder
splunk:splunkis used to own the files and run the service
setgid is configured on /opt/splunkforwarder
Setup File ACL permissions along with some defaults