How do you manage expectations when a client demands a feature or customization that goes against architectural best practices at Security On-Demand?