Ability to create rules to automatically create services on the host that match the rule, like automember rules for host groups. Example use cases:

• When you create a bunch of 'clone' servers that use kerberos for authentication like kerberized webservers, you don't have to add each to 'webserversX' group because you can have an automember rule that automaticaly add them to the good hostgroup, but you must manually add 'http' service on each. This "autoservice rules" will be nice to make some HBAC rules work out of the box. For example the HBAC rule that said "Some user(s)/usergroup(s) are allowed to connect to 'webserversX' hostgroup members on 'http' service"
• Puppet/Foreman integration: Use the FreeIPA pki with autosign functionality for puppet agents. When you create a host via foreman proxy, it will create the host in FreeIPA but if you want to use the FreeIPA PKI for puppet, you must manually add puppet service on your host, and then get the certificate.