Robert,
Have you tried template groups in Central? I would recommend those over UI groups.
UI groups do not provide you complete configuration flexibility. e.g. spanning tree, modules are inconfigurable etc.
Template groups combine a template file and variable file to provide a per device configuration, that is exactly like, the device's running configuration.
CLI snippet is there to help you push CLI commands to device, for feature not in UI group. However, its a one time operation and a factory reset on the switch will fail to learn the CLI snippet change. Also there is no way to track, the CLI snippets pushed in past.
If you want, i can elaborate on the template groups.
2530 have been retro - fitted with cloud funcitionality, it lacks a TPM chip, so has to generate a certificate and a lot of folks are looking at the CSR error. The error fixes itself after a while though & switch connects to Central. Let me come back with engineering official stance on it. However if you choose any other model from the line up and they all have TPM chipset, & will not run into the CSR issue.