I have a requirement to restrict Role Owners from being able to Add Members and Entitlements. This restriction needs to occur in the UI so Role Owners can't edit their role but also within Role Reviews.
There will still be a requirement for Administrators to be able to add members/entitlements, so it is a not an option to change the configuration of the Role to deny users/entitlements.
The only way I can think to achieve this is by amending the Security Context file. I've tried uploading the following but am not seeing the expected results.
Is the Security Context file the right approach? If so, where am I going wrong?
Has anyone else had success in achieving the above?
Thanks in advance,