One of the Moodle sites I manage is for our internal employee training and development. All employees may log in to the site and enrol in any course.
Recently, I've had a request to allow some of our Independent Consultants access to some of these courses.
Here's my dilemma: For most of the courses, it really doesn't matter if IC's have access to them or not (even if they aren't the core courses we want them to access). There are, however, three courses where we want to precent ICs from enroling as the courses cover proprietary corporate information for employees only.
I want employees to self-enrol in any course so I can't restrict enrolment and using an enrolment key is not an option (key is too easy to share). How can I restrict access to some courses while leaving them open for authorized users?
I have tried duplicating the Student as "IC_Student" then adding IC accounts to this role at the system level. Then, at the course level for the ones I want to protect, I override the permissions for the IC_Student role to prevent them from seeing anything. This sort of works (IC_Students can still try to enrol, but they don't get in--don't get any message saying they don't get in either). I'd really like to make it so the IC_Student role doesn't even know the course exists.