I am looking for some help setting up a system role to allow student services staff to view a list of all users and see their last access date without giving them the ability to modify/delete users.
So far, I have created a new role that gives them view access to other user's grades, assignments, etc and have selected "Delete Users" under define system roles. This allows them to view the list of users under Site Administration > Users > Accounts > Browse List of Users.
The drawback of this is that it also enables them to delete user accounts. Does anyone know of a way to allow staff to see usernames and last access time without giving them authority to delete users?