We have allowed our (ldap/saml authenticated) students to self-enrol in any course - a feature we wish to retain; however, we plan to have some manually-created accounts for external users (placement coordinators etc.) which we wish to add to their own 'course' but not allow them to self-enrol in other courses. A system role has been created for this user but I can't seem to find a way to stop them self-enrolling in other courses.
This role needs to be able to do all the other things a student can do (post to forums, give and receive feedback, messaging, etc.) therefore guest access is not appropriate.
I understand that enrolment methods are course based not role based but form the forum questions I've read (and not found a solution), this is a fairly common requirement. Could a role be based on the guest role but have student rights?
Solutions would be greatly appreciated.