The things I mentioned can be done through the Moodle user interface by the Moodle administrator (your "IT section" chief) through the administration menu on the front page, which only administrators see. Nothing requires access to the host operating system.
Roles work just fine in Moodle 1.8.4 (Moodle 1.9 has some performance improvements), so it should be possible to define the new role I suggested and assign it to the student admins to see if it blocks them from the teacher course.
This experiment is harmless, but if your administrator is going to be doing other things with roles, it is really important that he knows what he's doing, and not just experimenting. Otherwise, your site could be down for another 180 hours -- or longer.
Roles and permissions
Setting up a lower permissioned site admin
This discussion has been locked so you can no longer reply to it.