Prevent users from changing their personal info and settings

Hello everyone.

I installed a test NextCloud instance in a test server for my company to see if it fulfills our needs and eventually implement it definitely.

So far, the only obstacle that prevents us from doing so is the lack of user roles and permissions.

Basically, a user can enter it’s profile and disable 2fa, change the associated email to the account, etc…, without administrators ever knowing about these changes, which could case many problems for us.

Is there a way to somehow configure and prevent this?

Here are the instance details:
-I installed Nextcloud via the AIO method
-Nextcloud version:
-Operating System: Linux 5.15.0-1021-gcp x86_64

Hi, you could try setting this value in your config.php:

'allow_user_to_change_display_name' => false,

You can check out Configuration Parameters — Nextcloud latest Administration Manual latest documentation for most available values.

Additonally, you can enforce 2FA for your users from the admin security settings IIRC.