[keycloak-user] How to keep users from updating their account details in admin client?

Hi everyone, we have the requirement, that the users are not able to change their account details (email, first name, last name) in Keycloak's account client. We need read-only access to the admin client, so removing the admin client from the realm is not an option. Is there any way to achieve this other than blocking any post to "/auth/realms/<realm>/account/" in our reverse proxy? Cheers, Torsten