For security reasons, is it possible that the admin and super-admins roles are not subject to licensing and only have access to the administration part (no customers, no KB, etc.)? This would allow to have the user accounts on the one hand, and the administration accounts of the solution on the other.

It may be necessary to have a new “manager” role that would allow a user to have the functions of archiving, portal management/associated users and other functions that are now reserved for admins.

I know that this requires a global redesign of the tool, but I think it's worth considering:).