Privilege's: User update - Role Restriction?

Hello, I have a role assigned to a manager that has the ability to update users with specific roles. But due to the privilege userupdate. The User can update themselves or any other use to an admin. I was wondering if there was a way to restrict users from assigning themselves or other users specific roles and still update users with acceptable roles.

Can someone please help?

No that isn’t possible with the Nexus permission model.