I'd like to give someone the ability to have *almost* system customizer permission and haven't found an easy OOB way to do this. Guessing someone else has already done it though.
I need the user to be able to have READ access only to everything that the system admin normally does, so that they can view current customizations, while making discrete changes on another staging platform.
We don't want to export all existing customizations as a solution and import on the staging platform because we want to maintain it in an OOB state if possible, and then make incremental changes there. The user has full admin on that system and I have found only two OOB Security Roles to give them access to the production system: System Admin and System Customizer. But Customizer allows them to make changes to the production system, which we don't want.
Since there are ~500 different fields to set for security, and I have yet to find a single (simple) but comprehensive matrix of what settings specifically to change to allow a user to READ forms, and other back end settings, I thought I'd check here first.
Thank you.