FireMon Traffic Manager integration

I was wondering if somebody is using FireMon Traffic Manager together with TACACS+ on a BIG-IP?

I have a request to give access to a FireMon related service account with access to "bash". Remote user accounts on the BIG-IP are authenticated via TACACS+ which gives me one option only: assign FireMon service account to "Administrator" role (because it's the only remote role which can switch to "bash").

The challenge here is the fact that I don't want to allow any service account full access to the BIG-IP ... esp. if that service account runs commands like "cat /config/bigip.conf" or "tmsh show /net route" ...

Does anybody know if there is a 'device package' for FireMon available which allows integration using a non-administrative access role (e.g. Auditor)?

Any information is much appreciated.