Hmm this might be possible via the API?
A few weeks ago the Toronto User Group did an in-person session and one of the presenting groups was showing a really cool Power BI report that they used Adobe Analytics API and some internal Data Connections to build a really cool analytics for analytics report...
I don't know if the session was recorded... I am reaching out to the User Groups liaison to ask about a recording, but if it's not I should reach out to the presenters and ask them to create a blog.. it was really cool, and I am not sure what all is available to pull.. but Report Suite access should be available....
On that note, I know there is a lot of requests for better "Analytics for Analytics" reporting, so hopefully Adobe releases something out of the box that would solve a lot of these needs.
My access rules are much more simple... I just have our org split into major types... News, Commerce, Corporate, and Specialties Sites... Key people like Analytics, QA, Data Team, Upper Management get access to all, then other people get access to groups based on their roles...
Since the most active / frequently used suites roll to the top anyway, most users don't have a problem with such access, and if they aren't using something it still doesn't hurt anything leaving the access there... it also means I don't have to micro-manage access... for instance, removing access for someone who hasn't accessed something for 8 months only to have them get a random request to pull data, then having to wait to re-gain the permissions....
But I understand if your organization wants to keep stricter controls on suites.
So while I don't an exact answer for you, my suggestion is to see what info you can get via the API.. since ALL access should be recorded in some fashion....
