Restrict who can setup anonymous access for spaces

Confluence at our organization is publicly available but is only made accessible to employees within the org. We want to publish documentation and make it anonymously accessible. To do this, I understand that this can be done by completing the following steps;

1. Confluence administrator must turn on global permissions for anonymous access. 
2. Space administrator must turn on anonymous access for the corresponding space. 

The problem with above approach is that once we make users as space administrators, confluence administrators have no control over restricting which spaces are being made anonymous. 

My question is, as a Confluence-administrator, is there a way to restrict the controls in such a way that only confluence administrators can enable anonymous access for individual spaces? We would want the space-administrator to still be able to do everything that Confluence provides for space privileges, except enabling anonymous access to a space.