Rather certain that isn't possible nor logically advisable.
SQL Server supports Windows authentication and as an option SQL identification. The later is an option the former isn't.
Additionally you seem to think that you can disallow access to SQL server completely. Which suggests that you think that there will never be problems that need investigation. Which is unlikely to be true.
If you don't trust your users then either address that at the management level or the contract level. And don't try to solve it with technology.