Yes, you can do that.
On the USRPRF change LMTCPB(*YES)
Limit Capabilities *YES will not allow entry for commands on the command line.
If it is only select commands you want to limit, then you need to CHGOBJAUT for the commands.
If it is only selected parms, then you need to create your own version of the commands and modify what can be changed.
The question is ambiguous. Are you trying to stop users from accessing their own spooled files? You can’t. Restricting WRKSPLF won’t do it. Are you wanting them not to access spooled files of other users? Then take away *SPLCTL (and perhaps *JOBCTL.)
The problem is that spooled files can be accessed in easy ways outside of WRKSPLF from a command line. Simple example is WRKOUTQ. Or GO MAIN, option 1, option 5. Or a number of other possibilities, not to mention lstsplf.exe and wrksplf.exe in a iSeries Access program directory on a PC. Far too many commands and menus lead to spooled files.
What you have to do is remove the <i>capability</i> to manage spooled files of others.