My Question is: Why you need to restrict the roles/Permissions of TDAdmin?
Every one who are in this group will be restricted then.
who would be a high end Admin to perform/Edit the restricted access?
Even you would also be in this group..!!
I personally don't recommend to play around with "TDAdmin" role, as you would take a lot when you need/want to do something in the project.
New Group from this Source and restrict the Permission levels and provide required admins to this Group.
Don't try to Lock your self.