Enforcement of role-based constraints on the modification of components of a multi-user aware computing device

What is claimed is: 1. A computer-implemented method, comprising: configuring a multi-user aware (MUA) computing device with universal settings not modifiable by users of the MUA computing device, global settings modifiable by users of the MUA computing device having an assigned role of device owner, and temporal settings modifiable by all users of the MUA computing device; receiving a request from a user of the MUA computing device to change a configuration setting of the MUA computing device; responsive to receiving the request, determining a role associated with the user; granting the request to change to the configuration setting of the MUA computing device if the role indicates the user is a device owner and the setting comprises one of the global settings or one of the temporal settings; and denying the request to change to the configuration setting of the MUA computing device if the role indicates the user is not a device owner and the setting comprises one of the global settings or one of the universal settings. 2. The computer-implemented method of claim 1 , wherein the universal settings are defined by a policy. 3. The computer-implemented method of claim 1 , further comprising storing data identifying the change to the configuration setting in a profile associated with the user if the setting comprises one of the temporal settings and the role indicates the user is not a guest user of the MUA computing device. 4. The computer-implemented method of claim 1 , further comprising providing a single user interface (UI) for changing the global settings and for changing the temporal settings if the role indicates the user is a device owner. 5. The computer-implemented method of claim 4 , wherein the single UI comprises UI elements corresponding only to the global settings and temporal settings modifiable by the user. 6. The computer-implemented method of claim 1 , further comprising providing a single user interface (UI) for changing only the temporal settings if the role indicates the user is not a device owner. 7. The computer-implemented method of claim 6 , wherein the UI comprises UI elements corresponding only to temporal settings modifiable by the user. 8. A computing device comprising: one or more processors; and at least one computer storage medium having computer executable instructions stored thereon which, when executed by the one or more processors, cause the computing device to: configure the computing device in a configuration defined by universal settings, global settings, and temporal settings; restrict users of the computing device that do not have an associated device owner role from modifying the global settings; enable all users of the computing device to modify the temporal settings; and restrict all users of the computing device from modifying the universal settings. 9. The computing device of claim 8 , wherein the at least one computer storage medium has further computer executable instructions stored thereon to provide a user interface (UI) through which a user having an associated device owner role can modify the global settings and the temporal settings. 10. The computing device of claim 9 , wherein the UI comprises a single UI for modifying the global settings and the temporal settings, and wherein the UI comprises elements corresponding only to the global settings and temporal settings modifiable by the user. 11. The computing device of claim 8 , wherein the at least one computer storage medium has further computer executable instructions stored thereon to provide a user interface (UI) through which a user not having an associated device owner role can modify only the temporal settings. 12. The computing device of claim 10 , wherein the UI comprises UI elements corresponding only to temporal settings modifiable by the user. 13. The computing device of claim 8 , wherein the universal settings are defined by a policy. 14. The computing device of claim 8 , wherein the at least one computer storage medium has further computer executable instructions stored thereon to configure the MUA computing device with default values for the temporal settings following a user session with the MUA computing device. 15. The computing device of claim 8 , wherein the at least one computer storage medium has further computer executable instructions stored thereon to persist changes to the temporal settings made by an authenticated user of the computing device to a user profile associated with the user and to discard changes to the temporal settings made by a guest user of the computing device. 16. At least one non-transitory computer storage medium having computer executable instructions stored thereon which, when executed by one or more processors, cause a multi-user aware (MUA) computing device to: receive a request from a user of the MUA computing device to change a component of the MUA computing device; responsive to receiving the request, determine a role associated with the user; apply the requested change to the component of the MUA computing device if the role indicates the user is an authenticated user of the MUA computing device and the component comprises a component modifiable by authenticated users of the MUA computing device; and apply the requested change to the component of the MUA computing device if the role indicates the user is a guest user of the MUA computing device and the component comprises a component modifiable by guest users of the MUA computing device. 17. The at least one non-transitory computer storage medium of claim 16 , wherein the component comprises a configuration setting of the MUA computing device. 18. The at least one non-transitory computer storage medium of claim 16 , having further computer executable instructions stored thereon to: not apply the requested change to the component of the MUA computing device if the role indicates the user is an authenticated user of the MUA computing device and the component comprises a component that is not modifiable by authenticated users of the MUA computing device. 19. The at least one non-transitory computer storage medium of claim 16 , having further computer executable instructions stored thereon to: not apply the requested change to the component of the MUA computing device if the role indicates that the user is a non-authenticated user of the MUA computing device and the component comprises a component that is not modifiable by the guest users of the computing device. 20. The at least one non-transitory computer storage medium of claim 16 , having further computer executable instructions stored thereon to: provide a user interface (UI) for defining components of the MUA computing device that are modifiable by authenticated or non-authenticated users of the MUA computing device; and provide a UI for defining components of the MUA computing device that are modifiable only by users of the MUA computing device having an associated device owner role.