How do I ensure that the admin tool can use the EF Core ORM for reading and writing data but is completely restricted from making db schema changes?

For the user you specify in the credentials used to connect to the database, you should not be giving that permission to make those kinds of changes, that way you never need to worry about it.