Ability to audit administrative level changes. For example, changes to the MFA "trust this device" setting.

Currently there is no ability to audit or get reports on changes to admin level settings. This would be okay if only one person has admin access. However, a company like ours has multiple people with that role. Knowing who made changes to our settings is critical from a security standpoint. We recently had the setting "trust this device" changed and we have know what to know who made the change.