Audit log
Log all changes and authentification events for a configurable timespan.
A user should have access to some kind of security log that shows login (attempts), profile/mfa/password changes, ...
In the admin interface changes to groups, roles, ... should be visible