Please could we have full command logging (with sensitive information preferably hidden) of actions performed by administrators.
The currently implemented audit logging of messages (e.g. "device changed by user") is not really useful for determining what was changed.
[This is not a key logger! ]
PCI DSS Requirements
10.2 Implement automated audit trails for all system components to reconstruct the following events:
10.2.2 All actions taken by any individual with root or administrative privileges