Admin audit

Every privileged action in the console — read-only, append-only. View-as actions are attributed to a session and written to both trails. (ADM-4 · DM-20)