I have a hospitality customer's NOC staff making changes to the Win7 Pro desktop systems. In particular, the NOC end-user is changing the NIC settings but denies the changes the next day. However and in order to give the end-user the benefit of the doubt, it could be possible that they are working with the ISP or the reservation system tech support of which, either may be making changes to the desktop to either bring the system online and/or suit the computer to work with their software. Nonetheless, it sure would be nice to learn who is actually making this network configuration change. Can someone recommend a tool to monitor the changes? Or is this something that Windows 7 auditing feature can detect AND report via a triggered e-mail?