As an EHR, this is an essential cybersecurity need for an ability to have a report to review user account information, audit their access levels, determine which accounts need to be addressed because they fall behind a baseline in terms of access and account features. Per NIST guidelines, add the ability to review which records are accessed with date time stamps and by whom from where.