Hello, Kuldeep.
You can log admin actions, including CRUD on users, groups and roles, by creating a log sink that includes the Audit category.
However, we have found a gap where role assignments are concerned, and we've added a feature to the gateway backlog accordingly.