|
That is for a multi domain setup. Logging in security events would show who changed any settings, but unless you're saving your logs it would still be quite a pain to locate who changed it and when unless it was recently done.
How many Admins at your site have rights to modify core AD settings?
| 
