CCA is not meant for user audit, its an application configuration software. With that said, if there is an audit log saved somewhere, CCA can parse that log out and run rule compliance on the values; assuming the audit log is not cumulative of previous days, otherwise the discoveries will take too long to read in all that data from the file