Adding auditing in easy in SQL Azure (non managed), however the field list is HUGE and most of it is useless from a security perspective. Is there a way i can audit the database, but only with certain fields, Ie dbname, upn, ip, client name, statement,duration, login ok, login fail. Other things like sid, hash, etc are not required.
Is there a way to do this?
Will this screw up LogAnalytics/Sentinel?