I got a question about "How to track changes on the settings of the Security Audit Log" and as the answer grew and grew during analysis I decided to move away from this "discussion thread" to a "document" to become able to update parts of the text later.
Therefore let's move to this document: Analysis and Recommended Settings of the Security Audit Log (SM19 / SM20)
Kind regards
Frank