The project I'm working on requires us to audit the database instance for various events. Role changes, permissions changes, database object changes, etc. We configured the Audit to write these events to the Application Log. Unfortunately, the tool we've licensed to aggregate and report on these events is unable to collect them when they show up simply as Notifications in the Application Log. My Lead's initial decision was to leverage another component that would read from a trace however, I'm not sure how if there is a direct mapping of Audit Action Types to Security Audit Events, or even what kind of impact that may have on a production server. So, I'm left with 2 questions (in my own desired order of acceptance):
1. Can an Audit be configured to display auditable actions in the Application Log with a "Warning" category instead of "Notification?"
2. Does any sort of mapping exist between Audit Action Types and Security Audit Events in trace?