I'm only trying to log Audit to file to improve the performance of Gateway. So I'm going to do the following.
1. Change Manage Audit Sink to 'Output Audit records via audit think policy'.
2. Leave the 'Continue Processing' assertion only in the Internal Audit Think Policy.
3. Remove 'Category=Audits' from ssg from the Manage Log Sink.
4. Create 'Category=Audits' only for Audit records and add 'Roll logs based on time period' to Daily on the File Setting tab.
Is there any part of the above approach that needs to be secured?
Since this is to be applied to the customer's operating server, the deficiencies must be secured.