Just setting up an ADAudit Plus poc and have hit a bit of an experience-dampener with the Azure auditing.

It appears the initial audit log sync keeps hitting some request limit. Official advice was to keep rotating the app registration secret and re-entering anew.

Seems a bit...meh. Is there no better way? We're by no means a large organisation.