When a server backup is run, the user credentials used for the backup agent accesses every file on the server and fills the security log with notations of its access to every file and folder. This is a waste of time and disk space and makes it harder find other events we want to track.
We want to audit/log files being added, modified and deleted by users, but not audit every time the backup agent accesses files during a backup or restore job.
How can auditing of a volume or share be set up so events are not logged on activity of specific user accounts?