Windows server 2016 Security Log - Remove extra description text?

windows-server-2016 windows-event-log

All Windows events exist in two formats: Xml, and Rendered Text. Usually you only need the Xml data. If the Sumo collectors are configured to send Rendered Text (seems like it), 80% of your log data is useless redundant junk.

The "renderMessages" setting seems applicable. default: True

Flag indicating if full event messages are collected (true) or just core event metadata (false)

https://help.sumologic.com/03Send-Data/Sources/03Use-JSON-to-Configure-Sources/JSON-Parameters-for-Installed-Sources#Local_Windows_Event_Log_Source

Related

Where to get debian mirror status?
Name based virtual hosts cause NET::ERR_CERT_COMMON_NAME_INVALID
Will setting lower TTL on name server (NS) records cause the TTLs on other records to lower?
I can't use vmware on rdp win server error hyper-v [closed]
How can I change the local IP a virtual machine in VmWare NAT DHCP?
Usage of "Rather"
Past tense of "bulls**t"?
Why is "learnings" considered acceptable? [closed]
What "without" means? [closed]
Question followed by an explanation/clarification of the question
Having completed and after having completed
What is a story that uses immoral aspects to give a moral value in the end called?