In general, it is not helpful to fill up the auditing event log with these huge amounts of data. Additionally, the event log API enforces a limit of 32KB for each parameter that is passed to an event log text. A maximum of 32KB of an annotation can be written to the event log; anything over the maximum is truncated.
You can restrict the size threshold of how much of annotations and message texts should be audited.
Click Namespaces, and then click Auditing. A list of values appears.
Set the value of Restrict event size for message change auditing to the maximum number of bytes for message texts and annotations in the audit log.
The maximum value is 32 KB; when annotations or message texts are audited and exceed this value, the text that exceeds this limit is truncated. The message change auditing feature indicates that an annotation or a message text has been cut by adding "..." to the end of the text.
The default value is 32767, which means that the maximum of 32 KB text (the Windows Event Log API limit) is audited. Even if you configure a value above 32 KB, only 32 KB of text will be audited.