1. The Exchange auditing reports are worse than useless. I don't know why they are still in Exchange Online given that the Office 365 Audit Log is available.
2. The suggestion in the article is to configure mailbox auditing on an ongoing basis. My view is that Microsoft should update the mailbox plans to support the enablement of auditing for mailboxes automatically, thus nullifying the need to keep on going back to check for non-enabled mailboxes.
3. I wouldn't use Lepide software if I was paid (based on previous experience). There are far better solutions available on the market if you want to track down issues like mailboxes that are not enabled for auditing, including https://www.cogmotive.com/ and https://www.4ward365.com/.
I don't publish these kind of articles without doing some research... For more information on mailbox auditing, see https://practical365.com/ebooks/office-365-for-it-pros/ or any of the books I have written about Exchange on-premises server over the years!
