At my last company, they opted to use Extended Events for auditing logins instead of some of the other built-in audit tools. I don't recall what their reasoning was for this, which is why I'd like some feedback from you all. I've seen a ton of different posts about auditing logins, so I'm not trying to beat a dead horse here. I just want to know what everyone's thought are about the best method to audit SQL Server logins and why its the best.
I'm just looking to audit successful and failed logins for now. I've already setup the Extended Events and created a process to import the results to a table. I need to know if that's the optimal way to do it.