OK. Let me ask you differently. At the end of the post: "Where is this limit specified? Can it be changed? We do not know yet. If you do, please let us know." Does this mean that we can't get logs from exchange because of this limit?
Is this error/limitation causes audit data not delivered by Exchange? Do you know is this only happening to some specific versions of exchange? Or Cumulative update?
We are doing this on EX2016 and doesn't work, but few week ago we have managed to deliver successful POC with EX2016 with no problem.