Auditd Compatibility Mode

Is anyone else here experiencing issues with their new system deployments being flagged with the following error:

agent.jobs.linux.ui_realtime, Auditd is enabled - the use of auditd Compatibility Mode is required in order to allow the agent and auditd to run side-by-side.

Gauging responses to see how common this is. I’ve developed a script to fix it, but wanted to see if others have the same issue.

I’m having this issue, have written an ansible playbook to try and resolve, but not having much luck so far… Would be very interested in seeing your script if you’re happy to share?