apart from these default setting provided by the repository.properties file:
# Audit configuration
# Setting this flag to true will force startup failure when invalid audit configurations are detected
# Audit map filter for AccessAuditor - restricts recorded events to user driven events
As I understand it the setting above should ensure that user access to folders is audit logged, but doing a
$ curl -X GET -u admin:admin 'http://localhost:8080/alfresco/api/-default-/public/alfresco/versions/1/nodes/a9099aa6-25eb-4b2d-98c3-f234ceaed2b8/audit-entries?maxItems=100'
where a9099aa6-25eb-4b2d-98c3-f234ceaed2b8 is the nodeId of a folder just returns a single entry which is a result of the creation of the node by the admin user. The following calls from the network tab in the browser inspector reveals that the folder node actually has been visited by a normal user (username = bruce):
Regular read access to nodes is not logged via alfresco-access - neither for content nor folders. The only read-access that is logged is an explicit content access, which obviously only applies to nodes of type content or which have any other type/aspect defining a content property. In the audit entry this content access should be appropriately be listed as a "readContent" action / event, not to be confused with a metadata / listing read access.