May 18, 2010 at 6:47 am
Hi ,
can any one explain how the audit is done on sql servers and what are the things need to be considered while auditing as i dont know on this .
May 18, 2010 at 7:31 am
First, you have define exactly what you mean by auditing. There are different levels of requirements depending on the laws or regulations or business or technical needs that you're attempting to fulfill. Then, once you know what it is that you want to audit, there are different mechanisms that you can put in place. One level of auditing is know who logged into the server. This can be administered directly as a setting on SQL Server to write things out to the log. Another level is to track who made structural changes and what changes did they make? This can be audited using the default trace. Then you get into auditing who changed data and what changes did they make. Now things get interesting. With 2008 you can use Change Data Capture. With over versions you need to look at triggers or possibly using trace events or maybe using OUTPUT clauses from stored procedures...
It all still comes back to, what do you want to audit?
"The credit belongs to the man who is actually in the arena, whose face is marred by dust and sweat and blood"
- Theodore Roosevelt
Author of:
SQL Server Execution Plans
SQL Server Query Performance Tuning
Viewing 2 posts - 1 through 1 (of 1 total)
You must be logged in to reply to this topic. Login to reply