February 5, 2008 at 5:31 am
I’m working on a migration to SQL server 2005 for one of my clients. They have asked about auditing and the C2 auditing functionality in particular. From what I’ve read it seems that you can switch auditing on or not and absolutely everything gets record to the log file.
So my questions:
Does anyone else us it?
What are your opinions of it?
Would you recommend using it?
What are the biggest problems with it? (I think the sheer amount data generated will be one and storing it somewhere another.)
Are there any products out there, that are better equipped to do this?
The organisation is keen to implement complete auditing of one its SQL Servers so any thoughts on this would be much appreciated.
Gethyn Elliswww.gethynellis.com
February 5, 2008 at 6:06 am
you can find a lot of information on C2 auditing over the web.
Some of the articles, which I found useful are
http://www.sqlservercentral.com/articles/Monitoring/basicsofc2auditing/1547/
http://www.microsoft.com/technet/security/prodtech/sqlserver/sql2kaud.mspx
Hope these are useful to you too!
Cheers,
Prithiviraj Kulasingham
http://preethiviraj.blogspot.com/
February 5, 2008 at 6:28 am
C2 auditing is resource consuming as it's capturing all the database activity hence need to use only when high security is concern.
---------------------------------------------------
"Thare are only 10 types of people in the world:
Those who understand binary, and those who don't."
February 5, 2008 at 9:57 am
Hi thanks for the repsonse,
Just a few extra questions.
I thought that C2 was at server level and it captured everything. Is it possible to configure what data is captured or capture data for a specific database only?
Also are there any other products 'out there' that do a similar job but more efficiently?
Does anyone endsore the C2 functionality, what are people opinions of it is it even all that useful?
Gethyn Elliswww.gethynellis.com
Viewing 4 posts - 1 through 3 (of 3 total)
You must be logged in to reply to this topic. Login to reply