Post reply

Filtering SQLAudit by AD Group or Custom Server role

  • April 4, 2014 at 4:43 am

    #291916

    I want to audit database object access events (DATABASE_OBJECT_ACCESS_GROUP) for all members of a specific Windows AD Group which has been added as a login in SQL Server. Should this be done in the Audit or in the Server Audit Spec? I cannot audit by individual AD Account because the members of the AD Groups changes over time. Any ideas on how to implement?

  • April 4, 2014 at 10:16 am

    #1703374

    I might be able to answer my own question if I can find a SQL Audit filter predicate list. So I can do something like WHERE server_principal_name like etc.. Can anyone post a link? I've been googling for hours and not found a predicate list that can be used in SQL Audits.

Viewing 2 posts - 1 through 1 (of 1 total)

You must be logged in to reply to this topic. Login to reply