Click here to monitor SSC
SQLServerCentral is supported by Red Gate Software Ltd.
 
Log in  ::  Register  ::  Not logged in
 
 
 
        
Home       Members    Calendar    Who's On


Add to briefcase

Filtering SQLAudit by AD Group or Custom Server role Expand / Collapse
Author
Message
Posted Friday, April 4, 2014 4:43 AM
SSC-Enthusiastic

SSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-Enthusiastic

Group: General Forum Members
Last Login: Yesterday @ 5:52 AM
Points: 107, Visits: 472
I want to audit database object access events (DATABASE_OBJECT_ACCESS_GROUP) for all members of a specific Windows AD Group which has been added as a login in SQL Server. Should this be done in the Audit or in the Server Audit Spec? I cannot audit by individual AD Account because the members of the AD Groups changes over time. Any ideas on how to implement?


Post #1558434
Posted Friday, April 4, 2014 10:16 AM
SSC-Enthusiastic

SSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-Enthusiastic

Group: General Forum Members
Last Login: Yesterday @ 5:52 AM
Points: 107, Visits: 472
I might be able to answer my own question if I can find a SQL Audit filter predicate list. So I can do something like WHERE server_principal_name like etc.. Can anyone post a link? I've been googling for hours and not found a predicate list that can be used in SQL Audits.


Post #1558585
« Prev Topic | Next Topic »

Add to briefcase

Permissions Expand / Collapse