I want to track the changes in mssql login ids. What I mean is whenever the new login creates or existing get deleted or any new rights(Rolls and database rights)assign to particular login, I want to track them.
I want the complete information like what changes are done and who have made these changes.
I have already tried in MSSQL 2005 with the help of DDL trigger (LOGON), but it is not giving me information.If any db rights/Rolls assigned or removed for particular user its not loging in event fired by the trigger as it is DDL trigger.
Also I don’t want to use/run sql trace continuously for it as it will affect the server performance.