Post reply

Server Audit Specifications, Audit Action Type -- SELECT UPDATE INSERT DELETE

  • February 6, 2024 at 5:50 pm

    #4374321

    I'm trying to capture an audit of ANYONE logging into a database on my SQL 2019 Enterprise instance.

    When setting up my 'Server Audit Specifications' the 'Audit Action Type' drop down is not showing options to select SELECT UPDATE INSERT DELETE as presented in online tutorials.  I am both LOCAL ADMIN and SQL sysadmin on the server.

    What am I doing wrong?

    BT

  • February 6, 2024 at 6:07 pm

    #4374330

    S/I/U/D options are only available at the Database Audit Specification level, they are not at the Server Audit Specification level

     

    Want to track logins at the instance level use Successful Login Group and Failed Login Group facets.

  • February 6, 2024 at 6:10 pm

    #4374332

    thank you Mr. Ant !!   I now see that in addition to setting the spec at the Server level -- If you need to audit the SELECT / INSERT / UPDATE / DELETE activity, you need to drill INTO the DB (in SSMS) and create 'Database Audit Specifications' too.   (appreciate the QUICK reply!)

    BT

Viewing 3 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic. Login to reply