SQL Server Audit

E937644

SQL Server feature auditing mechanism

SQL Server Audit is a SQL Server feature that tracks and logs server- and database-level events for security, compliance, and forensic analysis.

Try in SPARQL Jump to: Surface forms Statements Referenced by

All labels observed (1)

Label	Occurrences
SQL Server Audit canonical	1

Statements (50)

Predicate	Object
instanceOf	SQL Server feature ⓘ auditing mechanism ⓘ
configuredWith	SQL Server Management Studio NERFINISHED ⓘ T-SQL DDL statements ⓘ
developedBy	Microsoft ⓘ
hasComponent	Database Audit Specification NERFINISHED ⓘ SQL Server Audit object ⓘ Server Audit Specification NERFINISHED ⓘ
introducedInVersion	SQL Server 2008 NERFINISHED ⓘ
partOf	Microsoft SQL Server NERFINISHED ⓘ
provides	audit event metadata ⓘ centralized audit configuration ⓘ tamper-evident audit trail ⓘ time-stamped audit records ⓘ
relatedTo	Extended Events NERFINISHED ⓘ SQL Trace NERFINISHED ⓘ
replaced	many SQL Trace auditing scenarios ⓘ
supports	asynchronous logging ⓘ audit action groups ⓘ database-scoped audits ⓘ failure-only auditing ⓘ filtering of audit events ⓘ fine-grained event selection ⓘ grouping of audit actions ⓘ server-scoped audits ⓘ success-and-failure auditing ⓘ synchronous logging ⓘ user-defined audit events ⓘ
supportsLevel	database-level auditing ⓘ server-level auditing ⓘ
tracks	data access events ⓘ database configuration changes ⓘ database-level events ⓘ failed login attempts ⓘ login events ⓘ permission changes ⓘ role membership changes ⓘ schema changes ⓘ server configuration changes ⓘ server-level events ⓘ successful login attempts ⓘ
usedFor	access tracking ⓘ change tracking ⓘ forensic analysis ⓘ regulatory compliance ⓘ security monitoring ⓘ
writesTo	Windows Application log ⓘ Windows Security log NERFINISHED ⓘ binary log file ⓘ file target ⓘ

Referenced by (1)

Full triples — surface form annotated when it differs from this entity's canonical label.

SQL Server Authentication → canBeAuditedBy → SQL Server Audit ⓘ