SQL Azure Database Auditing

If someone who has the co admin on the subscription changes the Audit settings for the database and turn one or more than one Audit options off for the database is there a way to find out and track who did the changes on the Audit Settings for the database.

 



February 25th, 2015 5:36pm

Thank you for the question. The scenario of tracking changes (event type, storage) in the auditing policy is in our roadmap. Not yet implemented.
Free Windows Admin Tool Kit Click here and download it now
February 26th, 2015 7:21am

Thank you for the question. The scenario of tracking changes (event type, storage) in the auditing policy is in our roadmap. Not yet implemented.
February 26th, 2015 7:21am

Thank you for the question. The scenario of tracking changes (event type, storage) in the auditing policy is in our roadmap. Not yet implemented.
Free Windows Admin Tool Kit Click here and download it now
February 26th, 2015 7:21am

Thank you for the question. The scenario of tracking changes (event type, storage) in the auditing policy is in our roadmap. Not yet implemented.
February 26th, 2015 7:21am

Thank you for the question. The scenario of tracking changes (event type, storage) in the auditing policy is in our roadmap. Not yet implemented.
Free Windows Admin Tool Kit Click here and download it now
February 26th, 2015 7:21am

Thank you for the question. The scenario of tracking changes (event type, storage) in the auditing policy is in our roadmap. Not yet implemented.
February 26th, 2015 7:21am

Thank you for the question. The scenario of tracking changes (event type, storage) in the auditing policy is in our roadmap. Not yet implemented.
Free Windows Admin Tool Kit Click here and download it now
February 26th, 2015 7:21am

Thank you for the question. The scenario of tracking changes (event type, storage) in the auditing policy is in our roadmap. Not yet implemented.
February 26th, 2015 7:21am

Thank you for the question. The scenario of tracking changes (event type, storage) in the auditing policy is in our roadmap. Not yet implemented.
Free Windows Admin Tool Kit Click here and download it now
February 26th, 2015 7:21am

Thank you for the question. The scenario of tracking changes (event type, storage) in the auditing policy is in our roadmap. Not yet implemented.
February 26th, 2015 7:21am

Thank you for the question. The scenario of tracking changes (event type, storage) in the auditing policy is in our roadmap. Not yet implemented.
Free Windows Admin Tool Kit Click here and download it now
February 26th, 2015 7:21am

Thanks Eli, so do you think using RBAC is the best way to implement this on SQL Server (not SQL Server db)? We are trying to lock and make it really hard for anyone to turn off the SQL Audit events.

What do you think is the best way to implement it?

March 9th, 2015 1:08pm

For SQL Server 2008 and later Audit, configuration permissions are governed via ALTER ANY SERVER AUDIT and ALTER ANY DATABASE AUDIT permissions. We recommend creating limited permission SERVER ROLES for admins rather than making them SYSADMIN. Where permissions aren't sufficiently granular to allow them to do what you want without over privileging them, signed stored procedures can be created to allow them to perform operations with business logic constraints. If these limited privileged admins don't need to administer triggers, triggers might also be useful in enforcing business logic requirements on operations.

Additionally, SQL Server 2008 and later Audit support multiple audits. We recommend using this to have 2 layers of audit records - one that is synchronous and never gets turned off that simply records all Audit configuration changes, and a second one that is potentially asynchronous (thereby faster and lower perf overhead) and audits everything else needed. This second audit may need to be modified occasionally, such as during schema upgrades, but the first audit records what changed.

Free Windows Admin Tool Kit Click here and download it now
March 13th, 2015 12:51pm

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics