In the previous article on this topic (which can be read here), I discussed the problem of having a database get dropped and the need to find out who dropped the database and when they dropped […]
Tag: Audit
Audit who Dropped the Database
In the first article on this topic (which can be read here), I discussed the problem of having a database get dropped and the need to find out who dropped the database and when they […]
Audit Schema Change Report
In a recent article on SSG, I discussed how to use Extended Events to function in a Profiler like fashion. You can read about that here. I recommend reading that article first because it helps […]
Auditing and Event SubClasses
A recent discussion got me to thinking about Auditing. To be honest, it got started with a complaint about some documentation that seemed overly light about the various fields related to auditing as it stands […]
Audit Configuration Changes
Do you know the last time a Server Property was changed on your instances of SQL Server? Are you wondering when the setting for max degree of parallelism was changed? Do you know who changed […]
Public Role and Security
A good rule of thumb with the public role is to leave it be. Do not add permissions to this role. Add permissions on a per database and per group of users basis. Create roles within the database and grant permissions to that role – in each database. And remember the rule of least privilege – don’t grant more permissions to a user/role than necessary to perform the job function. Just the same as in an airport – everybody has their role and it is strictly defined. If the user need not have access – then don’t grant the permissions.
Stored Procedures – Common Security Practice
In SQL Server a good practice is to access the data via calls through stored procedure. Have a look at the document available in that link. To further this practice, one may create a database […]
Column Level Permissions
Did you know that you can grant permissions down to the column level in SQL Server? Well, if you didn’t know that – you do now. It is actually rather simple to grant permissions […]
Security Audit
This article demonstrates a script that will generate a nice html report of your database security suitable for the auditors.