DRAG DROP
You administer a Microsoft SQL Server 2012 database called Human_Resources. The
database contains a table named dbo.Salary.
You need to ensure that all read activity against dbo.Salary is audited and written to the
Windows Security Log.
What should you do? (To answer, move the three appropriate actions from the list of actions
to the answer area and arrange them in the correct order.)
Answer: See the explanation.
Note:
* An audit must exist before creating a server audit specification for it. When a server audit
specification is created, it is in a disabled state.
* The general process for creating and using an audit is as follows.
1. Create an audit and define the target.
2. Create either a server audit specification or database audit specification that maps to
the audit. Enable the audit specification.3. Enable the audit.
4. Read the audit events by using the Windows Event Viewer, Log File Viewer, or the
fn_get_audit_file function.
* Example (step 2) (we should audit SELECT on the Salary table):
USE AdventureWorks2012 ;
GO
— Create the database audit specification.
CREATE DATABASE AUDIT SPECIFICATION Audit_Pay_Tables
FOR SERVER AUDIT Payrole_Security_Audit
ADD (SELECT , INSERT
ON HumanResources.EmployeePayHistory BY dbo )
WITH (STATE = ON) ;
GO