All,
As a part of the SOX processes, we have to audit all the permissions that are granted on all databases,database roles & “database objects” at the server level. These permissions are normally granted either by the DBAs or from scripts during the release process.
I’m aware that I cannot use Server-Level Triggers since Grant is not a DDL. I have used Extended Events in the past to capture deadlock details but I don’t have experience with Server Audits.
I just want to know how others experiences have been and they have implemented similar auditing needs. Any insight will be deeply appreciated.
Thanks,
rgn