Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
mhammond
Starting Member
3 Posts |
 Posted - 2008-11-13 : 10:37:57
|
| Has anyone implemented C2 Level Auditing on the SQL Server? What about 3rd party tools that can accomplish the similar tasks. Is anyone using 3rd party tools.We are currently looking at C2 and 3rd Party products, but are just starting out.Any help would be great.ThanksMike |
|
|
sodeep
Master Smack Fu Yak Hacker
7174 Posts |
Posted - 2008-11-13 : 10:39:46
|
| What are you trying to audit? |
 |
|
|
mhammond
Starting Member
3 Posts |
Posted - 2008-11-13 : 11:03:16
|
| Specifically we are trying to satisfy an audit of our SQL Server RDBMS and the following are some of the types of activities we need to be able to audit.1. (AC-13) Supervise and review the activities of users (including DBAs and SYS Admins) with respect to the enforcement and usage of information system access.2. (AU-02) Generate audit records for the following events: a) All user access attempts to the system b) Modification of sensitive system information c) Addition of new users d) Deletion of users e) Changes to user privileges f) Changes to system security settings g) Direct user changes to system data (not facilitated by the application)3. (AU-06) Regularly review audit records, investigate suspicious activity, report findings, and take necessary actions4. (AU-11) Retain audit logs for a period of at least one year.5. (CM-04) Monitor changes to the information system.We are very concerned about access to PII data and sensitive data access.Thanks |
|
|
|
mhammond
Starting Member
3 Posts |
Posted - 2008-11-14 : 07:15:26
|
I cannot beleive that no one has implemented C2 or is using a 3rd party product. Is that true?Thanks and Have a Nice Day |
|
|
|
|
|
|
SQL Server c2 Level Auditing