SysAdmin Magazine Special Edition: SQL Server Security and OrderĬommon Criteria Compliance is a newer standard that supersedes C2 auditing. Furthermore, C2 auditing is in maintenance mode, so it will likely be removed in a future version of SQL Server. But it is all or nothing - you can’t choose what it audits, and it can generate a lot of data. It audits events like user logins, stored procedures, and the creation and removal of objects. C2 auditing is an internationally accepted standard that can be turned on in SQL Server. If you aren’t currently auditing your SQL Server, the easiest place to start is by enabling C2 auditing. Enabling C2 Auditing and Common Criteria Compliance We will not be looking at any third-party auditing tools, though they can be of great help, especially for larger environments and in regulated industries. This article is for database administrators (DBAs) who are looking at using C2 auditing, Common Compliance Criteria and SQL Server Auditing. Next, you have choose which security auditing features to use. For example, you might audit user logins, server configuration, schema changes and audit data modifications. The first step is to define what to audit.
0 Comments
Leave a Reply. |