Detections
Analytics

Sunset - DISA STIG SQL Server 2014 Database Audit v1r6

Audit Details

Name: Sunset - DISA STIG SQL Server 2014 Database Audit v1r6

Updated: 6/17/2024

Authority: DISA STIG

Plugin: Database

Revision: 1.14

File Details

Filename: DISA_STIG_MSSQL_2014_Database_v1r6.audit

Size: 935 kB

MD5: 2100b51cddc1778b7cc6900e847ce6e3
SHA256: 35d81bd4fa1359fde932cb10930329525e66fbc3a993937c48c448afb87e3f64

Audit Changelog

Ā 
Revision 1.14

Jun 17, 2024

Miscellaneous
  • Metadata updated.
Revision 1.13

Jun 27, 2023

Miscellaneous
  • Metadata updated.
Revision 1.12

Mar 7, 2023

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.11

Feb 7, 2023

Miscellaneous
  • Metadata updated.
  • References updated.
  • See also link updated.
Revision 1.10

Dec 7, 2022

Miscellaneous
  • Variables updated.
Revision 1.9

Apr 25, 2022

Miscellaneous
  • References updated.
Revision 1.8

Feb 8, 2022

Miscellaneous
  • Metadata updated.
  • See also link updated.
Revision 1.7

Jul 30, 2021

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.6

Jun 17, 2021

Miscellaneous
  • Metadata updated.
Revision 1.5

Feb 3, 2021

Informational Update
  • SQL4-00-014900 - SQL Server must be monitored to discover unauthorized changes to functions.
  • SQL4-00-015100 - SQL Server must be monitored to discover unauthorized changes to triggers.
  • SQL4-00-015200 - SQL Server must be monitored to discover unauthorized changes to stored procedures.
  • SQL4-00-021300 - SQL Server must protect data at rest and ensure confidentiality and integrity of data.
  • SQL4-00-022500 - SQL Server must check the validity of all data inputs except those specifically identified by the organization.
  • SQL4-00-022900 - SQL Server must reveal detailed error messages only to the ISSO, ISSM (or their designees), SA and DBA.
  • SQL4-00-024300 - Symmetric keys (other than the database master key) must use a DoD certificate to encrypt the key.
  • SQL4-00-031500 - The DBMS and associated applications must reserve the use of dynamic code execution for situations that require it.
  • SQL4-00-036400 - SQL Server must generate Trace or Audit records when locally-defined security objects are modified.
Miscellaneous
  • Metadata updated.
  • References updated.
  • See also link updated.
Added
  • SQL4-00-002000 - SQL Server must enforce approved authorizations for logical access to information and database-level system resources in accordance with applicable access control policies.
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - APPLICATION_ROLE_CHANGE_PASSWORD_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - AUDIT_CHANGE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - BACKUP_RESTORE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - DATABASE_CHANGE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - DATABASE_OBJECT_ACCESS_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - DATABASE_OBJECT_PERMISSION_CHANGE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - DATABASE_OPERATION_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - DATABASE_OWNERSHIP_CHANGE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - DATABASE_PERMISSION_CHANGE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - DATABASE_PRINCIPAL_CHANGE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - DATABASE_PRINCIPAL_IMPERSONATION_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - DATABASE_ROLE_MEMBER_CHANGE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - DBCC_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 102
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 103
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 104
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 105
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 106
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 107
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 108
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 109
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 110
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 111
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 112
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 113
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 115
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 116
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 117
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 118
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 128
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 129
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 130
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 131
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 132
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 133
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 134
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 135
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 14
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 15
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 152
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 153
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 16
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 162
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 164
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 17
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 170
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 171
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 172
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 173
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 175
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 176
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 177
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 178
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 18
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 180
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 20
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 42
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 43
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 46
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 47
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 90
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - FAILED_LOGIN_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - LOGIN_CHANGE_PASSWORD_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - LOGOUT_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - SCHEMA_OBJECT_ACCESS_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - SCHEMA_OBJECT_CHANGE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - SERVER_OBJECT_CHANGE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - SERVER_OBJECT_OWNERSHIP_CHANGE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - SERVER_OBJECT_PERMISSION_CHANGE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - SERVER_OPERATION_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - SERVER_PERMISSION_CHANGE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - SERVER_PRINCIPAL_CHANGE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - SERVER_PRINCIPAL_IMPERSONATION_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - SERVER_ROLE_MEMBER_CHANGE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - SERVER_STATE_CHANGE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - SUCCESSFUL_LOGIN_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - TRACE_CHANGE_GROUP
  • SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events.
  • SQL4-00-011320 - Where SQL Server Audit is in use at the database level, SQL Server must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited at the database level.
  • SQL4-00-015600 - Database objects (including but not limited to tables, indexes, storage, stored procedures, functions, triggers, links to software external to SQL Server, etc.) must be owned by database/DBMS principals authorized for ownership.
  • SQL4-00-015610 - In a database owned by [sa], or by any other login having administrative privileges at the instance level, the database property TRUSTWORTHY must be OFF.
  • SQL4-00-015620 - In a database owned by a login not having administrative privileges at the instance level, the database property TRUSTWORTHY must be OFF unless required and authorized.
  • SQL4-00-021210 - In the event of a system failure, SQL Server must preserve any information necessary to return to operations with least disruption to mission processes.
  • SQL4-00-021800 - Database contents must be protected from unauthorized and unintended information transfer by enforcement of a data-transfer policy.
  • SQL4-00-022800 - The DBMS and associated applications must provide non-privileged users with error messages that provide information necessary for corrective actions without revealing information that could be exploited by adversaries.
  • SQL4-00-024100 - The Database Master Key must be encrypted by the Service Master Key, where a Database Master Key is required and another encryption method has not been specified.
  • SQL4-00-031600 - The DBMS and associated applications, when making use of dynamic code execution, must scan input data for invalid values that may indicate a code injection attack.
  • SQL4-00-031900 - When supporting applications that require security labeling of data, SQL Server must associate organization-defined types of security labels having organization-defined security label values with information in storage.
  • SQL4-00-032000 - When supporting applications that require security labeling of data, SQL Server must associate organization-defined types of security labels having organization-defined security label values with information in process.
  • SQL4-00-032100 - When supporting applications that require security labeling of data, SQL Server must associate organization-defined types of security labels having organization-defined security label values with information in transmission.
  • SQL4-00-033700 - Time stamps in database tables, intended for auditing or activity-tracking purposes, must include both date and time of day, with a minimum granularity of one second.
  • SQL4-00-034700 - SQL Server must implement and/or support cryptographic mechanisms to prevent unauthorized modification of organization-defined information at rest (to include, at a minimum, PII and classified information) on organization-defined information system components.
  • SQL4-00-035200 - When invalid inputs are received, SQL Server must behave in a predictable and documented manner that reflects organizational and system objectives.
  • SQL4-00-035800 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is accessed.
  • SQL4-00-035900 - Trace or Audit records must be generated when unsuccessful attempts to access categorized information (e.g., classification levels/security levels) occur.
  • SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects - Event ID 162
  • SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects - Event ID 42
  • SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects - Event ID 43
  • SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects - Event ID 82
  • SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects - Event ID 83
  • SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects - Event ID 84
  • SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects - Event ID 85
  • SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects - Event ID 86
  • SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects - Event ID 87
  • SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects - Event ID 88
  • SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects - Event ID 89
  • SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects - Event ID 90
  • SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects - Event ID 91
  • SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects - SCHEMA_OBJECT_ACCESS_GROUP
  • SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects.
  • SQL4-00-036300 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify privileges/permissions via locally-defined security objects occur - Event ID 162
  • SQL4-00-036300 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify privileges/permissions via locally-defined security objects occur - Event ID 42
  • SQL4-00-036300 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify privileges/permissions via locally-defined security objects occur - Event ID 43
  • SQL4-00-036300 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify privileges/permissions via locally-defined security objects occur - Event ID 82
  • SQL4-00-036300 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify privileges/permissions via locally-defined security objects occur - Event ID 83
  • SQL4-00-036300 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify privileges/permissions via locally-defined security objects occur - Event ID 84
  • SQL4-00-036300 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify privileges/permissions via locally-defined security objects occur - Event ID 85
  • SQL4-00-036300 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify privileges/permissions via locally-defined security objects occur - Event ID 86
  • SQL4-00-036300 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify privileges/permissions via locally-defined security objects occur - Event ID 87
  • SQL4-00-036300 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify privileges/permissions via locally-defined security objects occur - Event ID 88
  • SQL4-00-036300 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify privileges/permissions via locally-defined security objects occur - Event ID 89
  • SQL4-00-036300 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify privileges/permissions via locally-defined security objects occur - Event ID 90
  • SQL4-00-036300 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify privileges/permissions via locally-defined security objects occur - Event ID 91
  • SQL4-00-036300 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify privileges/permissions via locally-defined security objects occur - SCHEMA_OBJECT_ACCESS_GROUP
  • SQL4-00-036300 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify privileges/permissions via locally-defined security objects occur.
  • SQL4-00-036400 - SQL Server must generate Trace or Audit records when locally-defined security objects are modified - Event ID 162
  • SQL4-00-036400 - SQL Server must generate Trace or Audit records when locally-defined security objects are modified - Event ID 164
  • SQL4-00-036400 - SQL Server must generate Trace or Audit records when locally-defined security objects are modified - Event ID 46
  • SQL4-00-036400 - SQL Server must generate Trace or Audit records when locally-defined security objects are modified - Event ID 47
  • SQL4-00-036400 - SQL Server must generate Trace or Audit records when locally-defined security objects are modified - SCHEMA_OBJECT_CHANGE_GROUP
  • SQL4-00-036500 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify locally-defined security objects occur - Event ID 162
  • SQL4-00-036500 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify locally-defined security objects occur - Event ID 164
  • SQL4-00-036500 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify locally-defined security objects occur - Event ID 46
  • SQL4-00-036500 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify locally-defined security objects occur - Event ID 47
  • SQL4-00-036500 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify locally-defined security objects occur - SCHEMA_OBJECT_CHANGE...
  • SQL4-00-036500 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify locally-defined security objects occur.
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is created - Event ID 162
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is created - Event ID 82
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is created - Event ID 83
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is created - Event ID 84
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is created - Event ID 85
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is created - Event ID 86
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is created - Event ID 87
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is created - Event ID 88
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is created - Event ID 89
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is created - Event ID 90
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is created - Event ID 91
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is created - SCHEMA_OBJECT_ACCESS_GROUP
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is created.
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is modified - Event ID 162
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is modified - Event ID 82
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is modified - Event ID 83
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is modified - Event ID 84
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is modified - Event ID 85
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is modified - Event ID 86
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is modified - Event ID 87
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is modified - Event ID 88
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is modified - Event ID 89
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is modified - Event ID 90
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is modified - Event ID 91
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is modified - SCHEMA_OBJECT_ACCESS_GROUP
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is modified.
  • SQL4-00-036800 - Trace or Audit records must be generated when unsuccessful attempts to create categorized information (e.g., classification levels/security levels) occur - Event ID 162
  • SQL4-00-036800 - Trace or Audit records must be generated when unsuccessful attempts to create categorized information (e.g., classification levels/security levels) occur - Event ID 82
  • SQL4-00-036800 - Trace or Audit records must be generated when unsuccessful attempts to create categorized information (e.g., classification levels/security levels) occur - Event ID 83
  • SQL4-00-036800 - Trace or Audit records must be generated when unsuccessful attempts to create categorized information (e.g., classification levels/security levels) occur - Event ID 84
  • SQL4-00-036800 - Trace or Audit records must be generated when unsuccessful attempts to create categorized information (e.g., classification levels/security levels) occur - Event ID 85
  • SQL4-00-036800 - Trace or Audit records must be generated when unsuccessful attempts to create categorized information (e.g., classification levels/security levels) occur - Event ID 86
  • SQL4-00-036800 - Trace or Audit records must be generated when unsuccessful attempts to create categorized information (e.g., classification levels/security levels) occur - Event ID 87
  • SQL4-00-036800 - Trace or Audit records must be generated when unsuccessful attempts to create categorized information (e.g., classification levels/security levels) occur - Event ID 88
  • SQL4-00-036800 - Trace or Audit records must be generated when unsuccessful attempts to create categorized information (e.g., classification levels/security levels) occur - Event ID 89
  • SQL4-00-036800 - Trace or Audit records must be generated when unsuccessful attempts to create categorized information (e.g., classification levels/security levels) occur - Event ID 90
  • SQL4-00-036800 - Trace or Audit records must be generated when unsuccessful attempts to create categorized information (e.g., classification levels/security levels) occur - Event ID 91
  • SQL4-00-036800 - Trace or Audit records must be generated when unsuccessful attempts to create categorized information (e.g., classification levels/security levels) occur - SCHEMA_OBJECT_ACCESS...
  • SQL4-00-036800 - Trace or Audit records must be generated when unsuccessful attempts to create categorized information (e.g., classification levels/security levels) occur.
  • SQL4-00-036850 - Trace or Audit records must be generated when unsuccessful attempts to modify categorized information (e.g., classification levels/security levels) occur - Event ID 162
  • SQL4-00-036850 - Trace or Audit records must be generated when unsuccessful attempts to modify categorized information (e.g., classification levels/security levels) occur - Event ID 82
  • SQL4-00-036850 - Trace or Audit records must be generated when unsuccessful attempts to modify categorized information (e.g., classification levels/security levels) occur - Event ID 83
  • SQL4-00-036850 - Trace or Audit records must be generated when unsuccessful attempts to modify categorized information (e.g., classification levels/security levels) occur - Event ID 84
  • SQL4-00-036850 - Trace or Audit records must be generated when unsuccessful attempts to modify categorized information (e.g., classification levels/security levels) occur - Event ID 85
  • SQL4-00-036850 - Trace or Audit records must be generated when unsuccessful attempts to modify categorized information (e.g., classification levels/security levels) occur - Event ID 86
  • SQL4-00-036850 - Trace or Audit records must be generated when unsuccessful attempts to modify categorized information (e.g., classification levels/security levels) occur - Event ID 87
  • SQL4-00-036850 - Trace or Audit records must be generated when unsuccessful attempts to modify categorized information (e.g., classification levels/security levels) occur - Event ID 88
  • SQL4-00-036850 - Trace or Audit records must be generated when unsuccessful attempts to modify categorized information (e.g., classification levels/security levels) occur - Event ID 89
  • SQL4-00-036850 - Trace or Audit records must be generated when unsuccessful attempts to modify categorized information (e.g., classification levels/security levels) occur - Event ID 90
  • SQL4-00-036850 - Trace or Audit records must be generated when unsuccessful attempts to modify categorized information (e.g., classification levels/security levels) occur - Event ID 91
  • SQL4-00-036850 - Trace or Audit records must be generated when unsuccessful attempts to modify categorized information (e.g., classification levels/security levels) occur - SCHEMA_OBJECT_ACCESS...
  • SQL4-00-036850 - Trace or Audit records must be generated when unsuccessful attempts to modify categorized information (e.g., classification levels/security levels) occur.
  • SQL4-00-037100 - SQL Server must generate Trace or Audit records when locally-defined security objects are dropped - Event ID 162
  • SQL4-00-037100 - SQL Server must generate Trace or Audit records when locally-defined security objects are dropped - Event ID 164
  • SQL4-00-037100 - SQL Server must generate Trace or Audit records when locally-defined security objects are dropped - Event ID 46
  • SQL4-00-037100 - SQL Server must generate Trace or Audit records when locally-defined security objects are dropped - Event ID 47
  • SQL4-00-037100 - SQL Server must generate Trace or Audit records when locally-defined security objects are dropped - SCHEMA_OBJECT_CHANGE_GROUP
  • SQL4-00-037100 - SQL Server must generate Trace or Audit records when locally-defined security objects are dropped.
  • SQL4-00-037200 - SQL Server must generate Trace or Audit records when unsuccessful attempts to drop locally-defined security objects occur - Event ID 162
  • SQL4-00-037200 - SQL Server must generate Trace or Audit records when unsuccessful attempts to drop locally-defined security objects occur - Event ID 164
  • SQL4-00-037200 - SQL Server must generate Trace or Audit records when unsuccessful attempts to drop locally-defined security objects occur - Event ID 46
  • SQL4-00-037200 - SQL Server must generate Trace or Audit records when unsuccessful attempts to drop locally-defined security objects occur - Event ID 47
  • SQL4-00-037200 - SQL Server must generate Trace or Audit records when unsuccessful attempts to drop locally-defined security objects occur.
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is deleted - Event ID 162
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is deleted - Event ID 82
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is deleted - Event ID 83
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is deleted - Event ID 84
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is deleted - Event ID 85
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is deleted - Event ID 86
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is deleted - Event ID 87
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is deleted - Event ID 88
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is deleted - Event ID 89
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is deleted - Event ID 90
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is deleted - Event ID 91
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is deleted - SCHEMA_OBJECT_ACCESS_GROUP
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information (e.g., classification levels/security levels) is deleted.
  • SQL4-00-037400 - Trace or Audit records must be generated when unsuccessful attempts to delete categorized information (e.g., classification levels/security levels) occur - Event ID 162
  • SQL4-00-037400 - Trace or Audit records must be generated when unsuccessful attempts to delete categorized information (e.g., classification levels/security levels) occur - Event ID 82
  • SQL4-00-037400 - Trace or Audit records must be generated when unsuccessful attempts to delete categorized information (e.g., classification levels/security levels) occur - Event ID 83
  • SQL4-00-037400 - Trace or Audit records must be generated when unsuccessful attempts to delete categorized information (e.g., classification levels/security levels) occur - Event ID 84
  • SQL4-00-037400 - Trace or Audit records must be generated when unsuccessful attempts to delete categorized information (e.g., classification levels/security levels) occur - Event ID 85
  • SQL4-00-037400 - Trace or Audit records must be generated when unsuccessful attempts to delete categorized information (e.g., classification levels/security levels) occur - Event ID 86
  • SQL4-00-037400 - Trace or Audit records must be generated when unsuccessful attempts to delete categorized information (e.g., classification levels/security levels) occur - Event ID 87
  • SQL4-00-037400 - Trace or Audit records must be generated when unsuccessful attempts to delete categorized information (e.g., classification levels/security levels) occur - Event ID 88
  • SQL4-00-037400 - Trace or Audit records must be generated when unsuccessful attempts to delete categorized information (e.g., classification levels/security levels) occur - Event ID 89
  • SQL4-00-037400 - Trace or Audit records must be generated when unsuccessful attempts to delete categorized information (e.g., classification levels/security levels) occur - Event ID 90
  • SQL4-00-037400 - Trace or Audit records must be generated when unsuccessful attempts to delete categorized information (e.g., classification levels/security levels) occur - Event ID 91
  • SQL4-00-037400 - Trace or Audit records must be generated when unsuccessful attempts to delete categorized information (e.g., classification levels/security levels) occur - SCHEMA_OBJECT_ACCESS...
  • SQL4-00-037400 - Trace or Audit records must be generated when unsuccessful attempts to delete categorized information (e.g., classification levels/security levels) occur.
  • SQL4-00-038100 - SQL Server must generate Trace or Audit records when successful accesses to designated objects occur - Event ID 162
  • SQL4-00-038100 - SQL Server must generate Trace or Audit records when successful accesses to designated objects occur - Event ID 42
  • SQL4-00-038100 - SQL Server must generate Trace or Audit records when successful accesses to designated objects occur - Event ID 43
  • SQL4-00-038100 - SQL Server must generate Trace or Audit records when successful accesses to designated objects occur - Event ID 82
  • SQL4-00-038100 - SQL Server must generate Trace or Audit records when successful accesses to designated objects occur - Event ID 83
  • SQL4-00-038100 - SQL Server must generate Trace or Audit records when successful accesses to designated objects occur - Event ID 84
  • SQL4-00-038100 - SQL Server must generate Trace or Audit records when successful accesses to designated objects occur - Event ID 85
  • SQL4-00-038100 - SQL Server must generate Trace or Audit records when successful accesses to designated objects occur - Event ID 86
  • SQL4-00-038100 - SQL Server must generate Trace or Audit records when successful accesses to designated objects occur - Event ID 87
  • SQL4-00-038100 - SQL Server must generate Trace or Audit records when successful accesses to designated objects occur - Event ID 88
  • SQL4-00-038100 - SQL Server must generate Trace or Audit records when successful accesses to designated objects occur - Event ID 89
  • SQL4-00-038100 - SQL Server must generate Trace or Audit records when successful accesses to designated objects occur - Event ID 90
  • SQL4-00-038100 - SQL Server must generate Trace or Audit records when successful accesses to designated objects occur - Event ID 91
  • SQL4-00-038100 - SQL Server must generate Trace or Audit records when successful accesses to designated objects occur - SUCCESSFUL_LOGIN_GROUP
  • SQL4-00-038100 - SQL Server must generate Trace or Audit records when successful accesses to designated objects occur.
  • SQL4-00-038200 - SQL Server must generate Trace or Audit records when unsuccessful accesses to designated objects occur - Event ID 162
  • SQL4-00-038200 - SQL Server must generate Trace or Audit records when unsuccessful accesses to designated objects occur - SUCCESSFUL_LOGIN_GROUP
  • SQL4-00-038200 - SQL Server must generate Trace or Audit records when unsuccessful accesses to designated objects occur.
Removed
  • SQL4-00-002000 - SQL Server must enforce approved authorizations for logical access to information and database-level system resources
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - APPLICATION_ROLE_CHANGE_PASSWORD_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - AUDIT_CHANGE_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - BACKUP_RESTORE_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - DATABASE_CHANGE_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - DATABASE_OBJECT_ACCESS_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - DATABASE_OBJECT_PERMISSION_CHANGE_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - DATABASE_OPERATION_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - DATABASE_OWNERSHIP_CHANGE_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - DATABASE_PERMISSION_CHANGE_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - DATABASE_PRINCIPAL_CHANGE_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - DATABASE_PRINCIPAL_IMPERSONATION_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - DATABASE_ROLE_MEMBER_CHANGE_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - DBCC_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 102
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 103
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 104
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 105
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 106
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 107
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 108
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 109
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 110
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 111
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 112
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 113
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 115
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 116
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 117
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 118
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 128
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 129
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 130
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 131
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 132
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 133
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 134
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 135
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 14
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 15
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 152
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 153
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 16
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 162
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 164
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 17
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 170
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 171
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 172
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 173
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 175
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 176
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 177
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 178
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 18
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 180
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 20
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 42
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 43
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 46
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 47
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - Event ID 90
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - FAILED_LOGIN_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - LOGIN_CHANGE_PASSWORD_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - LOGOUT_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - SCHEMA_OBJECT_ACCESS_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - SCHEMA_OBJECT_CHANGE_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - SERVER_OBJECT_CHANGE_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - SERVER_OBJECT_OWNERSHIP_CHANGE_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - SERVER_OBJECT_PERMISSION_CHANGE_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - SERVER_OPERATION_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - SERVER_PERMISSION_CHANGE_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - SERVER_PRINCIPAL_CHANGE_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - SERVER_PRINCIPAL_IMPERSONATION_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - SERVER_ROLE_MEMBER_CHANGE_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - SERVER_STATE_CHANGE_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - SUCCESSFUL_LOGIN_GROUP
  • SQL4-00-011200 - SQL must generate Trace/Audit records for organization-defined auditable events - TRACE_CHANGE_GROUP
  • SQL4-00-011320 - SQL Server must allow only the ISSM to select which auditable events are to be audited at the database level.
  • SQL4-00-015600 - Database objects must be owned by database/DBMS principals authorized for ownership.
  • SQL4-00-015610 - In a database owned by [sa], or other login having admin privileges, the database property TRUSTWORTHY must be OFF.
  • SQL4-00-015620 - In a database owned by a login not having admin privileges at the instance level, the property TRUSTWORTHY must be OFF.
  • SQL4-00-021210 - In the event of a system failure, SQL must preserve any info necessary to return to operations.
  • SQL4-00-021800 - Database contents must be protected from unauthorized and unintended info transfer by enforcement of a data-transfer policy
  • SQL4-00-022800 - The DBMS and associated apps must provide non-privileged users with error messages that provide the least info necessary.
  • SQL4-00-024100 - The Database Master Key must be encrypted by the Service Master Key
  • SQL4-00-031600 - The DBMS and associated applications must scan input data for invalid values that may indicate a code injection attack.
  • SQL4-00-031900 - SQL Server must associate security labels having organization-defined security label values with information in storage.
  • SQL4-00-032000 - SQL Server must associate security labels having organization-defined security label values with information in process.
  • SQL4-00-032100 - SQL Server must associate security labels having organization-defined security label values with info in transmission.
  • SQL4-00-033700 - Time stamps in database tables must include both date and time of day, with a minimum granularity of one second.
  • SQL4-00-034700 - SQL must implement and/or support crypto mechanisms to prevent unauthorized modification of information at rest.
  • SQL4-00-035200 - When invalid inputs are received, SQL Server must behave in a predictable and documented manner.
  • SQL4-00-035800 - Trace or Audit records must be generated when categorized information is accessed.
  • SQL4-00-035900 - Trace or Audit records must be generated when unsuccessful attempts to access categorized information occur.
  • SQL4-00-036200 - SQL must generate Trace/Audit records when privs/perms are modified - Event ID 162
  • SQL4-00-036200 - SQL must generate Trace/Audit records when privs/perms are modified - Event ID 42
  • SQL4-00-036200 - SQL must generate Trace/Audit records when privs/perms are modified - Event ID 43
  • SQL4-00-036200 - SQL must generate Trace/Audit records when privs/perms are modified - Event ID 82
  • SQL4-00-036200 - SQL must generate Trace/Audit records when privs/perms are modified - Event ID 83
  • SQL4-00-036200 - SQL must generate Trace/Audit records when privs/perms are modified - Event ID 84
  • SQL4-00-036200 - SQL must generate Trace/Audit records when privs/perms are modified - Event ID 85
  • SQL4-00-036200 - SQL must generate Trace/Audit records when privs/perms are modified - Event ID 86
  • SQL4-00-036200 - SQL must generate Trace/Audit records when privs/perms are modified - Event ID 87
  • SQL4-00-036200 - SQL must generate Trace/Audit records when privs/perms are modified - Event ID 88
  • SQL4-00-036200 - SQL must generate Trace/Audit records when privs/perms are modified - Event ID 89
  • SQL4-00-036200 - SQL must generate Trace/Audit records when privs/perms are modified - Event ID 90
  • SQL4-00-036200 - SQL must generate Trace/Audit records when privs/perms are modified - Event ID 91
  • SQL4-00-036200 - SQL must generate Trace/Audit records when privs/perms are modified - SCHEMA_OBJECT_ACCESS_GROUP
  • SQL4-00-036200 - SQL must generate Trace/Audit records when privs/perms are modified.
  • SQL4-00-036300 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify privileges/permissions occur.
  • SQL4-00-036300 - SQL must generate Trace/Audit records when unsuccessful attempts to modify privs/perms occur - Event ID 162
  • SQL4-00-036300 - SQL must generate Trace/Audit records when unsuccessful attempts to modify privs/perms occur - Event ID 42
  • SQL4-00-036300 - SQL must generate Trace/Audit records when unsuccessful attempts to modify privs/perms occur - Event ID 43
  • SQL4-00-036300 - SQL must generate Trace/Audit records when unsuccessful attempts to modify privs/perms occur - Event ID 82
  • SQL4-00-036300 - SQL must generate Trace/Audit records when unsuccessful attempts to modify privs/perms occur - Event ID 83
  • SQL4-00-036300 - SQL must generate Trace/Audit records when unsuccessful attempts to modify privs/perms occur - Event ID 84
  • SQL4-00-036300 - SQL must generate Trace/Audit records when unsuccessful attempts to modify privs/perms occur - Event ID 85
  • SQL4-00-036300 - SQL must generate Trace/Audit records when unsuccessful attempts to modify privs/perms occur - Event ID 86
  • SQL4-00-036300 - SQL must generate Trace/Audit records when unsuccessful attempts to modify privs/perms occur - Event ID 87
  • SQL4-00-036300 - SQL must generate Trace/Audit records when unsuccessful attempts to modify privs/perms occur - Event ID 88
  • SQL4-00-036300 - SQL must generate Trace/Audit records when unsuccessful attempts to modify privs/perms occur - Event ID 89
  • SQL4-00-036300 - SQL must generate Trace/Audit records when unsuccessful attempts to modify privs/perms occur - Event ID 90
  • SQL4-00-036300 - SQL must generate Trace/Audit records when unsuccessful attempts to modify privs/perms occur - Event ID 91
  • SQL4-00-036300 - SQL must generate Trace/Audit records when unsuccessful attempts to modify privs/perms occur - SCHEMA_OBJECT_ACCESS_GROUP
  • SQL4-00-036400 - SQL must generate Trace/Audit records when locally-defined security objects are modified - Event ID 162
  • SQL4-00-036400 - SQL must generate Trace/Audit records when locally-defined security objects are modified - Event ID 164
  • SQL4-00-036400 - SQL must generate Trace/Audit records when locally-defined security objects are modified - Event ID 46
  • SQL4-00-036400 - SQL must generate Trace/Audit records when locally-defined security objects are modified - Event ID 47
  • SQL4-00-036400 - SQL must generate Trace/Audit records when locally-defined security objects are modified - SCHEMA_OBJECT_CHANGE_GROUP
  • SQL4-00-036500 - SQL Server must generate Trace or Audit records when unsuccessful attempts to modify locally-defined security objects occur
  • SQL4-00-036500 - SQL must generate Trace/Audit records when unsuccessful attempts to modify security objects occur - Event ID 162
  • SQL4-00-036500 - SQL must generate Trace/Audit records when unsuccessful attempts to modify security objects occur - Event ID 164
  • SQL4-00-036500 - SQL must generate Trace/Audit records when unsuccessful attempts to modify security objects occur - Event ID 46
  • SQL4-00-036500 - SQL must generate Trace/Audit records when unsuccessful attempts to modify security objects occur - Event ID 47
  • SQL4-00-036500 - SQL must generate Trace/Audit records when unsuccessful attempts to modify security objects occur - SCHEMA_OBJECT_CHANGE...
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information is created
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information is created - Event ID 162
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information is created - Event ID 82
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information is created - Event ID 83
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information is created - Event ID 84
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information is created - Event ID 85
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information is created - Event ID 86
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information is created - Event ID 87
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information is created - Event ID 88
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information is created - Event ID 89
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information is created - Event ID 90
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information is created - Event ID 91
  • SQL4-00-036600 - Trace or Audit records must be generated when categorized information is created - SCHEMA_OBJECT_ACCESS_GROUP
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information is modified
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information is modified - Event ID 162
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information is modified - Event ID 82
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information is modified - Event ID 83
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information is modified - Event ID 84
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information is modified - Event ID 85
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information is modified - Event ID 86
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information is modified - Event ID 87
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information is modified - Event ID 88
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information is modified - Event ID 89
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information is modified - Event ID 90
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information is modified - Event ID 91
  • SQL4-00-036650 - Trace or Audit records must be generated when categorized information is modified - SCHEMA_OBJECT_ACCESS_GROUP
  • SQL4-00-036800 - Trace/Audit records must be generated when unsuccessful attempts to create categorized info occur
  • SQL4-00-036800 - Trace/Audit records must be generated when unsuccessful attempts to create categorized info occur - Event ID 162
  • SQL4-00-036800 - Trace/Audit records must be generated when unsuccessful attempts to create categorized info occur - Event ID 82
  • SQL4-00-036800 - Trace/Audit records must be generated when unsuccessful attempts to create categorized info occur - Event ID 83
  • SQL4-00-036800 - Trace/Audit records must be generated when unsuccessful attempts to create categorized info occur - Event ID 84
  • SQL4-00-036800 - Trace/Audit records must be generated when unsuccessful attempts to create categorized info occur - Event ID 85
  • SQL4-00-036800 - Trace/Audit records must be generated when unsuccessful attempts to create categorized info occur - Event ID 86
  • SQL4-00-036800 - Trace/Audit records must be generated when unsuccessful attempts to create categorized info occur - Event ID 87
  • SQL4-00-036800 - Trace/Audit records must be generated when unsuccessful attempts to create categorized info occur - Event ID 88
  • SQL4-00-036800 - Trace/Audit records must be generated when unsuccessful attempts to create categorized info occur - Event ID 89
  • SQL4-00-036800 - Trace/Audit records must be generated when unsuccessful attempts to create categorized info occur - Event ID 90
  • SQL4-00-036800 - Trace/Audit records must be generated when unsuccessful attempts to create categorized info occur - Event ID 91
  • SQL4-00-036800 - Trace/Audit records must be generated when unsuccessful attempts to create categorized info occur - SCHEMA_OBJECT_ACCESS...
  • SQL4-00-036850 - Trace/Audit records must be generated when unsuccessful attempts to modify categorized info occur
  • SQL4-00-036850 - Trace/Audit records must be generated when unsuccessful attempts to modify categorized info occur - Event ID 162
  • SQL4-00-036850 - Trace/Audit records must be generated when unsuccessful attempts to modify categorized info occur - Event ID 82
  • SQL4-00-036850 - Trace/Audit records must be generated when unsuccessful attempts to modify categorized info occur - Event ID 83
  • SQL4-00-036850 - Trace/Audit records must be generated when unsuccessful attempts to modify categorized info occur - Event ID 84
  • SQL4-00-036850 - Trace/Audit records must be generated when unsuccessful attempts to modify categorized info occur - Event ID 85
  • SQL4-00-036850 - Trace/Audit records must be generated when unsuccessful attempts to modify categorized info occur - Event ID 86
  • SQL4-00-036850 - Trace/Audit records must be generated when unsuccessful attempts to modify categorized info occur - Event ID 87
  • SQL4-00-036850 - Trace/Audit records must be generated when unsuccessful attempts to modify categorized info occur - Event ID 88
  • SQL4-00-036850 - Trace/Audit records must be generated when unsuccessful attempts to modify categorized info occur - Event ID 89
  • SQL4-00-036850 - Trace/Audit records must be generated when unsuccessful attempts to modify categorized info occur - Event ID 90
  • SQL4-00-036850 - Trace/Audit records must be generated when unsuccessful attempts to modify categorized info occur - Event ID 91
  • SQL4-00-036850 - Trace/Audit records must be generated when unsuccessful attempts to modify categorized info occur - SCHEMA_OBJECT_ACCESS...
  • SQL4-00-037100 - SQL must generate Trace/Audit records when security objects are dropped
  • SQL4-00-037100 - SQL must generate Trace/Audit records when security objects are dropped - Event ID 162
  • SQL4-00-037100 - SQL must generate Trace/Audit records when security objects are dropped - Event ID 164
  • SQL4-00-037100 - SQL must generate Trace/Audit records when security objects are dropped - Event ID 46
  • SQL4-00-037100 - SQL must generate Trace/Audit records when security objects are dropped - Event ID 47
  • SQL4-00-037100 - SQL must generate Trace/Audit records when security objects are dropped - SCHEMA_OBJECT_CHANGE_GROUP
  • SQL4-00-037200 - SQL must generate Trace/Audit records when unsuccessful attempts to drop security objects occur
  • SQL4-00-037200 - SQL must generate Trace/Audit records when unsuccessful attempts to drop security objects occur - Event ID 162
  • SQL4-00-037200 - SQL must generate Trace/Audit records when unsuccessful attempts to drop security objects occur - Event ID 164
  • SQL4-00-037200 - SQL must generate Trace/Audit records when unsuccessful attempts to drop security objects occur - Event ID 46
  • SQL4-00-037200 - SQL must generate Trace/Audit records when unsuccessful attempts to drop security objects occur - Event ID 47
  • SQL4-00-037200 - SQL must generate Trace/Audit records when unsuccessful attempts to drop security objects occur -SCHEMA_OBJECT_CHANGE_GROUP
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information is deleted
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information is deleted - Event ID 162
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information is deleted - Event ID 82
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information is deleted - Event ID 83
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information is deleted - Event ID 84
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information is deleted - Event ID 85
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information is deleted - Event ID 86
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information is deleted - Event ID 87
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information is deleted - Event ID 88
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information is deleted - Event ID 89
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information is deleted - Event ID 90
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information is deleted - Event ID 91
  • SQL4-00-037300 - Trace or Audit records must be generated when categorized information is deleted - SCHEMA_OBJECT_ACCESS_GROUP
  • SQL4-00-037400 - Trace/Audit records must be generated when unsuccessful attempts to delete categorized info occur
  • SQL4-00-037400 - Trace/Audit records must be generated when unsuccessful attempts to delete categorized info occur - Event ID 162
  • SQL4-00-037400 - Trace/Audit records must be generated when unsuccessful attempts to delete categorized info occur - Event ID 82
  • SQL4-00-037400 - Trace/Audit records must be generated when unsuccessful attempts to delete categorized info occur - Event ID 83
  • SQL4-00-037400 - Trace/Audit records must be generated when unsuccessful attempts to delete categorized info occur - Event ID 84
  • SQL4-00-037400 - Trace/Audit records must be generated when unsuccessful attempts to delete categorized info occur - Event ID 85
  • SQL4-00-037400 - Trace/Audit records must be generated when unsuccessful attempts to delete categorized info occur - Event ID 86
  • SQL4-00-037400 - Trace/Audit records must be generated when unsuccessful attempts to delete categorized info occur - Event ID 87
  • SQL4-00-037400 - Trace/Audit records must be generated when unsuccessful attempts to delete categorized info occur - Event ID 88
  • SQL4-00-037400 - Trace/Audit records must be generated when unsuccessful attempts to delete categorized info occur - Event ID 89
  • SQL4-00-037400 - Trace/Audit records must be generated when unsuccessful attempts to delete categorized info occur - Event ID 90
  • SQL4-00-037400 - Trace/Audit records must be generated when unsuccessful attempts to delete categorized info occur - Event ID 91
  • SQL4-00-037400 - Trace/Audit records must be generated when unsuccessful attempts to delete categorized info occur - SCHEMA_OBJECT_ACCESS...
  • SQL4-00-038100 - SQL must generate Trace/Audit records when successful accesses to designated objects occur
  • SQL4-00-038100 - SQL must generate Trace/Audit records when successful accesses to designated objects occur - Event ID 162
  • SQL4-00-038100 - SQL must generate Trace/Audit records when successful accesses to designated objects occur - Event ID 42
  • SQL4-00-038100 - SQL must generate Trace/Audit records when successful accesses to designated objects occur - Event ID 43
  • SQL4-00-038100 - SQL must generate Trace/Audit records when successful accesses to designated objects occur - Event ID 82
  • SQL4-00-038100 - SQL must generate Trace/Audit records when successful accesses to designated objects occur - Event ID 83
  • SQL4-00-038100 - SQL must generate Trace/Audit records when successful accesses to designated objects occur - Event ID 84
  • SQL4-00-038100 - SQL must generate Trace/Audit records when successful accesses to designated objects occur - Event ID 85
  • SQL4-00-038100 - SQL must generate Trace/Audit records when successful accesses to designated objects occur - Event ID 86
  • SQL4-00-038100 - SQL must generate Trace/Audit records when successful accesses to designated objects occur - Event ID 87
  • SQL4-00-038100 - SQL must generate Trace/Audit records when successful accesses to designated objects occur - Event ID 88
  • SQL4-00-038100 - SQL must generate Trace/Audit records when successful accesses to designated objects occur - Event ID 89
  • SQL4-00-038100 - SQL must generate Trace/Audit records when successful accesses to designated objects occur - Event ID 90
  • SQL4-00-038100 - SQL must generate Trace/Audit records when successful accesses to designated objects occur - Event ID 91
  • SQL4-00-038100 - SQL must generate Trace/Audit records when successful accesses to designated objects occur - SUCCESSFUL_LOGIN_GROUP
  • SQL4-00-038200 - SQL must generate Trace/Audit records when unsuccessful accesses to designated objects occur
  • SQL4-00-038200 - SQL must generate Trace/Audit records when unsuccessful accesses to designated objects occur - Event ID 162
  • SQL4-00-038200 - SQL must generate Trace/Audit records when unsuccessful accesses to designated objects occur - SUCCESSFUL_LOGIN_GROUP