sp_audit and SSL

This section updates the reference pages of sp_audit to include information about SSL.

Description

Allows a System Security Officer to configure auditing options.

Syntax

sp_audit option, login_name, object_name [,setting]

Parameters

option is the name of the auditing option to set. The valid auditing options include:

Option

Description

security

Audits the following SSL security-relevant events:

  • Issuing any of the following commands:

    • addcert

    • dropcert

Audits addcert and dropcert actions performed by sp_ssladmin(), and updates sysattributes.

Example

Initiates auditing for SSL security-relevant events. Both successful and failed events are audited:

sp_audit "security", "all", "all", "on"
go

Sample records added:
select * from sybsecurity..sysaudits_01 where event=99
go

Permissions

Only a System Security Officer can execute sp_audit.