SQL Server Audit Action Group: DATABASE_PERMISSION_CHANGE_GROUP

Available in New to:
Database
Audit
Specification
Server
Audit
Specification
2012 2016
 

This group tracks permission changes on a database itself as opposed to permission changes on objects within that database. If you enable this group in a server audit specification, it will track permission changes on all databases within that SQL Server instance. If you enable this group in a database audit specification, it will only check permission changes on that particular database.

LOGbinder for SQL Server events generated under this Audit Action Group:

Event ID Description
24179 Grant database permissions succeeded
24180 Grant database permissions failed
24181 Grant database permissions with grant succeeded
24182 Grant database permissions with grant failed
24183 Deny database permissions succeeded
24184 Deny database permissions failed
24185 Deny database permissions with cascade succeeded
24186 Deny database permissions with cascade failed
24187 Revoke database permissions succeeded
24188 Revoke database permissions failed
24189 Revoke database permissions with grant succeeded
24190 Revoke database permissions with grant failed
24191 Revoke database permissions with cascade succeeded
24192 Revoke database permissions with cascade failed

 

Upcoming Webinars
    Additional Resources