Mandatory auditing or C2 auditing enabling

I need to enable Mandatory auditing and I have no idea how.  I saw where I can set the audit level to all, but I could use some help with this.  I need to enable the C2 audit option and configure a great number of events.  I really need a procedure as I have no idea where or how to do this.  The events I need to add include Audit Add DB User Event
Audit Add Role Event
etc.  There is a list of 20-some events I need to add.
awakeningsAsked:
Who is Participating?
 
SQL_SERVER_DBAConnect With a Mentor Commented:
USE master
EXEC sp_configure 'show advanced option', '1'
RECONFIGURE
To enable the feature, set 'c2 audit mode' to 1 using the following command:
sp_configure 'c2 audit mode', 1
go
To disable the feature, set 'c2 audit mode' to 0 using the following command:
sp_configure 'c2 audit mode', 0
go
0
 
awakeningsAuthor Commented:
SQL Server DBA,

    That is helpful.  Thanks.  How so I ensure that the full list of 20-something features are configured at server startup?

Thanks!

Awakenings
0
 
SQL_SERVER_DBACommented:
Before you do this, you are aware that building traces like this are hard of performance. These files can grow to be extremely large.
0
Get expert help—faster!

Need expert help—fast? Use the Help Bell for personalized assistance getting answers to your important questions.

 
SQL_SERVER_DBACommented:
to get a full understanding it would be easier if you referenced...
http://www.microsoft.com/technet/archive/winntas/maintain/security/c2secgde.mspx?mfr=true
0
 
awakeningsAuthor Commented:
SQL Server DBA,

      I know very little about databases.  Reading 50 pages like that is confusing.  I know it may be hard on the system and I know we will have to rotate logs.  It is a requirement looking at the hardening standard I am working on.  Is there any way to over write events so the log doesn't fill up the computer?  For example, with OS logs one can choose to have the logs just write over one another once they reach a certain size.  So I ask again, how do I ensure that the 20-something events are run at startup?

Thanks,
0
 
awakeningsAuthor Commented:
Ah...  I am starting to understand now.  All of those options can by analyzed by defining a trace that is run on server startup.  I'm a database newbie so...  Thanks for your help!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.