Solved

SQL Server Auditing and Maintaing Logs

Posted on 2014-04-02
5
875 Views
Last Modified: 2014-04-07
Hi,

We are currently in process of building a large ERP solution and one of the requirement is to generate a report (We are using SSRS report Server) of who did what. Management wants a capability to be able to generate a report that could tell them x person created n records in Entity1, m records in Entity2 and so on.

So the most logical solution was to add a Log table for each entity and build a trigger for every Insert Update and Delete.

However, the same information can be extracted from the Transaction Logs as well. Atleast that is an idea I am working with. Can someone point me in the right direction here, as I have been entrusted to explore the possible solutions (Tools that can do that). The idea I am working on is that we should not be required to re-invent the wheel and there should be SQL Server tools that should be able to do that and much more.

Any help in this matter will be much appreciated and I understand, this is a subjective question but I will try my best to do the justice with most suitable response(s).

Thanks in Advance.
Amit
0
Comment
Question by:AmitJain001
  • 2
  • 2
5 Comments
 

Author Comment

by:AmitJain001
ID: 39974231
And I forgot to mention, points will also be awarded to the expert(s) for bringing out valid pros and cons of this approach, or advises a better approach.

Thanks,
Amit
0
 
LVL 28

Accepted Solution

by:
Ryan McCauley earned 500 total points
ID: 39976014
It looks like you're using SQL 2008 - have you checked into Change Data Capture (CDC)?

http://technet.microsoft.com/en-us/library/bb522489(v=sql.105).aspx

It's built to monitor tables for changes and write the details of those changes to a logging table that can later be queried for a summary report. This would be the easiest way I can think of to track table-by-table changes.

You could create triggers like you're suggesting, and that might be easy if all you care about is "this user inserted X records into table 1, updated Y records in table 2, and deleted Z records from table 3", but it will be difficult to track all the column-level changes via triggers (and what happens if you add new columns later). CDC would allow you to capture as much (or as little) detail as you want, and I think it would meet your needs.
0
 
LVL 75

Expert Comment

by:Anthony Perkins
ID: 39978206
I agree about CDC.  A big problem with using a TRIGGER is that more than likely the user is not available to the TRIGGER.

One caveat with CDC is that it is Enterprise Edition only.
0
 
LVL 28

Expert Comment

by:Ryan McCauley
ID: 39979290
Good call - I didn't realize it was an Enterprise-only feature.

As Anthony mentions, whatever user is making the DML change will also need rights to the place the trigger is writing the data tracking entries. Maybe not a big deal, but something to consider.
0
 

Author Comment

by:AmitJain001
ID: 39982407
Thank You Guys. I was initially inclined towards using a Third Party Tool such as ApexSQL LOG or PowerBroker Database for extracting information from Transaction Log but it seems SQL Server 2008 R2 has simplified extracting information from Log files using CDC.

Will definitely explore more in this regard. Thanks Ryan, yours is the most valuable feedback and certainly gives me something to dive into.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Occasionally there is a need to clean table columns, especially if you have inherited legacy data. There are obviously many ways to accomplish that, including elaborate UPDATE queries with anywhere from one to numerous REPLACE functions (even within…
In this article I will describe the Backup & Restore method as one possible migration process and I will add the extra tasks needed for an upgrade when and where is applied so it will cover all.
Viewers will learn how to use the INSERT statement to insert data into their tables. It will also introduce the NULL statement, to show them what happens when no value is giving for any given column.
Viewers will learn how to use the SELECT statement in SQL to return specific rows and columns, with various degrees of sorting and limits in place.

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now