nerdexam
Microsoft

70-473 · Question #69

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might h

The correct answer is A. Yes. Creating a Server Audit Specification allows for defining audit events that can apply across the entire SQL Server instance, including all databases, and works with a Server Audit to direct output to the application log.

Design and implement data security

Question

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result these questions will not appear in the review screen. You plan to configure auditing for a Microsoft SQL Server instance that contains 17 databases. You need to audit all of the SELECT statements that are executed against all of the databases. The solution must ensure that all gathered information is written to the application log. Solution: You create a Server Audit Specification in the master database. Does this meet the goal?

Options

  • AYes
  • BNo

How the community answered

(32 responses)
  • A
    94% (30)
  • B
    6% (2)

Why each option

Creating a Server Audit Specification allows for defining audit events that can apply across the entire SQL Server instance, including all databases, and works with a Server Audit to direct output to the application log.

AYesCorrect

A Server Audit Specification defines which events to audit at the server level and can be configured to capture SELECT statements across all databases on the instance by using appropriate server-level audit action groups like SCHEMA_OBJECT_ACCESS_GROUP. This specification must be linked to a Server Audit object, which defines the audit destination, such as the application log, thus fulfilling both requirements.

BNo

Concept tested: SQL Server Server Audit and Server Audit Specification for instance-wide events

Source: https://learn.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions

Topics

#SQL Server auditing#SELECT statement auditing#Database security#Compliance

Community Discussion

No community discussion yet for this question.

Full 70-473 Practice