What's new in ApexSQL Audit 2021.xx (4289589)

Enhancements:

• Reconstruct raw audit data using web API calls
• Repository maintenance schedule to optimize performances while viewing and managing audit data
• Report preview and export performance increased up to 900%
• Interactive search option for the report filters

Fixes:

• 188361: Sensitive columns are not audited when a SELECT statement does not include a schema name reference
• 209651: Active traces pile up on the file system when queries with 5k+ characters in length are being processed in parallel by the auditing agent
• 208782: Saving audit configuration is not successful when the logins filter contains SQL Server login accounts
• 208572: Saving audit configuration is not successful when using advanced filters and the login filter is defined to contain custom string
• 209440: Trace files being accumulated due to internal thread-race error in specific case
• 208170: Improved application logging to include more granular information for auditing agent startup events
• 197755: SQL Server event is not captured when the login account creating the event is member of a nested Active Directory group
• 201647: SQL Server event is not captured when the login account creating the event is newly added to an audited Active Directory group
• 201648: Extended event session configuration changes audited logins list to an Active Directory group name when the central Server Side Components service is restarted
• 202867: "The specified database size limit is greater than the size of data source" message is shown in the database split summary when the process exceeds 30 seconds timeout
• 203615: Auditing agent does not automatically establish connection with auditing SQL Server instance when logon server is unavailable at machine start-up
• 203616: Timeout value in agent auditing properties dialog is not applied as a running timeout when the agent is reading audit data from session files
• 200269: Auditing filter configuration is not applied when total character size of filter conditions exceeds 3000 characters
• 200270: Auditing data is not collected when the text data filter condition is used with advanced filters via extended events
• 198238: "Destination array was not long enough. Check destIndex and length, and the array's lower bounds." error is encountered with parser and trace files cannot be processed when a specific query with brackets and aliases runs on a SQL Server
• 196929: Trace files are moved to quarantine when more than 10.000 unique audited queries are executed in a batch
• 194590: Missing parent checkbox to select all instances in the Apply to many dialogue for SQL server audit configuration
• 203622: Automatic auditing template in the Options window can be changed by a user with the reader role when the filter item label is clicked
• 213886: Application is forcibly closed when an imported custom data alert containing email recipients is selected with the mouse click
• 214026: Alert history shows no alert notifications when time-range filter is used
• 214025: Data collecting agent does not release occupied RAM memory when processing highly transactional SQL Server instances
• 206164: Auditing reports show Success status for executed queries that failed on SQL Server when Extended Events data collection method is used
• 209052: Report filters and output show duplicated server name when SQL Instance is configured via FQDN and is audited using Extended Event technology
• 208154: Login filters are not applied on auditing configuration when gMSA is used for central process
• 105045: Missing column statistics events do not contain text data details when shown in generated reports
• 210403: "invalid token for impersonation - it cannot be duplicated" error is encountered in the Central instance configuration installation process when the application losses and re-establishes connection to central host during the process
• 210536: Central instance initialization process lasts extensively long after archiving when alerts history contains more than 50K records
• 210128: Using shift+click action does not select multiple items
• 155936: Send logs does not collect the re-rolled (archive) log files from the file system
• 214369: Automatic databases auditing configuration is not applied against SQL Server instances configured to include\exclude specific logins
• 161967: Access list items are placed in separate cells when a report is exported into CSV format
• 163664: Alert rule configuration does not have “state” condition available in the alert configuration wizard
• 164289: The ENABLE TRIGGER statement is shown as the Alter trigger operation in generated reports
• 164290: The DISABLE TRIGGER statement is shown as the Alter trigger operation in generated reports
• 165141: Selected tables will be deselected in the Before-after configuration tab when the search is used in the table list
• 165173: Duplicate alert will be created when importing system alert rules from exported xml
• 167875: “Accessing from local not possible” message is shown without enough information when Browse for folder is initiated for the remote agent configuration
• 179533: Missing information for failed archiving when an existing archive used as data source cannot be opened
• 182294: Text data does not show object name for the SELECT statement in the export document when the object is placed within brackets ("[]")
• 190967: The “Row type” field is randomly formatted in exported file for Before-After events
• 191557: Scheduled report fails to complete when archiving is started at the same time
• 191885: Application stops responding when group checkbox is used for the column listing in the sensitive column view
• 191897: "Username and password are incorrect or provided user permissions are insufficient" message is shown when gMSA account for remote auditing agent is updated
• 192379: The Additional drop-down menu in the Configure tab remains active when the Advanced filters are selected and popup message is shown
• 192389: The SELECT INTO statement is captured as Alter schema operation when run on SQL 2012
• 194326: The “State” filter item is not shown in generated report header when used
• 214505: Internal event log showing that a session file is sent to quarantine do not include the time details
• 214878: Missing information in application logs about text data parsing errors
• 198777: The CREATE SEQUENCE statement is not being audited when the Trace technology is used
• 199042: Extended Event sessions are not created when audited database contains brackets in the name ("[]")
• 200149: Sensitive column access event is not audited when sensitive columns are queried using column concatenation
• 202224: Database files for central repository database are not moved to new location when the option to archive old database is used in the central instance configuration dialogue
• 202562: Object names are duplicated in the reporting filters when object reference in query text data uses different letter capitalization
• 204005: SOX compliance standard does not include Backup/Restore Server-level operations
• 204908: Unused allocated space is not released when archiving process is finished
• 205330: Database auditing filters are not correctly applied when configuring the auditing policy for database objects and the objects are grouped by schema and type
• 214368: The refresh status instead of stopped status icon is displayed in the server tree for SQL Servers when GUI is restarted after stopping the auditing for that instance
• 161718: The “Trial period expired” message is not removed when the product is activated
• 164632: “The internal error -2” message is shown when the drive root path is chosen to create a temporary files location on
• 178153: The CREATE TABLE statement is captured and shown in reports twice when Extended Events technology is used and the table name string contains a T-SQL reserved word
• 192382: The report exported in XLSX format exceeds page size width when opened with Excel
• 192385: The Before-After filter conditions are duplicated in advanced filters when the view is switched to another tab and switched back to the Before-After tab
• 192390: The CREATE TABLE statement is captured as Alter schema operation when run on SQL 2012
• 201368: The text data with single line size is not visible in records shown when the report preview is generated
• 203936: Send log process cannot be completed when the message that an audited server is unreachable pops up
• 207709: The hostname from which a user changed Auditing filters is missing in the configuration change even when the internal report is generated
• 213238: Missing indicator for the parent check box that some child items are selected in the “Apply to many” databases dialogue when the pre-checked database exists in the child item list

Changes:

• The default value for SQL text data length is set to 512 characters

Download latest patch here