At the time of writing, the current release of CA is 7.0.3 and the following SQL Server versions are supported:
SQL Server® Data Level auditing:
- Microsoft SQL Server 2012 SP4
- Microsoft SQL Server 2014 SP3
- Microsoft SQL Server 2016 SP2
- Microsoft SQL Server 2017
NOTE: Due to a hotfix Microsoft released for SQL Server, Change Auditor agents no longer capture SQL-related events unless the following action is taken on the SQL Server: Using SQL Server Configuration Manager, add the startup parameter “-T1906” on the Startup Parameters tab in the SQL Server Properties dialog. This will requires a SQL Service restart.
SQL Server® auditing
- Microsoft SQL Server 2012 SP4
- Microsoft SQL Server 2014 SP3
- Microsoft SQL Server 2016 SP2
- Microsoft SQL Server 2017
NOTE:
Auditing is supported on SQL clusters only when they are not using high availability technologies. In this configuration, the agent is not aware of the cluster and will only audit the active nodes in the cluster where agents are deployed.
Change Auditor SQL Data Level auditing currently only supports auditing databases in Full and Bulk logged recovery models. Minimally logged operations performed in bulk logged recovery model may not
produce auditing events. An initial backup is required for both Full and Bulk logged databases before the transaction log can properly support auditing.
Encrypted databases are not supported.
SQL Data Level auditing templates are assigned to an agent when you create the template. Each audited database requires one template assigned to a single agent.
The account specified in the auditing template that is used to access the SQL Server instance must have the following database permissions:
• Permission to open a connection to the targeted database.
• Read permissions on targeted tables and system tables.
• VIEW SERVER STATE permission.
• SYSADMIN server role.
• CONTROL SERVER permission.