Adaptive Server includes a comprehensive audit system. The audit system consists of a system database called sybsecurity, configuration parameters for managing auditing, a system procedure, sp_audit, to set all auditing options, and a system procedure, sp_addauditrecord, to add user-defined records to the audit trail. When you install auditing, you can specify the number of audit tables that Adaptive Server will use for the audit trail. If you use two or more tables to store the audit trail, you can set up a smoothly running audit system with no manual intervention and no loss of records.
A System Security Officer manages the audit system and is the only user who can start and stop auditing, set up auditing options, and process the audit data. As a System Security Officer, you can establish auditing for events such as:
Server-wide, security-relevant events
Creating, deleting, and modifying database objects
All actions by a particular user or all actions by users with a particular role active
Granting or revoking database access
Importing or exporting data
Logins and logouts
Auditing functionality is discussed in Chapter 11, “Auditing.”
