For SQL Server Auditing

Before you start creating a monitoring plan to audit your SQL Server, plan for the account that will be used for data collection – it should meet the requirements listed below. Then you will provide this account in the monitoring plan wizard.

Starting with version 9.96, you can use group Managed Service Accounts (gMSA) as data collecting accounts.

On the target SQL Server:

  1. To access SQL Server, Windows authentication will be used, so data collection account should be a Windows account specified in the domain\user format (domain\user$ for Managed Service Account).
    SQL Server logins and authentication method are not supported.

  2. The account must be assigned the System Administrator server role for this SQL Server. See Assigning 'System Administrator' Role for more information.
  3. If you plan to collect state-in-time data from SQL Server, in addition to requirements above the account will also need:
    • Local Administrator rights on the target SQL Server.

    • If SQL Server is included in the Active Directory domain, the account should also be included in that domain.