This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(121.6, 61%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAP%3C/text%3E%3C/svg%3E)
Dear All,
As we know that Ministry of corporate affair's India mandate that every financial application and database should have maintain audit trail of transaction which should cover, Who, what and when parameters.
Please let me know me if any MSSQL versions supports that to track such DML transactions performed on tables. If MSSQL not supports this then let us know some other tolls and techniques to fulfil the audit trail requirement.
Regards,
Ajeet Pal
Your post is very unclear?
Of course you can e,g. DML trigger to track changes, see
Hi olaf, Thanks for your answer. I don't want to write triggers as triggers will slowdown the system and they will create problem while bulk insert or update. I am using mssql 2016 standard edition so want to know inbuilt functionality or some third party toll which can track SQL transaction before and after vAlues.
So I discussed some alternatives in my post. I like to add that any form of auditing is likely to add overhead of some sort.
As Olaf says, you can use DML triggers. One drawback is that triggers can be disabled by a rogue DBA who want to manipulate the database.
There is also SQL Server Audit, which has the advantage that it is more difficult to stop audit without leaving a trace. On the other hand, Audit only logs that an action was taken, for instance an INSERT, but it does not log the values. But you could use Audit to audit fiddling with triggers.
Yet an option are temporal tables, although they are more a variation of DML triggers.
You should probably study the fine-print of the Ministry's instructions. (I don't live in India myself, so I have no knowledge about what they mandate.)
Hi @Ajeet pal
SQL Server provides two features that track changes to data in a database: change data capture and change tracking. These features enable applications to determine the DML changes (insert, update, and delete operations) that were made to user tables in a database.
See this tech doc: Track data changes (SQL Server).
Best regards,
Cosmog Hong
If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Cosmog, Ajeet did not ask for tracking changes, she asked for auditing. That's not the same thing. Auditing means that you need who did the change. Change Tracking only tells you that a change has a occurred, but no details. CDC does give you the details - but still not who did it.