Configuring sensitive columns auditing in ApexSQL Audit

Applies to

ApexSQL Audit 2020.03 and higher

Summary

This article describes how to configure sensitive data classification and auditing in ApexSQL Audit

Description

In this article we are going to demonstrate how to easily configure auditing for sensitive data access, configure and apply data classification rules, and how to utilize on custom or built-in search criteria for sensitive data in MS SQL databases.

Discovery of sensitive information in a database, and how the data search is being performed come before the auditing implementation. The next chapter explains how to identify the sensitive data within the database via pre-define and custom rules.

Knowing where the sensitive information is stored in your organization is first step in creating sound security strategy. Sensitive data discovery within ApexSQL Audit brings 50+ pre-defined rules divided in several categories

Pre-defined sensitive data classification filters

The search criteria can be expanded via specifying the custom set of rules that will be used as a base to determine sensitive information in a database. To create and apply custom rules set it takes several steps:

  1. Go to Configure tab in the ApexSQL Audit main application ribbon
  2. Highlight the audited database and head to Sensitive columns configuration set

  3. Choose the Criteria button to open data classification management window and click New

    How to create new sensitive data classification filter

  4. In the Add filter dialog, custom filters are specified via:

    Creating sensitive data classification filter

    1. Filter name
    2. Description
    3. Filtering by the column name
    4. Filtering by the field length
    5. Filtering by data via Regex expression

    To learn more about sensitive classification filter management and options, visit this Sensitive data classification article

  5. Once the rule is created, it is shown in the custom filters list and can be enabled by tickling the checkbox in the grid

    Sensitive data classification filters

After the rules are created, and list of rules is finite for the sensitive columns search, the auditing configuration can be done quickly. Sensitive data access auditing starts with the sensitive columns discovery by clicking the Search button.

Sensitive columns search

Once the search is initiated, the grid is automatically populated with the columns that match the search criteria and are flagged for auditing with additional graphical indicator with the red circle in the bottom-right corner of the column icon Sensitive columns identifier icon.

The sensitive column list can be customized to either include or exclude any input from it by tickling the check-boxes in the grid. The configuration is complete by choosing the Apply button in the configuration change ribbon

ApexSQL Audit configuration change ribbon

All configuration details including sensitive columns list can be quickly reviewed in the Summary pane

ApexSQL Audit configuration summary

With that, the configuration for sensitive data access is complete, to learn more about how to extract reports and configure alerts for sensitive data auditing, please visit this Creating sensitive data reports and alerts article.

 

Related posts:

  1. Automating SQL auditing for new SQL Server instances
  2. Text auto-replacements
  3. SQL Server instance health check – creating rules from templates
  4. Advanced SQL auditing filters
  5. How to configure and use SQL Server Wait statistic monitoring