Correct Answer:
Explanation/Reference:
Note:
* An audit must exist before creating a server audit specification for it. When a server audit specification is created, it is in a disabled state.
* The general process for creating and using an audit is as follows.
1. Create an audit and define the target.
2. Create either a server audit specification or database audit specification that maps to the audit. Enable the audit specification.
3. Enable the audit.
4. Read the audit events by using the Windows Event Viewer, Log File Viewer, or the fn_get_audit_file function.
* Example (step 2) (we should audit SELECT on the Salary table): USE AdventureWorks2012 ;
GO
— Create the database audit specification.
CREATE DATABASE AUDIT SPECIFICATION Audit_Pay_Tables
FOR SERVER AUDIT Payrole_Security_Audit ADD (SELECT, INSERT
ON HumanResources.EmployeePayHistory BY dbo ) WITH (STATE = ON);
GO