diff --git a/Custom roles/Cosmos DB List Keys.json b/Custom roles/Cosmos DB List Keys.json
new file mode 100644
index 0000000..2c89e2d
--- /dev/null
+++ b/Custom roles/Cosmos DB List Keys.json	
@@ -0,0 +1,22 @@
+{
+  "id": "/providers/Microsoft.Authorization/roleDefinitions/01032560-a033-4a7e-977d-c360b71b9217",
+  "properties": {
+      "roleName": "Cosmos DB List Keys",
+      "description": "Lets you list keys for Azure Cosmos DB accounts. Used for PIM cosmos roles.",
+      "assignableScopes": [
+          "/providers/Microsoft.Management/managementGroups/e9792fd7-4044-47e7-a40d-3fba46f1cd09"
+      ],
+      "permissions": [
+          {
+              "actions": [
+                  "Microsoft.DocumentDB/databaseAccounts/readonlyKeys/*",
+                  "Microsoft.DocumentDB/databaseAccounts/listKeys/*",
+                  "Microsoft.DocumentDB/databaseAccounts/listConnectionStrings/*"
+              ],
+              "notActions": [],
+              "dataActions": [],
+              "notDataActions": []
+          }
+      ]
+  }
+}
\ No newline at end of file
diff --git a/SQL/Auditing/AzureReporting2.sql b/SQL/Auditing/AzureReporting2.sql
new file mode 100644
index 0000000..b078688
--- /dev/null
+++ b/SQL/Auditing/AzureReporting2.sql
@@ -0,0 +1,134 @@
+use master
+go
+
+ALTER CREDENTIAL [https://sqlauditlogeffectory.blob.core.windows.net/azurereporting2]
+WITH IDENTITY='SHARED ACCESS SIGNATURE',
+SECRET = 'sp=racwdl&st=2024-04-09T13:43:40Z&se=2035-04-19T21:43:40Z&spr=https&sv=2022-11-02&sr=c&sig=zJqPI62bJP%2F94xtQPyDMFbyStgy0YXuGySqW6VSbMLo%3D'
+GO
+
+
+
+CREATE SERVER AUDIT [AZUREREPORTING2_SERVER_AUDIT] TO URL ( PATH ='https://sqlauditlogeffectory.blob.core.windows.net/azurereporting2' , RETENTION_DAYS = 365)
+GO
+
+ 
+-- Create server specification
+CREATE SERVER AUDIT SPECIFICATION [AZUREREPORTING2_SERVER_AUDIT_SPEC]
+FOR SERVER AUDIT [AZUREREPORTING2_SERVER_AUDIT]
+   ADD (FAILED_LOGIN_GROUP),
+   ADD (LOGOUT_GROUP),
+   ADD (SUCCESSFUL_LOGIN_GROUP)
+   WITH (STATE=ON);
+GO
+ 
+-- Set state on
+ALTER SERVER AUDIT [AZUREREPORTING2_SERVER_AUDIT] WITH (STATE = ON);
+GO
+
+USE [ReportServer]
+GO
+
+CREATE DATABASE AUDIT SPECIFICATION [ReportServer_audit]
+FOR SERVER AUDIT [AZUREREPORTING2_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [ReportServerTempDB]
+GO
+
+CREATE DATABASE AUDIT SPECIFICATION [ReportServerTempDB_audit]
+FOR SERVER AUDIT [AZUREREPORTING2_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [SSISDB]
+GO
+
+CREATE DATABASE AUDIT SPECIFICATION [SSISDB_audit]
+FOR SERVER AUDIT [AZUREREPORTING2_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
diff --git a/SQL/Auditing/sqlserver01prod.sql b/SQL/Auditing/sqlserver01prod.sql
new file mode 100644
index 0000000..431ca2e
--- /dev/null
+++ b/SQL/Auditing/sqlserver01prod.sql
@@ -0,0 +1,656 @@
+use master
+go
+
+ALTER CREDENTIAL [https://sqlauditlogeffectory.blob.core.windows.net/sqlserver01prod]
+WITH IDENTITY='SHARED ACCESS SIGNATURE',
+SECRET = 'zzzzzzzzz'
+GO
+
+CREATE SERVER AUDIT [SQLSERVER01_SERVER_AUDIT] TO URL ( PATH ='https://sqlauditlogeffectory.blob.core.windows.net/sqlserver01prod' , RETENTION_DAYS = 365)
+GO
+
+ 
+-- Create server specification
+CREATE SERVER AUDIT SPECIFICATION [SQLSERVER01_SERVER_AUDIT_SPEC]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+   ADD (FAILED_LOGIN_GROUP),
+   ADD (LOGOUT_GROUP),
+   ADD (SUCCESSFUL_LOGIN_GROUP)
+   WITH (STATE=ON);
+GO
+ 
+-- Set state on
+ALTER SERVER AUDIT [SQLSERVER01_SERVER_AUDIT] WITH (STATE = ON);
+GO
+
+USE [ChangeLog]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [ChangeLog_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [ChangeLog_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [Effectory CM]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_CM_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_CM_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [Effectory Communication]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Communication_audit]
+WITH (STATE = OFF)
+
+ALTER  DATABASE AUDIT SPECIFICATION [Effectory_Communication_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [Effectory Live]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Live_audit]
+WITH (STATE = OFF)
+
+ALTER  DATABASE AUDIT SPECIFICATION [Effectory_Live_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [Effectory Project]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Project_audit]
+WITH (STATE = OFF)
+
+ALTER  DATABASE AUDIT SPECIFICATION [Effectory_Project_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [Effectory Questionbase]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Questionbase_audit]
+WITH (STATE = OFF)
+
+ALTER  DATABASE AUDIT SPECIFICATION [Effectory_Questionbase_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP)
+WITH (STATE = ON)
+GO
+
+----------------------------
+
+
+
+
+USE [Effectory Response Center]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Response_Center_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Response_Center_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [Effectory Response MRT import]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Response_MRT_import_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Response_MRT_import_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [Effectory Response Queue]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Response_Queue_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Response_Queue_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [esm_wh]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [esm_wh_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [esm_wh_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [ktv_wh]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [ktv_wh_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [ktv_wh_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [MRT Reporting Data]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [MRT_Reporting_Data_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [MRT_Reporting_Data_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP)
+WITH (STATE = ON)
+GO
+
+
+USE [Personeelsadministratie]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Personeelsadministratie_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [Personeelsadministratie_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [PMSoftware]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [PMSoftware_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [PMSoftware_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [Teleform_V16_5]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Teleform_V16_5_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [Teleform_V16_5_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [Teleform109]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Teleform109_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [Teleform109_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+
diff --git a/SQL/Auditing/sqlserver01test.sql b/SQL/Auditing/sqlserver01test.sql
new file mode 100644
index 0000000..bccc1cf
--- /dev/null
+++ b/SQL/Auditing/sqlserver01test.sql
@@ -0,0 +1,656 @@
+use master
+go
+
+CREATE CREDENTIAL [https://sqlauditlogeffectory.blob.core.windows.net/sqlserver01test]
+WITH IDENTITY='SHARED ACCESS SIGNATURE',
+SECRET = 'xxxxxx'
+GO
+
+CREATE SERVER AUDIT [SQLSERVER01_SERVER_AUDIT] TO URL ( PATH ='https://sqlauditlogeffectory.blob.core.windows.net/sqlserver01test' , RETENTION_DAYS = 365)
+GO
+
+ 
+-- Create server specification
+CREATE SERVER AUDIT SPECIFICATION [SQLSERVER01_SERVER_AUDIT_SPEC]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+   ADD (FAILED_LOGIN_GROUP),
+   ADD (LOGOUT_GROUP),
+   ADD (SUCCESSFUL_LOGIN_GROUP)
+   WITH (STATE=ON);
+GO
+ 
+-- Set state on
+ALTER SERVER AUDIT [SQLSERVER01_SERVER_AUDIT] WITH (STATE = ON);
+GO
+
+USE [ChangeLog]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [ChangeLog_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [ChangeLog_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [Effectory CM]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_CM_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_CM_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [Effectory Communication]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Communication_audit]
+WITH (STATE = OFF)
+
+ALTER  DATABASE AUDIT SPECIFICATION [Effectory_Communication_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [Effectory Live]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Live_audit]
+WITH (STATE = OFF)
+
+ALTER  DATABASE AUDIT SPECIFICATION [Effectory_Live_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [Effectory Project]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Project_audit]
+WITH (STATE = OFF)
+
+ALTER  DATABASE AUDIT SPECIFICATION [Effectory_Project_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [Effectory Questionbase]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Questionbase_audit]
+WITH (STATE = OFF)
+
+ALTER  DATABASE AUDIT SPECIFICATION [Effectory_Questionbase_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP)
+WITH (STATE = ON)
+GO
+
+----------------------------
+
+
+
+
+USE [Effectory Response Center]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Response_Center_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Response_Center_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [Effectory Response MRT import]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Response_MRT_import_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Response_MRT_import_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [Effectory Response Queue]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Response_Queue_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [Effectory_Response_Queue_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [esm_wh]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [esm_wh_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [esm_wh_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [ktv_wh_REMOVEAFTER202310]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [ktv_wh_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [ktv_wh_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [mgtinfo_REMOVEAFTER202402]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [mgtinfo_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [mgtinfo_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [MRT Reporting Data]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [MRT_Reporting_Data_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [MRT_Reporting_Data_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP)
+WITH (STATE = ON)
+GO
+
+
+USE [Personeelsadministratie]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Personeelsadministratie_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [Personeelsadministratie_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [PMSoftware]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [PMSoftware_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [PMSoftware_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP)
+WITH (STATE = ON)
+GO
+
+USE [Teleform109]
+GO
+
+ALTER DATABASE AUDIT SPECIFICATION [Teleform109_audit]
+WITH (STATE = OFF)
+
+ALTER DATABASE AUDIT SPECIFICATION [Teleform109_audit]
+FOR SERVER AUDIT [SQLSERVER01_SERVER_AUDIT]
+ADD (DATABASE_OBJECT_ACCESS_GROUP),
+ADD (SCHEMA_OBJECT_ACCESS_GROUP),
+ADD (DATABASE_ROLE_MEMBER_CHANGE_GROUP),
+ADD (BATCH_COMPLETED_GROUP),
+ADD (BACKUP_RESTORE_GROUP),
+ADD (BATCH_STARTED_GROUP),
+ADD (DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP),
+ADD (USER_CHANGE_PASSWORD_GROUP),
+ADD (USER_DEFINED_AUDIT_GROUP),
+ADD (SCHEMA_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_OPERATION_GROUP),
+ADD (LEDGER_OPERATION_GROUP),
+ADD (APPLICATION_ROLE_CHANGE_PASSWORD_GROUP),
+ADD (SENSITIVE_BATCH_COMPLETED_GROUP),
+ADD (DATABASE_OWNERSHIP_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_IMPERSONATION_GROUP),
+ADD (DATABASE_CHANGE_GROUP),
+ADD (DATABASE_OBJECT_CHANGE_GROUP),
+ADD (DATABASE_PRINCIPAL_CHANGE_GROUP),
+ADD (AUDIT_CHANGE_GROUP),
+ADD (FAILED_DATABASE_AUTHENTICATION_GROUP),
+ADD (DATABASE_LOGOUT_GROUP),
+ADD (SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP),
+ADD (DBCC_GROUP),
+ADD (DATABASE_PERMISSION_CHANGE_GROUP)
+WITH (STATE = ON)
+GO
+
+