SQL Server Audit Log Event ID 24221

SourceSQL Server (LOGbinder SQL)
Action GroupDATABASE_OBJECT_PERMISSION_CHANGE_GROUP
Windows Security Log
Category
 • Subcategory
Object Access
 • Application Generated
Type Success

24221: Issued grant application role permissions command (action_id G class_type AR)

This is an event from SQL Server audit event from LOGbinder SQL generated by Action Group  DATABASE_OBJECT_PERMISSION_CHANGE_GROUP.

On this page

A command to grant permissions to an application role was issued

Free Security Log Resources by Randy

Description Fields in 24221

FieldDescription
OccurredWhen event was reported by SQL Server
Authorization resultIf the command passed authorization checks
Session IDID of the session on which the event occurred
User
Server
DatabaseDatabase affected by the event
Target object
 IDTarget object ID
 NameTarget object name
 Permission bitmaskTarget object permission bitmask
StatementTransact-SQL statement

Supercharger Free Edition


Supercharger's built-in Xpath filters leave the noise behind.

Free.

 

Where Does This Event Come From?

This Event Is Produced By

Which Integrates with Your SIEM

Examples of 24221

Issued grant application role permissions command
A command to grant permissions to an application role was issued
Action Group: DATABASE_OBJECT_PERMISSION_CHANGE_GROUP
Occurred: 8/22/2013 6:07:52.0000000 PM
Authorization result: Access allowed
Session ID: 67
User: LB\Administrator
Server: DEV3
Database: TestDatabase
Target Object
  ID: 9
  Name: TestAppRole
  Permission bitmask: System.Byte[]
Statement: GRANT ALTER ON APPLICATION ROLE::[TestAppRole] TO [TestUser2]

For more information, see http://www.ultimatewindowssecurity.com/securitylog/encyclopedia/event.aspx?eventid=24221

Top 10 Windows Security Events to Monitor

Free Tool for Windows Event Collection

 

Upcoming Webinars
    Additional Resources

      Go To Event ID:

      Security Log
      Quick Reference
      Chart
      Download now!