Security audit - where account used

is there a way automate auditing where specific security principals -- sa or a domain service account -- are being used in sql instances accross multiple servers?  example, mydomain\myserviceacct have access databases, linked servers, jobs, operators, etc.?  thanks.

i think might asking multiple questions.

• does account abc have access xyz?
• has account abc been used access xyz? 

to answer when account has ability access can check permission tables , sql server role memberships. have posted queries on sql server wiki can started. see effective database engine permissions http://social.technet.microsoft.com/wiki/contents/articles/15180.effective-database-engine-permissions.aspx can complicated when windows user member of windows group , group has sql server login, member of sql server role, , role has permissions, etc.

as has used permissions, sql server audit designed that. full fine-grained auditing requires enterprise edition of sql server. see https://msdn.microsoft.com/en-us/library/cc280386.aspx

---

rick byham, microsoft, sql server books online, implies no warranty

SQL Server  >  SQL Server Security