Table sem5.dbo.SERVER_ADMIN_LOG_2
Keeps administrator activities that occur in server

Generated by
SchemaSpy
Legend:
Primary key columns
Columns with indexes
Implied relationships
Excluded column relationships
< n > number of related tables
 
Column Type Size Nulls Auto Default Children Parents Comments
USN bigint 8 A USN-based serial number; this ID is not unique.
DOMAIN_ID char 32  √  null GUID of the domain to which the log belongs
SITE_ID char 32 GUID of the site to which the log belongs
SERVER_ID char 32 GUID of the server to which the log belongs
TIME_STAMP bigint 8 The time when the event is logged into system (GMT), which is server side time
SEVERITY int 4 Enum (SEVERE, WARNING, INFO, CONFIG, FINE, FINER, FINEST)
ADMIN_NAME nvarchar 500 Administrator name
EVENT_ID int 4 A unique ID of the admin event:
0x1001 = Login succeeded
0x1002 = Login failed
0x1003 = Logout
0x1004 = Account locked
0x1005 = Account unlocked
0x1006 = Account disabled
0x1007 = Account enabled
0x1008 = Administrator created
0x1009 = Administrator deleted
0x100A = Administrator renamed
0x100B = Password changed
0x100C = Administrator properties are changed
0x100D = Domain is created
0x100E = Domain is deleted
0x100F = Domain properties are changed
0x1020 = Domain is disabled
0x1021 = Domain is enabled
0x1022 = Domain is renamed
0x2001 = Group is created
0x2002 = Group is deleted
0x2003 = Group is renamed
0x2004 = Group is moved
0x2005 = Group properties are changed
0x2006 = User is created
0x2007 = User is deleted
0x2008 = User is moved
0x2009 = User is copied
0x200A = User policy mode is switched
0x200B = User properties are changed
0x200C = Computer is created
0x200D = Computer is deleted
0x200E = Computer is moved
0x200F = Computer is copied
0x2010 = Computer policy mode is switched
0x2011 = Computer properties are changed
0x2012 = Organizational Unit is imported
0x2013 = Domain user is imported
0x2014 = LDAP user is imported
0x3001 = Package is created
0x3002 = Package is deleted
0x3003 = Package is exported
0x3004 = Package is moved to recycle bin
0x3005 = Package is now current
0x3006 = Package is added to other domain
0x3007 = Package properties are changed
0x3008 = Package deployment created
0x3009 = Package deployment deleted
0x300A = Package deployment properties changed
0x300B = Package updated
0x4001 = Replication partner is registered
0x4002 = Replication partner is deleted
0x4003 = Remote site is deleted
0x4004 = Site properties are changed
0x4005 = Server properties are changed
0x4006 = Database properties are changed
0x4007 = Partner properties are change
0x4008 = Site license is changed
0x4009 = Enforcer license changed
# looks like it is not used
0x400A = Replicate now
# looks like it is not used
0x400B = Back up now
# looks like it is not used
0x400C = External logging properties are changed
# looks like it is not used
0x400D = Site backup settings changed
# looks like it is not used
0x400E = Server deleted
# looks like it is not used
0x400F = Server certificate changed
0x4010 = Replicate now
0x4011 = Back up now
0x4012 = External logging properties are changed
0x4013 = Site backup settings changed
0x4014 = Server deleted
0x4015 = Server certificate changed
0x4016 = Enforcer group properties changed
EVENT_DESC nvarchar 512  √  null Description of the event. Usually, the first line of the description is treated as the summary.
MSG_ID int 4  √  null Event description ID, use this ID to load the localized message (Only used when an exception is related to this event). ** See worksheet ERROR_CODE and MSG_ID values. **
ERROR_CODE int 4  √  null ErrorCode can unique identify the error in source code (Only used when an exception is related to this event). ** See worksheet ERROR_CODE and MSG_ID values. **
STACK_TRACE nvarchar 4000  √  null Stacktrace of exception (Only used when an exception is related to this event)
RESERVED_INT1 int 4  √  null
RESERVED_INT2 int 4  √  null
RESERVED_BIGINT1 bigint 8  √  null
RESERVED_BIGINT2 bigint 8  √  null
RESERVED_CHAR1 char 32  √  null
RESERVED_CHAR2 char 32  √  null
RESERVED_VARCHAR1 nvarchar 520  √  null
RESERVED_BINARY varbinary 2000  √  null
CLIENT_ID char 32  √  null GUID of the client to which the log belongs

Analyzed at Mon Oct 29 12:07 PDT 2012

Indexes:
Column(s) Type Sort Constraint Name
USN Performance Asc I_SERVER_ADMIN_LOG_2
CLIENT_ID Performance Asc I_SERVER_ADMIN_LOG_2_CLIENT_ID
EVENT_ID Performance Asc I_SERVER_ADMIN_LOG_2_ID
SEVERITY Performance Asc I_SERVER_ADMIN_LOG_2_SEV
TIME_STAMP Performance Asc I_SERVER_ADMIN_LOG_2_TIME