Hi,
Environment:
SQL2008R2 ENT (Sp2,CU1) on Windows2008R2 ENT.
By default, SQL Profier Trace should replace SQL Application Role passwords with ****. One of our 3rd party application uses application Role. When I trace the activity against the application database, I noticed that following 2 variations in TexTData column related to application role invocation:
A) SQL: BatchStarting - --*sp_setapprole------------------------------
SQL:stmtStarting - -- 'sp_setapprole' was found in the text of this event.
-- The text has been replaced with this comment for security reasons.
B) SP:Starting - exec sp_setapprole '<RoleName>','<Password>' (Note: I have replaced actual role name and password with <RoleName> and <Password>.)
This seems to me an unusual and contradicts with what SQL BOL says. I created the trace using SQL 2012 and SQL 2008R2 Profiler and got the same results.
Anybody came across this issue? Can this be an application issue or SQL bug? or am I missing something here.
Thanks,
Vetaal