I have a service account which is used to launch SQL Server and SQL Server Agent on several different machines. Recently we have begun to suspect that someone might be logging into a server with this account. While we can lock down that account to not be able to login to an actual console, we would like to be able to tell if the account has been used in this way. Is there a reporting tool that differentiates between actual logins and times when the service account is launching SQL Server or the agent service?
Login or Sign Up
- Log in with