You administer a Microsoft SQL Server 2012 database named Contoso on a server named Server01.
You need to prevent users from disabling server audits in Server01.
What should you create?

A.
A Database Audit Specification

B.
A Policy

C.
An Alert

D.
A SQL Profiler Trace

E.
A Resource Pool

F.
An Extended Event session

G.
A Server Audit Specification

Explanation:
Writing to the Windows Security log requires the SQL Server service account to be added to the Generate
security audits policy. By default, the Local System, Local Service, and Network Service are part of this policy.
This setting can be configured by using the security policy snap-in (secpol.msc). Additionally, the Audit object
access security policy must be enabled for both Success and Failure.
https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-auditdatabase-engine