19

I can get executed queries by using:

SELECT deqs.last_execution_time AS [Time]
    ,dest.TEXT AS [Query]
FROM sys.dm_exec_query_stats AS deqs
CROSS APPLY sys.dm_exec_sql_text(deqs.sql_handle) AS dest
ORDER BY deqs.last_execution_time DESC

but I am also looking for username column, who executed these queries.

Improve this question
0

2 Answers 2

Reset to default
33

I would suggest you to create a server side trace or enable SQL Audit to track down activity from users that you don't trust.

Remember that DMV data gets reset if the DMV is cleared out, SQL Server is restarted, etc.

The closest you can get is using below query:

/******************************************************
Script : Findout Who did what ?
Author : Kin Shah .. written for dba.stackexchange.com
*******************************************************/
USE master
go
SELECT sdest.DatabaseName 
    ,sdes.session_id
    ,sdes.[host_name]
    ,sdes.[program_name]
    ,sdes.client_interface_name
    ,sdes.login_name
    ,sdes.login_time
    ,sdes.nt_domain
    ,sdes.nt_user_name
    ,sdec.client_net_address
    ,sdec.local_net_address
    ,sdest.ObjName
    ,sdest.Query
FROM sys.dm_exec_sessions AS sdes
INNER JOIN sys.dm_exec_connections AS sdec ON sdec.session_id = sdes.session_id
CROSS APPLY (
    SELECT db_name(dbid) AS DatabaseName
        ,object_id(objectid) AS ObjName
        ,ISNULL((
                SELECT TEXT AS [processing-instruction(definition)]
                FROM sys.dm_exec_sql_text(sdec.most_recent_sql_handle)
                FOR XML PATH('')
                    ,TYPE
                ), '') AS Query

    FROM sys.dm_exec_sql_text(sdec.most_recent_sql_handle)
    ) sdest
where sdes.session_id <> @@SPID 
--and sdes.nt_user_name = '' -- Put the username here !
ORDER BY sdec.session_id
Improve this answer
2
  • @kin +1 thanks for sharing this very useful script. it is somehow similiar to this one dba.stackexchange.com/questions/135140/… Commented Apr 14, 2016 at 9:49
  • 1
    @marcellomiorelli yeh .. the script can be used to address your question, but I would still go for a server side trace or SQLAduit. That way, you dont have to worry about data getting flushed out of DMVs. Commented Apr 14, 2016 at 15:05
0

Extended Kin's query to retrieve the latest / most recent history, therefore included the "Last_execution_time" from "dm_exec_query_stats" DMV:

SELECT top 100 sdest.DatabaseName 
    ,sdes.session_id
    ,qs.last_execution_time
    ,sdes.[host_name]
    ,sdes.[program_name]
    ,sdes.client_interface_name
    ,sdes.login_name
    ,sdes.login_time
    ,sdes.nt_domain
    ,sdes.nt_user_name
    ,sdec.client_net_address
    ,sdec.local_net_address
    ,sdest.ObjName
    ,sdest.Query
FROM sys.dm_exec_sessions AS sdes
    INNER JOIN sys.dm_exec_connections AS sdec ON sdec.session_id = sdes.session_id
    CROSS APPLY (SELECT db_name(dbid) AS DatabaseName
            ,object_id(objectid) AS ObjName
            ,ISNULL((
                    SELECT TEXT AS [processing-instruction(definition)]
                    FROM sys.dm_exec_sql_text(sdec.most_recent_sql_handle)
                    FOR XML PATH('')
                        ,TYPE
                    ), '') AS Query
        FROM sys.dm_exec_sql_text(sdec.most_recent_sql_handle)
        ) sdest
    CROSS APPLY sys.dm_exec_query_stats qs
where sdes.session_id <> @@SPID 
    and sdes.nt_user_name like '%Your_User_Name%'   --UserName
ORDER BY qs.last_execution_time DESC
Improve this answer

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.