Hi Andy,
Access User Level Security is completely separate from Windows Security.
What you could do is something whereby you can query ActiveDirectory and
load the found users into your Access Security Groups, example (not
detailed) ----
IMPORTANT: no way to get the same password in Access User Level Security to
match what's in Windows Domain security. You could create dialog form in
Access database to prompt your users to change their passwords so that they
would match what's in Windows but no way to check (or now way I can think
of)
1- Use code similar to following (source:
http://support.microsoft.com/default.aspx?scid=KB;EN-US;319716)
Option Explicit
Dim sDomain
Dim oDomain
Dim sFilter
Dim oADobject
Dim MyConnection
Dim MyCommand
sDomain = "some_domain"
sFilter = "User"
'Connect to domain
Set oDomain = GetObject("WinNT://" & sDomain)
oDomain.Filter = Array( sFilter )
Set MyConnection = CreateObject("ADODB.Connection")
'SQL Connection String
MyConnection.Open "Driver={SQL
Server};server=(local);database=Employees;uid=some_username;pwd=some_passwor
d;"
Set MyCommand = CreateObject("ADODB.Command")
Set MyCommand.ActiveConnection = MyConnection
MyCommand.CommandText = "INSERT INTO [Employee] ([Username], [FullName],
[Description]) VALUES(?,?,?)"
MyCommand.CommandType = 1
For Each oADobject In oDomain
MyCommand.Parameters(0).Value = oADobject.Name
MyCommand.Parameters(1).Value = oADobject.FullName
MyCommand.Parameters(2).Value = oADobject.Description
MyCommand.Execute
Next
MyConnection.Close()
2- Modify the above code whereby instead of appending to a table (in the
above code it's appending to a SQL Server table) append the users to the
Security Groups already created as per the sample code in:
http://support.microsoft.com/default.aspx?scid=KB;EN-US;210418
I hope this helps! If you have additional questions on this topic, please
respond back to this posting.
Regards,
Eric Butts
Microsoft Access Support
(e-mail address removed)
"Microsoft Security Announcement: Have you installed the patch for
Microsoft Security Bulletin MS03-026? If not Microsoft strongly advises
you to review the information at the following link regarding Microsoft
Security Bulletin MS03-026
<
http://www.microsoft.com/security/security_bulletins/ms03-026.asp> and/or
to visit Windows Update at <
http://windowsupdate.microsoft.com/> to install
the patch. Running the SCAN program from the Windows Update site will help
to insure you are current with all security patches, not just MS03-026."
This posting is provided "AS IS" with no warranties, and confers no rights
--------------------
| Content-Class: urn:content-classes:message
| From: "Andy Superior" <
[email protected]>
| Sender: "Andy Superior" <
[email protected]>
| Subject: Access Security using Windows usernames
| Date: Wed, 30 Jun 2004 13:20:50 -0700
| Lines: 13
| Message-ID: <
[email protected]>
| MIME-Version: 1.0
| Content-Type: text/plain;
| charset="iso-8859-1"
| Content-Transfer-Encoding: 7bit
| X-Newsreader: Microsoft CDO for Windows 2000
| thread-index: AcRe37x3dXNAZGEISFOl0AutILyHJA==
| X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4910.0300
| Newsgroups: microsoft.public.access.security
| Path: cpmsftngxa06.phx.gbl
| Xref: cpmsftngxa06.phx.gbl microsoft.public.access.security:11874
| NNTP-Posting-Host: tk2msftngxa14.phx.gbl 10.40.1.166
| X-Tomcat-NG: microsoft.public.access.security
|
| I'm currently working on gathering requirements for an
| Access 2000 database. I was wondering if it was possible
| to create a secure database with a list of users taken
| from the Windows domain instead of manually creating each
| one.
|
| If that is possible, can the database be programmed to
| allow access to the database by setting the CurrentUser to
| the Windows logon?
|
| Thanks in advance.
|
| - AS
|
