open/run permissions of Users group

  • Thread starter Thread starter Lynn Atkinson
  • Start date Start date
L

Lynn Atkinson

Am I missing something fundimental here?

I am securing a database following the Access Security FAQ
document as recommended by all. Reading point 10 I am
confused. It says that you need to manually remove the
Open/Run permissions from Users group. However it is still
possible to open a database using the defailt information
file. The workaround is importing the security enhanced
objects to a blank database.
However, when I do this, the imported objects are
considered "new" and permissions are lost, including the
Open/run permissions from the Users group which were
removed previously. I am therefore back to square one
where I have to manually remove the permissions from the
users group, but this is not done properly, so import the
objects into a blank database etc etc etc.

What am I missing here?
 
I think it's poorly worded. Basically it's saying don't use the wizard in
2000, as it doesn't do it right.

You created a new workgroup using wrkgadm.exe, right?

Create a new mdb while logged into this workgroup as some user that is a
member of Admins group (but not the Admin user).

Import all objects from your database - yes the Users Group will have
permissions to everything.

You need to manually remove permissions to all objects for the Users Group.
Doing this manually will work properly. It's the wizard that doesn't do it
properly.
 
Back
Top