Securing BE content without a Workgroup

[Chantel33]

I currently have a split database and have deployed a FE(mde) on individual
team members computers, although they can not make changes to the design,
they can still make changes to others entries. How can i limit the data they
view to only their data and not other users. Each team member currently has
an Operation ID and I have field in the queries an tables.

 

[Arvin Meyer [MVP]]

The easiest way is User Level Security and a workgroup. Without that you
can't keep anyone from opening tables. There are other ways, but they only
mildly discourage users. Here's what you need to know:

Security FAQ
http://support.microsoft.com/download/support/mslfiles/SECFAQ.EXE

Lynn Trapp's summarization:
http://www.ltcomputerdesigns.com/The10Steps.htm

KB articles:
http://support.microsoft.com/default.aspx?scid=KB;en-us;q165009
http://download.microsoft.com/download/access97/faq1/1/win98/en-us/secfaq.exe
http://support.microsoft.com/default.aspx?kbid=325261

Joan Wild's articles:
http://www.jmwild.com/security02.htm
http://www.jmwild.com/security97.htm
http://www.jmwild.com/SecureNoLogin.htm
http://www.jmwild.com/Unsecure.htm

 

[Chantel33]

Arvin can you provide some of the other ways, my main concern is that each
user is only able to edit their own entry. I don't have access to the
msaccess.exe file, creating user level security and a workgroup would involve
getting our IT dept involved or how long this will take, so if you could
provide some of the milder ways i would appreciate it.

Thank you

 

[Arvin Meyer [MVP]]

Everyone running the database has access to msaccess.exe or you cannot open
a database. The only exception is on a Terminal Server. You don't need to
get IT involved.

That said, the following will not secure the tables, so if you users can see
them, it won't work. First hide the database window, so they cannot see the
tables or create queries. That can be by-passed, so you can use code to stop
that:

http://www.mvps.org/access/general/gen0040.htm

Now you need a function to identify the user:

http://www.mvps.org/access/api/api0008.htm

Add a column to each table, and the corresponding forms to identify each
user by the Network UserName, then use the function in each query:

SELECT tblMyData.*
FROM tblMyData
WHERE (((tblMyData.UserName)=fOSUserName()));
--
Arvin Meyer, MCP, MVP
http://www.datastrat.com
http://www.mvps.org/access
http://www.accessmvp.com

 

[Chantel33]

I am a begginer with access and have little knowledge of coding, therefore i
do not know where to began with the Allowbypass, however i understand the
section portion of it "identify user" and creating the query. The database
is split and the BE is in a secured network folder, if i use the second
portion:

Now you need a function to identify the user:

http://www.mvps.org/access/api/api0008.htm

Add a column to each table, and the corresponding forms to identify each
user by the Network UserName, then use the function in each query:

SELECT tblMyData.*
FROM tblMyData
WHERE (((tblMyData.UserName)=fOSUserName()));

will this limit the users to their data only! This is my main concern! I
have unchecked the navigation bar so it doesn't display, and removed most
access on the startup menu. and each FE database made to an MDE. I have a
filter on my form to show the opid info of the user, but that can easily be
removed, thus me needed an addition security.