D
Dave R.
There seem to be a lot of posts about UAC, proper system administration
practices, programming practices, etc., but I haven't yet seen a good
answer to how best to implement a setup where an application
administrator is not the system administrator.
To use an example from another thread, the FamilyAddress program. Mom,
Dad, Billy and Tammy all use the application under their own Limited
User Windows logins. Mom and Dad are application administrators, but
only Dad is a system administrator (under a separate Windows
administrative login). All need to be able to add/edit/delete private
addresses, but Billy and Tammy shouldn't be able to see other users
private addresses. All need to be able to read common addresses. Mom
and Dad both need to be able to add/edit/delete common addresses (or
move a private address to the common area), and as application
administrators can access the private addresses of all users in the
system. To complicate matters, as application administrators, Mom and
Dad need to be able to set global application parameters.
Where, in Vista, can/should you place the data file or files for this
type of application? Where should the global application parameters be
stored?
Please, I'm not trying to troll, bash, flame, belittle anyone or
anything here. I really want to understand how this should properly be
done in Vista and I've not yet seen anything that looks to me like it
would work without modifying the underlying system security / access
restrictions.
Regards,
Dave
practices, programming practices, etc., but I haven't yet seen a good
answer to how best to implement a setup where an application
administrator is not the system administrator.
To use an example from another thread, the FamilyAddress program. Mom,
Dad, Billy and Tammy all use the application under their own Limited
User Windows logins. Mom and Dad are application administrators, but
only Dad is a system administrator (under a separate Windows
administrative login). All need to be able to add/edit/delete private
addresses, but Billy and Tammy shouldn't be able to see other users
private addresses. All need to be able to read common addresses. Mom
and Dad both need to be able to add/edit/delete common addresses (or
move a private address to the common area), and as application
administrators can access the private addresses of all users in the
system. To complicate matters, as application administrators, Mom and
Dad need to be able to set global application parameters.
Where, in Vista, can/should you place the data file or files for this
type of application? Where should the global application parameters be
stored?
Please, I'm not trying to troll, bash, flame, belittle anyone or
anything here. I really want to understand how this should properly be
done in Vista and I've not yet seen anything that looks to me like it
would work without modifying the underlying system security / access
restrictions.
Regards,
Dave