user level security

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

I've never secured a database so don't know what I'm doing. I've read up on
the wizard, but don't see what I want.

Is there a way, and if so, please outline in basic steps, to allow two users
access to one table and a different two users access to a different table. I
don't want them to see the data in the table that they don't have permissions
to.

Once security is set on the table, do I need to find all the queries related
to that table and set them the same way?
 
Cbold said:
I've never secured a database so don't know what I'm doing. I've read up
on
the wizard, but don't see what I want.

Is there a way, and if so, please outline in basic steps, to allow two
users
access to one table and a different two users access to a different table.
I
don't want them to see the data in the table that they don't have
permissions
to.

Once security is set on the table, do I need to find all the queries
related
to that table and set them the same way?
Click to expand...

The "classic" method of data manipulation is via forms. You should not
allow your users access to the tables. In fact, if you value your hard work
then you should not allow users access to anything at all except forms and
reports and set the permissions on those objects accordingly.

Nowthen, user-level security is a complex topic with a steep learning curve
so the first thing you'll need to do is a LOT of reading. First port of
call should be the FAQ - there's a link to it on my web site. There's also
a wealth of information on Jeff Conrad's web site
http://home.bendbroadband.com/conradsystems/accessjunkie.html including how
to disable the "bypass" key (holding the shift key when opening Access
bypasses any start-up options you have set). Joan Wild's site is also
chocca with good stuff http://www.jmwild.com/Accesssecurity.htm

HTH - Keith.
www.keithwilby.com
 
As Keith said, you need to study up on security; the best way to learn is to
practice on a copy of your database.

Specific to your question, I would deny all permissions on the tables, and
use RWOP queries for all data interaction. Users would need permission on
these queries (as a minimum read data in order to view the data in the
underlying tables). Any forms/reports based on these queries will require
Open/Run permission on the form/report.
 
The best thing to do is to grant permissions on groups, not users. Then you
only need to create users and put them in the appropriate groups. It's much
easier to manage security by groups.

There is no need to restart Access with each change.
 
Back
Top