using active directory

  • Thread starter Thread starter John
  • Start date Start date
J

John

There is talk beginning of assigning purchase authority levels. The
talk is looking at creating groups in active directory as a person may
be part of several groups which would then give them several different
purchase authorities. My question is can A2007 access the Active
Directory groups that have the authority levels when working with a
form? If so, how? Active Directory is a whole new territory for
me.
Thanks...John
 
m:
There is talk beginning of assigning purchase authority levels.
The talk is looking at creating groups in active directory as a
person may be part of several groups which would then give them
several different purchase authorities.

Active Directory is an interface to the NTFS security groups, with
some additional features. If they are using NTFS security groups,
you can use the standard APIs for getting group membership. If, on
the other hand, they are using the AD-only Organizational Units,
you'll have to interface with AD.
My question is can A2007 access the Active
Directory groups that have the authority levels when working with
a form? If so, how? Active Directory is a whole new territory
for me.

Tony Toews has posted about this in the past, and I have these two
links in my bookmarks:

http://tinyurl.com/29fa2oc =>
http://www.accesssecurityblog.com/post/Securing-Access-databases-usin
g-Active-Directory.aspx

http://my.advisor.com/doc/08691

But both of those are just about NTFS group membership, not about
OU's, so they don't get you anything that the Windows API code
already got you.

I am somewhat baffled by the seeming lack of understanding of so
many Access developers of the fact that AD is not some new kind of
security, but just an interface for managing a domain (users,
computers, etc.), and most of what it exposes is just the standard
NTFS security infrastructure.
 
Back
Top