[AccessD] Permissions Refresher

DWUTKA at marlow.com DWUTKA at marlow.com
Wed Apr 7 17:12:43 CDT 2004


You can make an .mdb 'read only' through NT security.  It's not the prefered
method though.  The reason it's not prefered, is because you are actually
having Jet error out, by being denied access to the file by NT security,
instead of letting JET handle things with it's own security.  It's actually
very simple to setup Access User Level security, so that an 'admin' account
has full access, and all other users (Using the generic Admin account) have
read only access. Takes about 3 to 4 minutes to setup, and from then on, you
are letting JET handle the security.

Admittedly, NT security is a bit tighter then JET, but with the process
mentioned above, you can keep the 'secured' .mdw locally, out of reach of
the users, and thus the only way to 'hack' it, through JET, would be to use
DAO code, to goof the hash.  But NT security isn't all that secure either!
LOL

Drew

-----Original Message-----
From: accessd-bounces at databaseadvisors.com
[mailto:accessd-bounces at databaseadvisors.com]On Behalf Of Mitsules, Mark
S. (Newport News)
Sent: Wednesday, April 07, 2004 3:05 PM
To: 'Access Developers discussion and problem solving'
Subject: RE: [AccessD] Permissions Refresher


Really?  Because in this afternoon's testing I set up a test case where the
user was given only Read & Execute, List Folder Contents, and Read to the
folder containing the remote db.  That user was able to execute a select
query in datasheet view, but was not able to modify any of the entries.
That's as far as I was able to take the testing thus far.



Mark


-----Original Message-----
From: Jim Dettman [mailto:jimdettman at earthlink.net] 
Sent: Wednesday, April 07, 2004 3:56 PM
To: Access Developers discussion and problem solving
Subject: RE: [AccessD] Permissions Refresher


Mark,

  You can't do what you want through OS level security.  You need to use
Access level security.  All users, regardless of what they do once inside
the container need full rights where the directory resides and read/modify
on the MDB file itself.

Jim Dettman
(315) 699-3443
jimdettman at earthlink.net

-----Original Message-----
From: accessd-bounces at databaseadvisors.com
[mailto:accessd-bounces at databaseadvisors.com]On Behalf Of Mitsules, Mark
S. (Newport News)
Sent: Wednesday, April 07, 2004 1:36 PM
To: '[AccessD]'
Subject: [AccessD] Permissions Refresher


Group,

I have a database that is currently restricted (by folder permissions) to
only a few individual persons.  I am now in the process of creating a
database for general use that needs to link to a table in that restricted
database.  Out of the following permissions, what is the minimum necessary
to allow a user to execute select queries, but not allow any modifications
to the data?

Permissions:		Allow/Deny?
Full Control
Modify
Read & Execute
List Folder Contents
Read
Write


TIA,

Mark
--
_______________________________________________
AccessD mailing list
AccessD at databaseadvisors.com
http://databaseadvisors.com/mailman/listinfo/accessd
Website: http://www.databaseadvisors.com


-- 
_______________________________________________
AccessD mailing list
AccessD at databaseadvisors.com
http://databaseadvisors.com/mailman/listinfo/accessd
Website: http://www.databaseadvisors.com
-- 
_______________________________________________
AccessD mailing list
AccessD at databaseadvisors.com
http://databaseadvisors.com/mailman/listinfo/accessd
Website: http://www.databaseadvisors.com



More information about the AccessD mailing list