Auto Link FE App to Encrypted BE

[karakuri]

Hi All,

I am currently working on securing an access application.

I have split the database and applied a password to the back-end. I have already re-linked back the tables on the front end.

However, the issue is that, despite the back-end being password protected, I am still able to retrieve the tables by creating a new access > export tables from FE.

I would like to prevent the encrypted tables from being retrieved. One way to do it, from what I have gathered, is to delete the link on exit and re-link on opening.

Is there any way to script so that the re-link and deleting link will happen automatically?
Please kindly advise!

(I have to link the tables automatically as I do not want my users to have the password. At the same time, my app cannot run without the tables being linked)

 

[CJ_London]

look to the bottom of this thread in the 'Similar Threads' section. A number of people have asked the same question

 

[karakuri]

Hi,

Thank you for your reply.

What I was seeking for was for a method to automatically connect to a password protected BE, without having to key in the password. I did not manage to find any solution that works for me in the related forum, but it's alright! I have resolved the issue

Feel free to delete this thread if needed!

Once again, thanks!

 

[Frothingslosh]

Actually, if you resolved an issue, especially if your particular version never came up before, we prefer that you post how you fixed it so that people looking up the same issue in the future can see what you did.

 

[karakuri]

What I have done is to include the following codes in the Form_Load()

Dim pwd As String
Dim Dbs As DAO.Database
   
Set Dbs = DBEngine.OpenDatabase("<BE File Location>", False, False, ";pwd=<password>")

 
DoCmd.TransferDatabase acLink, "Microsoft Access", "<BE File Location>", acTable, "<Table>", "<Table>", False, True

Dbs.Close
Set Dbs = Nothing

(Solution derived from the following thread: showthread.php?t=176811)

To delete the tables on exit, include the following in Form_Close()

 DoCmd.DeleteObject acTable, "<Table>"

I found this solution helpful for cases where you want the FE to be connected automatically to the encrypted BE, without having the password prompt appear. Deleting linked tables on exit prevents unauthorised users from being able to retrieve the tables from the encrypted BE tables without having them to key in the password by creating a new access > export tables from FE.

Forgive me if my words are unclear or my solution isn't the most optimal. I am still relatively new to access
Cheers.

 

[CJ_London]

Deleting linked tables on exit prevents unauthorised users from being able to retrieve the tables from the encrypted BE tables

If you are concerned about the data being stolen, just be aware that there is nothing to stop the user opening a blank db and linking to an opened db with the tables linked to then copy the tables across. Or to open the msysobjects table where the password can be found in plain sight.

Or they can open the db in something like notepad, and find the password there.

Depends on what you are trying to protect against, but Access is not that secure against someone with a modicum of knowledge.

Other things to do is to not provide a form which for example lists all customer details. The user can simply highlight all and copy to excel.

 

[karakuri]

Depends on what you are trying to protect against, but Access is not that secure against someone with a modicum of knowledge.

Ah yes, that I am terribly aware of. Unfortunately, I do not have any say in regards to this and can only work with whatever I was given. Thank you for your warning and advice though.