Hi
At the moment, I only use Windows security on SQL Server. Frontends are a mix of ADE and ACCDE, using Access 2010.
However, I've recently become concerned as this means a user with Excel and ODBC knowledge get at all the tables and views. For example, all Clients.
So I'm looking for advice on the following formats
1) ACCDB
I have the tables linked via ODBC and linked table manager.
How could I make this more secure.
2) ADP
There seems to be two options here, both of which involve setting up a SQL user and storing the password in the ADP. Lets call this user "SQL_Test_User"
a) Store the password in the connection
Click Server/connection and you get the Data Link properties. I can choose Windows Security or "Use a specific name and password"
If I enter the SQL_Test_User credentials here, I get a warning that "Your password will not be encrypted before it is saved to file"
Its not clear to me how easy it will be to get the password
b) Change the connection through VBA code
On the Microsoft site, there is an example of storing the connection name and password in code. I will only be distributing the compiled ADE, how secure would this be?
https://support.microsoft.com/en-us...-the-connection-of-a-microsoft-access-project
I realise there may not be a right or wrong answer here, but I am interested in others opinions and how this issue is tackled by others.
Thanks
At the moment, I only use Windows security on SQL Server. Frontends are a mix of ADE and ACCDE, using Access 2010.
However, I've recently become concerned as this means a user with Excel and ODBC knowledge get at all the tables and views. For example, all Clients.
So I'm looking for advice on the following formats
1) ACCDB
I have the tables linked via ODBC and linked table manager.
How could I make this more secure.
2) ADP
There seems to be two options here, both of which involve setting up a SQL user and storing the password in the ADP. Lets call this user "SQL_Test_User"
a) Store the password in the connection
Click Server/connection and you get the Data Link properties. I can choose Windows Security or "Use a specific name and password"
If I enter the SQL_Test_User credentials here, I get a warning that "Your password will not be encrypted before it is saved to file"
Its not clear to me how easy it will be to get the password
b) Change the connection through VBA code
On the Microsoft site, there is an example of storing the connection name and password in code. I will only be distributing the compiled ADE, how secure would this be?
https://support.microsoft.com/en-us...-the-connection-of-a-microsoft-access-project
I realise there may not be a right or wrong answer here, but I am interested in others opinions and how this issue is tackled by others.
Thanks
