.mdw makes my head spin

M

Mr Smin

Sometimes Excel too.
Local time
Today, 22:43
Joined
Jun 1, 2009
Messages
132
I've been trying to grasp User Level Security on here and around the web but one thing is leaving me lost.

I have a backend on a fileserver, with a .mdw in the same folder.
On a user's machine I have a front end and a shortcut which specifies to use the .mdw on the fileserver.
If the user lanches from the shortcut it's all fine, but if they double click the frontend, they are in the database as Admin with no password requested by the database.

I'm guessing that without the shortcut, Access uses the .mdw on their C: drive, but that takes me no closer to resolving the problem - can anyone explain this for me?

Thanks.
 
The problem is that you didn't secure the backend properly. When you create user level security, you need to add a new user name to the users and then make that user part of the ADMINS (note the S) GROUP. Then you REMOVE the ADMIN (note - no S) from the ADMINS group. That way anybody opening the database, or attempting to, with their default security.mdw workgroup file, can't. If you leave the Admin user part of the Admins group then anyone can just open the database and be an admin because that is the default of their default mdw file.
 
But BIG WARNING -

DO NOT remove the Admin from the Admins Group BEFORE you have another user assigned to that Admins group or else you will LOCK YOURSELF OUT of the database for doing admin work (including adding new users, changing security and all) and there's no way to recover that if you do.
 
Hmm - I have myself in the Admins group under my own name but when I try to delete the user 'Admin' it says that operation cannot be performed.
It will let me remove user 'Admin' from the Admins group (leaving Admin in only the Users group which has no permissions). Do you know if that would work?
 
Also, do I need to run the security wizard on the backend and front end separately?
 
Mr Smin said:
Hmm - I have myself in the Admins group under my own name but when I try to delete the user 'Admin' it says that operation cannot be performed.
Click to expand...
You can't remove the Admin user - you just remove them from the Admins group.
It will let me remove user 'Admin' from the Admins group (leaving Admin in only the Users group which has no permissions). Do you know if that would work?
Click to expand...
Yes, that is how it is supposed to work.

I've not used ULS much at all so I don't really know for sure how you would apply it to the backend.
 
Sorry - just realised how dense I was, not reading your original post thoroughly!
 
You must log in or register to reply here.

Similar threads

D
Darshan Hiranandani : How to Access a Password-Protected MDB Database with an MDW File and Unknown User Password?
Replies
3
Views
1,185
Isaac
Isaac
M
Solved Can I access the user passwords in the MDW file?
Replies
13
Views
1,717
gemma-the-husky
gemma-the-husky
S
Batch file for updating local frontend Access database copy
2
Replies
26
Views
3,952
arnelgp
arnelgp
R
To Merge or Not To Merge... Backends
Replies
4
Views
952
The_Doc_Man
The_Doc_Man
D
Solved Book & Research Recommendations Azure BE > Access FE
Replies
17
Views
550
dalski
D

Users who are viewing this thread

Total: 1 (members: 0, guests: 1)
Back
Top Bottom