Question What is the best solution for enabling VBA and Macros

[bignate]

Hi

Below are the ways I know of getting around the 'Security Warning - Certain content has been disabled from the database' , however I'm not really sure which one would be best for the situation I am in. The application will be used in the work place and stored in a network folder.

Making a Trusted Folder - I would use this, however the database is going to be shared in a network folder so the folder would have to be trusted on every computer which isn't really possible considering the amount of people and computers that would need to access it. Does anyone know if its possible to make a network folder trusted by default on every computer?

Split the Database - I have seen this suggested before, but when splitting the database the front end would still have to be in a trusted folder so this wouldn't fix the problem as far as I know.

Digital Signature - Seems like the best solution because I think you only enter the password once then the application is always trusted but I'm not really sure how this works

If any one has any other solutions then please let me know.

Thanks

 

[Galaxiom]

Trusted Locations can be set using Group Policy if you are on a domain.

Digital signature can only be applied to an mdb/mde file or a packaged database in 2007+.

 

[bignate]

Thanks ill contact the Administrator and try and get it set using the Group Policy.

 

[bignate]

Trusted Locations can be set using Group Policy if you are on a domain.

Digital signature can only be applied to an mdb/mde file or a packaged database in 2007+.

This didn't work because Microsoft Access isn't configured through the group policy on our domain, it is installed onto each computer individually.

Do you or anyone else have any other solutions?

Thanks for all your help

 

[Galaxiom]

It doesn't matter how Access was installed. The settings in Office can be controlled using Administrative Templates in Group Policy.

 

[bignate]

Microsoft Office isn't under Administrative Templates for the group policy. This was the group policy for every computer connected to the network and the administrator told me that this is because Microsoft Office is not pushed through the networks group policy. If there is a group policy for each individual computer then I guess I would see Microsoft Office there, but I want to disable the security warning from every computer on the network, not individual PC's.

We followed the instructions under this section Specify global trusted locations by using Group Policy on http://technet.microsoft.com/en-us/library/cc178948(v=office.12).aspx but Microsoft Office wasn't under Administrative Templates, however there were other things there that have been set in administrative templates so we were in the right place.

1. In the Group Policy Object Editor tree, navigate to the following location:
User Configuration/Administrative Templates/Microsoft Office 2007 system/Security Settings/Trust Center
2. In the details pane, double-click a trusted location that has not been configured, such as Trusted Location #1, Trusted Location #2, and so on.
3. In the Trusted Location Properties dialog box, click Enabled and do the following:
In Path, type the path to the folder that you want to trust.
In Date, type today's date.
In Description, type a description of the trusted location.
Select the Allow subfolders check box if you want all subfolders within the trusted folder to also be trusted.
4. Click OK.

If you specify a network share as a trusted location, you must enable the Allow Trusted Locations not on the computer setting.

There is no Microsoft Office under Administrative Templates

 

[Pat Hartman]

Thanks for posting back the details.

However, you should still split the application. Best practice is to have the FE installed on each user's C: drive and then linked to the BE which is on a shared drive on a server.

Lots has been written regarding the instability of monolithic Access apps shared by multiple users.

 

[Galaxiom]

Microsoft Office isn't under Administrative Templates for the group policy. This was the group policy for every computer connected to the network and the administrator told me that this is because Microsoft Office is not pushed through the networks group policy. If there is a group policy for each individual computer then I guess I would see Microsoft Office there, but I want to disable the security warning from every computer on the network, not individual PC's.

I don't understand what you are saying. I suspect your admin is fobbing you off.

A Default Domain Policy can set to apply to every computer in the domain. It certainly can contain Administrative Templates for Office applications including the one described in the link you posted.