Security issue.

[LOUISBUHAGIAR54]

I would like to put my database on a server to be accessed from three different offices; namely administration, reception and a nursing station. The database is an Microsoft Access 2007 db and is split into fe and be.

My question and difficulty is on security. I plan to have slightly different versions of the fe on each PC in the different offices. Commands, forms and linkages to tables are only presented on the fe if appropriate for that particular office and function.

In addition each user will have access to the db upon presenting his username and password. Each important entry will also register the username in the record.

Can someone please guide me if this is normal practice and if additional security is indicated ?


Many thanks

LOUISB

 

[Pat Hartman]

Using Active Directory, access to the shared folder should be limited to only the application users but each user needs CRUD permissions for the app to function correctly.

I use a single FE and use my own tables to manage user access. You can't protect an Access database from anyone with malicious intent so your basic objective is to keep people from making mistakes. If you have sensitive data, it is better to use SQL Server to house the data rather than Jet/ACE.

 

[LOUISBUHAGIAR54]

Many thanks for your reply. Excuse my lack of knowledge but could you explain what CRUD refers to and could you pass my some reference on how to limit user access. I gather that Access 2007 is much less secure than the 2003.

Thanks.

 

[G37Sam]

CRUD: http://en.wikipedia.org/wiki/Create,_read,_update_and_delete

 

[LOUISBUHAGIAR54]

Many thanks Sam for your patience.


LouisB.