Re: ADP Security Best Practices

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

I never tried them personally but many people have reported problems trying
to use application role with ADP in this newsgroup in the past (you can
search this newsgroup on Google for some interesting advice, in particular
in those messages posted by Lyle Fairfield).

However, like Mary Chipman has said, using an application role is not really
more secure than using an obfuscated SQL Server Login because in both cases,
the login and the password must be stored in client code and there's
decompilers (and network packets analysers) around here for everything.

Also, the trouble of using AR with ADP (in particular for subforms, filtered
comboboxes and list boxes, reports and subreports) seriously diminish their
usefulness in comparaison with the use of other technologies. You will
chose to use ADP against a SQL-Server because it's simple, not because it's
complicated.

--
Sylvain Lafontaine, ing.
MVP - Technologies Virtual-PC
E-mail: sylvain aei ca (fill the blanks, no spam please)


"Malcolm Cook" <malcook@xxxxxxxxxxxxxxxx> wrote in message
news:e13v%239ZCHHA.4060@xxxxxxxxxxxxxxxxxxxxxxx
There are problem with this approach - the main one that does not have a
workaround to my knowledge and has precluded me from taking
this approach is that subforms wont work

see http://support.microsoft.com/kb/308312


--
Malcolm Cook - mec@xxxxxxxxxxxxxxxxxxxxx
Database Applications Manager - Bioinformatics
Stowers Institute for Medical Research - Kansas City, MO USA


"Vadim Rapp" <vrapp@xxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:uvlCBiZCHHA.4892@xxxxxxxxxxxxxxxxxxxxxxx
(4) use application role feature of sql server. Once ADP application
starts,
it logs on as application using sp_setapprole, and then has all
permissions,
while users don't have them. ADP is compiled and does not show the
database
table. Users only have Access Runtime.

This way, only your code is allowed to work with the database; users'
hands
are not.

Vadim Rapp






.

Relevant Pages

  • Re: SQL server link Access converting decimal to long integer
    ... I'm not promoting any site. ... to their problemis to post it to the right newsgroup or to a newsgroup ... Like I said to you in my previous post, ADP don't have ODBC linked tables ... running SQL Server 2000 with an Access 2003 Front End via ODBC. ...
    (microsoft.public.access.adp.sqlserver)
  • Re: Cant update rows in a view if it includes a left-outer-joined bit column.
    ... this newsgroup is about ADP and has nothing to do with MDB/ACCDB's ... you could replace the bound control with an unbound control and make the ... I cannot make updates to the rows if the view includes a bit data-type ...
    (microsoft.public.access.adp.sqlserver)
  • Re: SQL server link Access converting decimal to long integer
    ... Hi, without beeing rude, you should ask your question in a newsgroup about ... newsgroup is about ADP and there is absolutely no relation between ODBC ... Sylvain Lafontaine, ing. ... link Access to these columns Access likes to convert the columns to long ...
    (microsoft.public.access.adp.sqlserver)
  • Re: SQL server link Access converting decimal to long integer
    ... 'ParentElement represents the Parent link field to the listbox ... Word, Linux, your personal life or your sexual life, whatever), I don't ... to their problemis to post it to the right newsgroup or to a newsgroup ... Like I said to you in my previous post, ADP don't have ODBC linked tables ...
    (microsoft.public.access.adp.sqlserver)
  • Re: SQL server link Access converting decimal to long integer
    ... 'ParentElement represents the Parent link field to the listbox ... Word, Linux, your personal life or your sexual life, whatever), I don't ... to their problemis to post it to the right newsgroup or to a newsgroup ... Like I said to you in my previous post, ADP don't have ODBC linked tables ...
    (microsoft.public.access.adp.sqlserver)