Re: database split before or after security?

Joan,
Many thanks for your response, once again.

As I go through the user and group permissions, I may have made an error.

The owner is "Developer" and is a member of Admins Group and Developer Group,
both groups have identical security permissions.

The user "Developer" has Open/Run permissions on the database (and forms) but
not the tables or queries. Additionally, the Admins Group nor the Developer
Group has Open/Run permissions on the tables or queries. It appears that no
one has Open/Run permissions on the tables or queries.

However, as Developer, I ran the queries and they worked fine. Is there
something I am missing regarding Open/Run permissions? I did not knowingly
revoke these permissions.

Second question - Should I change the owner of objects from the Developer
User to the Developer Group?

Thank you
Charlie


Joan Wild wrote:
Hi Access Heros,
I created a new database in Access 2003. I created a new workgroup
[quoted text clipped - 3 lines]
as frontend. Does it make sense to do it this way? Doesn't this set
security on both the backend and frontend?

That alone does not. When you import objects, their permissions don't come
with them, so you have to set them again.

I guess I am asking this question because when reading other threads,
people ask whether to set security on backend or frontend. This
confuses me. Isn't security on both?

Usually you would want to secure both mdb files, yes. If you start with a
single mdb file, you can secure it and then split it manually. This means
create a copy of the database. Open the copy and delete all the objects
except the tables (this will be the backend). Open the original and delete
the tables; then use File-Get External Data-Link and link to the tables in
the copy.

By copying the files, rather than importing to new, the permissions are not
lost on the objects.

By the way, there is nothing wrong with the approach you took. You just
need to proceed with creating groups and assigning the permissions to those
groups for each database.


--
Message posted via AccessMonster.com
http://www.accessmonster.com/Uwe/Forums.aspx/access-security/200603/1
.

Relevant Pages

  • Re: User has group permissions to object, but still denied access.
    ... permissions to those query objects. ... The owners for the other 68 queries can be changed. ... may have been some of the original queries created in the database. ... Regarding the security, the database was converted from an Access 97 ...
    (microsoft.public.access.security)
  • Re: User has group permissions to object, but still denied access.
    ... specific queries is identical to queries that she does have the ability to ... permissions depending on where the file is, it means she's either opening the ... about 80 queries in the database, and I haven't been able to find a pattern ... The Admins group was given full permissions. ...
    (microsoft.public.access.security)
  • Re: Setting up user group that can create and save select queries
    ... You are having this problem because of a bug with the security wizard. ... Put your users in one of the wizard-created groups, as well as the group you created for them, and they'll be able to save their queries. ... Give the users modify permissions on the query to change the SQL property in code. ... The application database used to enter and update the data; ...
    (microsoft.public.access.security)
  • Re: no read definitions on query
    ... If queries, then the users need at least read data permissions in order to ... If you had no permissions on the queries/tables, ... level security on a database. ... not the user tried to access the query. ...
    (microsoft.public.access.security)
  • Re: RWOP /table permissions question
    ... With Admins permissions, yes they can. ... Microsoft Access MVP ... I have the database window hidden on the ... Now base all your SQL statements on these queries rather than the ...
    (microsoft.public.access.security)