Create security through login

[Annie]

Hello,

I would like to set up some security because I will have 4
different groups accessing my database. I heard that
access has the ability to recognize certain users through
there network login Id and then whatever group they are
part of assign them to that view. These are the 4
different views/groups I would like:

(1)The Admin - which would be myself so I would have
access to everything.
(2)Users who would only be able to read the data to run
queries and have access to a couple reports.
(3)A User that would only have access to one table & form
and be allowed to add, update and delete records. And have
access to reports.
(4)Another User that would have access to a couple of
tables & forms being allowed to add, update and delete
records as well as access to some reports..

I have printed off the Security FAQ's but would anyone

know where I should start on this. I have never created
any sort of security for my database so I don't know where
to start. Could anyone point me to what # in the FAQ's I
should focus on?

 

[Scott McDaniel]

You should focus on ALL of the security FAQ ... there is really not any one
place that is more important than the other. That said, Section 1 "What are
the steps to help protect a database" deals with the nuts and bolts of
implementing security. If you follow these steps (and understand >why< you
are following these steps), then you will end up with a properly secured
database.

Access security is a complex beast, and necessarily so. Make sure you
understand it before implementing these changes in your database ... also,
do yourself a favor and learn security on a COPY of your database.

http://support.microsoft.com/default.aspx?scid=/support/access/content/secfaq.asp#_Toc493299660

 

[Annie]

I have created the 4 groups with associated permissions
that I need. Now where do I add the code to read in the
network logon id? I have a switchboard so I was thinking
when this form opens up it should read the users network
login id and based on what group they belong to give them
the rights that I have given. I assume that some buttons
will be disabled if I haven't given them access..

Would it be in the form properties for the switchboard
that I add the code.

Where do I add the the users network login id? Should I
create a table for this and connect the table to the
groups?

 

[Scott McDaniel]

Again, read the FAQ ... when you implement security, Access will prompt
users for their login and store that information in the CurrentUser
variable. Access will also disallow invalid users from entering the
database.

From there, you can allow Access to throw errors when users try to open a
form or report for which they have no permissions. Of course, the error
messages that Access throws are usually fairly cryptic and not generally fit
for the average user, so you may wish to determine if a user has permission
to open a form before allowing them to open it and, if they don't have the
necessary permissions, show a friendlier (and more easily understood) error
message. There is sample code within the FAQ that will guide you in
determining, via code, what users have permissions for which objects.

There is really no substitute for thoroughly reading and understanding the
FAQ ... trying to implement security without doing so is an exercise in
futility, and is a surefire way to make sure you do NOT properly secure your
database ... or, even worse, lock yourself out FOR GOOD.