user and group permissions on basis of data

A

anil

Hi all
I am working on the database bit like of auditing.
The database is simple only thing is the permissions to various
users.In the database the audit report(memo field) is issued to each
authorised person(AP) of department and he has to comment on that and
perform action.

Like when user or AP open the form he is only able to see his
department details.(bit kind of filtering the data for that particular
person).I want that AP of one department is not able to view
information of other department.

I am bit confused to do it as there are 10-15 departments.
Is it the normal user permissions that can work or I have to do in
different way.

There is no worry of design security or like that.
I hope I make it clear..
Thanks
anil
 
J

Joan Wild

I hope that I understand you correctly. The data in the database belongs to
various departments. A department's personnel should only see data
pertaining to their department, and not other departments.

You'll need a field in each table to identify the department that 'owns' the
record.

I think in this case, I would create a security group for each department.
This also assumes that a user belongs to only one department. You could
have a hidden form that opens on startup, with a textbox that is filled in
with the department of the current user.

You can set a criteria in all the recordsources of forms/reports i.e. WHERE
[Departmentfield] = Forms!YourHiddenForm!txtDept. When users create new
records, you can update the Department field to this value as well.

You'll find sample code in the security FAQ you can use to determine if a
user is a member of a certain group.
http://support.microsoft.com/?id=207793
 
A

anil

Thanks Joan
I have created User table and group table with passwords.
Although it is not very secure but it has started working.
Now I will go through the main security with your advice as I need
permission from Administrator to change settings.
But overall thatnks for your help and time
Anil
Joan said:
I hope that I understand you correctly. The data in the database belongs to
various departments. A department's personnel should only see data
pertaining to their department, and not other departments.

You'll need a field in each table to identify the department that 'owns' the
record.

I think in this case, I would create a security group for each department.
This also assumes that a user belongs to only one department. You could
have a hidden form that opens on startup, with a textbox that is filled in
with the department of the current user.

You can set a criteria in all the recordsources of forms/reports i.e. WHERE
[Departmentfield] = Forms!YourHiddenForm!txtDept. When users create new
records, you can update the Department field to this value as well.

You'll find sample code in the security FAQ you can use to determine if a
user is a member of a certain group.
http://support.microsoft.com/?id=207793



--
Joan Wild
Microsoft Access MVP
Hi all
I am working on the database bit like of auditing.
The database is simple only thing is the permissions to various
users.In the database the audit report(memo field) is issued to each
authorised person(AP) of department and he has to comment on that and
perform action.

Like when user or AP open the form he is only able to see his
department details.(bit kind of filtering the data for that particular
person).I want that AP of one department is not able to view
information of other department.

I am bit confused to do it as there are 10-15 departments.
Is it the normal user permissions that can work or I have to do in
different way.

There is no worry of design security or like that.
I hope I make it clear..
Thanks
anil
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Top