Re: Adp and SQL Server is there a way to query SQL permissions to control userforms?
- From: Tom van Stiphout <no.spam.tom7744@xxxxxxx>
- Date: Sun, 23 Mar 2008 15:32:58 -0700
On Sun, 23 Mar 2008 02:57:43 -0700 (PDT), lyle
<lyle.fairfield@xxxxxxxxx> wrote:
To be sure, I don't often deal with that many sites. I was assuming
all users were in Active Directory, assigned to groups (Accounting,
Production, RegionalManagers, etc.) and those groups were given access
to certain SQL Server objects. That may not be the case in your
situation, although it is possible to organize the company that way.
One of our largest clients manages about 250 sites in North America
and all their employees are in the same Active Directory.
-Tom.
On Mar 22, 7:53 pm, Tom van Stiphout <no.spam.tom7...@xxxxxxx> wrote:.
On Sat, 22 Mar 2008 22:37:40 GMT, lyle fairfield <lylef...@xxxxxxxx>
wrote:
I think I'm with Rick. I start with giving the user access to certain
data. My app is just one way those rights can be exercised. Nothing
you can do with your app will exceed what I wanted you to be able to
do in the first place.
-Tom.
I think that means that you agree that application level control and
security may be circumvented simply by connecting with another
application.
I think "giving the user access to certain data" is fine. But what
about "users"? Think of an organization with 100 sites. We manage site
employees and other site resources in a central database. When site
users log on through an Access application, the application restricts
them (through examination of their Windows Authentication) to viewing
and editing their own site's data. This can work well, but if one of
those one hundred site managers connects through another application
all the organizations data will be available to him/her unless we have
created individual permissions for each of the site users at the
server level. Managing 100 server logins may be problematic. I have
yet to see the situation where everyone has the correct permissions
but not any more than the correct permissions.
Application Roles seem to be a good answer. But as I pointed out
Access and Application Roles seem to be like oil and water. In my
experience, inevitably, problems with connections arise, sometimes
with connections that have worked properly for weeks or months. Last
time I checked, data-bound pull-downs were impossible in this setup;
recordsets had to be instantiated and delimited strings built from
them.
Application Roles and an ADP are fine if one programs each form and
report form to use an ADO recordset, created in the object's module.
But I think that means that Application Roles + Access <> RAD.
- References:
- Adp and SQL Server is there a way to query SQL permissions to control userforms?
- From: Access
- Re: Adp and SQL Server is there a way to query SQL permissions to control userforms?
- From: lyle
- Re: Adp and SQL Server is there a way to query SQL permissions to control userforms?
- From: Tom van Stiphout
- Re: Adp and SQL Server is there a way to query SQL permissions to control userforms?
- From: lyle fairfield
- Re: Adp and SQL Server is there a way to query SQL permissions to control userforms?
- From: Tom van Stiphout
- Re: Adp and SQL Server is there a way to query SQL permissions to control userforms?
- From: lyle
- Adp and SQL Server is there a way to query SQL permissions to control userforms?
- Prev by Date: Re: trying to use null but getting no where
- Next by Date: Re: sub name as a variable including a form reference. How to?
- Previous by thread: Re: Adp and SQL Server is there a way to query SQL permissions to control userforms?
- Next by thread: Re: Adp and SQL Server is there a way to query SQL permissions to control userforms?
- Index(es):
Relevant Pages
|
