Hello,
Do I still have to use the .mdw file to run security for the accdb? I can't find how, but my old mdb will still prompt for a user/password even if opened from the file explorer. Can't seem to set this up with accdb. Any pointers would be useful, thanks.

No. User/group security is still available but only with MDB/MDE, not with
the newer ACCDB files.

--
Larry Linson
Microsoft Office Access MVP
Co-Author, Microsoft Access Small Business Solutions, Wiley 2010

"fearless55" <james (AT) pigottsinvestments (DOT) co.uk> wrote

On Wednesday, August 22, 2012 11:53:06 PM UTC+1, Access Developer wrote:
Wow! What can we do to protect access to certain forms etc?

"fearless55" <james (AT) pigottsinvestments (DOT) co.uk> wrote

I'm certainly not the best authority on the subject of security . . . Access
security has, in every version, been sufficiently weak that you could search
the Internet and find "breaker" code. Sergei Gavrilov (who creates,
publishes, and sells some good Access software tools) gave up on selling
breaker code and published a free version that didn't even require the MDW
file, just to show it could be done. Since I realized that Access security
didn't protect much of anything, I didn't exert myself to try to create a
secure database.

Most of my "paid" work used a server database of one brand or another and
data security relied on the server DB's security -- but, you are correct
that doesn't let you use security to block access to forms. Also, the vast
bulk of what I did was "bespoke systems" (systems created for a specific
client for their own internal use, accessible only to/by their employees)
and for "sensitive" data, we might create a separate database that was
distributed only to those employees who should have access.

Although there has been (and still is) code that can be demonstrated to
extract code from MDE or ACCDE, it is not as common as heavy-duty "security
breaker" code, so a combination of code, compilation to MDE or ACCDE, and
your own security might be sufficient.

I did not join in the mass weeping, wailing, and gnashing of teeth over the
loss of Access security, because it had not (I thought, and still think)
been really worth the effort to implement it in your databases anyway.

Sorry that I can't offer you a good workaround security option, but every
one I've seen was quickly broken by those who had an interest in such.

Larry Linson
Microsoft Office Access MVP
Co-Author, "Microsoft Access Small Business Solutions", pub by Wylie,
2010

On 23/08/2012 12:18:00, fearless55 wrote:
As Larry says, you can't

I use a treeview type menu system (if you can get your MSCOMCTL to work)
Basically the query that "powers" the menu contains tables of
Users, JoinMenuUser and Menu

JoinMenuUser has fields
UserID
MenuID
UserPermissions
The first 2 are a combined index
When a user logs on, a flag is set in the user table and the Menu Query only
returns MenuIDs where the user is logged on.
Permissions for read only or read/write are applied as the form is opened by
clicking the line on the treeview menu

Phil

If you wish to protect the data then you need to do this in code.
This has been debated and illustrated in threads in this news group.
If you wish to control access to forms then what Larry and Phil has
told you is spot on. Using both methods in concert can produce a
solution that suits even some of the more demanding situations.

Keep in mind that security is an often misused term with a slippery
definition. Access to the application itself, access to its forms and
reports, and data safety / encryption are all aspects that you might
consider. For the most part these have to be implemented at design
time and not tacked on after the app is already built.

The Frog

--
Cheers

The Frog

On Friday, August 24, 2012 1:14:28 AM UTC+1, Access Developer wrote:
Thanks Larry, I'm in total agreement with you. I only used it as a way of allowing different people to see different things.

Talking of security - I have this group unlinked to my google profile and have only opted for people to see my nickname with no picture. so how come my email address is appearing and one topic has my pic and links to LinkedIn and Facebook? Is Google security all it is purporting to be?

I created this separate gmail account to use for newsgroups... and don't
recall when, if ever, I checked for email being sent there.

--
Larry Linson
Microsoft Office Access MVP
Co-Author, Microsoft Access Small Business Solutions, Wiley 2010

"fearless55" <james (AT) pigottsinvestments (DOT) co.uk> wrote

On Friday, August 24, 2012 1:14:28 AM UTC+1, Access Developer wrote:
Thanks Larry, I'm in total agreement with you. I only used it as a way of
allowing different people to see different things.

Talking of security - I have this group unlinked to my google profile and
have only opted for people to see my nickname with no picture. so how come
my email address is appearing and one topic has my pic and links to LinkedIn
and Facebook? Is Google security all it is purporting to be?