|
security
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
user and group permissions on basis of dataI am working on the database bit like of auditing. The database is simple only thing is the permissions to various users.In the database the audit report(memo field) is issued to each authorised person(AP) of department and he has to comment on that and perform action. Like when user or AP open the form he is only able to see his department details.(bit kind of filtering the data for that particular person).I want that AP of one department is not able to view information of other department. I am bit confused to do it as there are 10-15 departments. Is it the normal user permissions that can work or I have to do in different way. There is no worry of design security or like that. I hope I make it clear.. Thanks anil I hope that I understand you correctly. The data in the database belongs to
various departments. A department's personnel should only see data pertaining to their department, and not other departments. You'll need a field in each table to identify the department that 'owns' the record. I think in this case, I would create a security group for each department. This also assumes that a user belongs to only one department. You could have a hidden form that opens on startup, with a textbox that is filled in with the department of the current user. You can set a criteria in all the recordsources of forms/reports i.e. WHERE [Departmentfield] = Forms!YourHiddenForm!txtDept. When users create new records, you can update the Department field to this value as well. You'll find sample code in the security FAQ you can use to determine if a user is a member of a certain group. http://support.microsoft.com/?id=207793 -- Show quoteHide quoteJoan Wild Microsoft Access MVP anil wrote: > Hi all > I am working on the database bit like of auditing. > The database is simple only thing is the permissions to various > users.In the database the audit report(memo field) is issued to each > authorised person(AP) of department and he has to comment on that and > perform action. > > Like when user or AP open the form he is only able to see his > department details.(bit kind of filtering the data for that particular > person).I want that AP of one department is not able to view > information of other department. > > I am bit confused to do it as there are 10-15 departments. > Is it the normal user permissions that can work or I have to do in > different way. > > There is no worry of design security or like that. > I hope I make it clear.. > Thanks > anil Thanks Joan
I have created User table and group table with passwords. Although it is not very secure but it has started working. Now I will go through the main security with your advice as I need permission from Administrator to change settings. But overall thatnks for your help and time Anil Joan Wild wrote: Show quoteHide quote > I hope that I understand you correctly. The data in the database belongs to > various departments. A department's personnel should only see data > pertaining to their department, and not other departments. > > You'll need a field in each table to identify the department that 'owns' the > record. > > I think in this case, I would create a security group for each department. > This also assumes that a user belongs to only one department. You could > have a hidden form that opens on startup, with a textbox that is filled in > with the department of the current user. > > You can set a criteria in all the recordsources of forms/reports i.e. WHERE > [Departmentfield] = Forms!YourHiddenForm!txtDept. When users create new > records, you can update the Department field to this value as well. > > You'll find sample code in the security FAQ you can use to determine if a > user is a member of a certain group. > http://support.microsoft.com/?id=207793 > > > > -- > Joan Wild > Microsoft Access MVP > > anil wrote: > > Hi all > > I am working on the database bit like of auditing. > > The database is simple only thing is the permissions to various > > users.In the database the audit report(memo field) is issued to each > > authorised person(AP) of department and he has to comment on that and > > perform action. > > > > Like when user or AP open the form he is only able to see his > > department details.(bit kind of filtering the data for that particular > > person).I want that AP of one department is not able to view > > information of other department. > > > > I am bit confused to do it as there are 10-15 departments. > > Is it the normal user permissions that can work or I have to do in > > different way. > > > > There is no worry of design security or like that. > > I hope I make it clear.. > > Thanks > > anil 
Other interesting topics
Access 2007 Security
Object permissions Office 2000 Access 2003 Exclusive Open Rights Front end, Back end, and restrictions on which Forms can open. system.mdw Security loophole via Excel!!! get error message when running a query workgroup files and 2007 Ability for a non-Admins user to create new users New to Access Security |
|||||||||||||||||||||||
