How to get access to prompt user id/password

[karen scheu via AccessMonster.com]

I created a new mdw file. Opened a mdb and created a new user id and added
it to admin and user group. What do I have to do to get access to prompt
me to enter user id and a password. I tried exiting out of access and
coming back in, I also tries setting database password, but it only sets
password for Admin user. I need to log in as the new user, but don't know
how to do it. Please advise.

Thanks.

 

[Rick B]

You need to create a password for your new user, not for the database.

You say you added them to Users and ADMINS? Did you take away all access
from the ADMINS group? If not, why couldn;t a user simply join their
default workgroup and sign in as ADMIN and have full access to the database
(avoiding your security)?

Did you follow ALL the security steps outlined in the FAQ in the proper
order?

You might want to read the following links...

Security FAQ

http://support.microsoft.com/?id=207793



The Security Whitepaper is also worth reading to help you understand.

http://support.microsoft.com/?id=148555



Joan Wild:

www.jmwild.com/AccessSecurity.htm



Lynn Trapp

http://www.ltcomputerdesigns.com/Security.htm

 

[karen scheu via AccessMonster.com]

That's my problem, how do I create a password for my user and not the
database?

I did follow the steps up to the point where it said to exit out of access
and log in as the "New User", but it never prompted me for a user id and
password.

Thanks.

 

[Lynn Trapp]

If you are not getting prompted for a user name and password, then the Admin
user does not have a password. Log on to the database and change the Admin
user's password.

--
Lynn Trapp
MS Access MVP
www.ltcomputerdesigns.com
Access Security: www.ltcomputerdesigns.com/Security.htm
Jeff Conrad's Big List: www.ltcomputerdesigns.com/JCReferences.html

 

[Jeff Conrad]

in message:

That's my problem, how do I create a password for my user and not the
database?

I did follow the steps up to the point where it said to exit out of access
and log in as the "New User", but it never prompted me for a user id and
password.

You will only be presented with the login screen when the Admin User
is given a password. Log into your secure database with your custom
workgroup file. If no prompt comes then go to the Security screen and
enter a password for Admin. (I am assuming you have already followed
all of the necessary steps up to this point such as creating a new SuperUser,
custom groups, etc.) Now close the database. Log back into the secure
database with your custom workgroup file and you should now see a
login screen. Change the User Name to your SuperUser and enter the
password (it could be blank at this point) to log in as your SuperUser.
Now assign a password if you have not already.

 

[Joan Wild]

You say you added them to Users and ADMINS? Did you take away all
access from the ADMINS group? If not, why couldn;t a user simply
join their default workgroup and sign in as ADMIN and have full
access to the database (avoiding your security)?

Because the ADMINS group is different in each mdw. You do not need to
remove permissions for this group. You do need to remove Admin user from
the Admins group.

 

[Rick B]

Ahhhhh. BEen a while since I did security from the beginning. I guess I'd
have to read and reread those links I am so fond of posting!

 

[TC]

You are obviously not following a written list of instructions.

Access security is quite complicated. You have no hope of getting it
right, by fooling around. You need to obtain & follow a written list of
detailed instructions, adding & omitting nothing.

Try the Access Security FAQ, often referenced in this newsgroups.

HTH,
TC

 

[Lynn Trapp]

Karen,
If you set a Database Password, then you are NOT setting User Level security
and, thus, no prompt for user name. You have to set up User Level security
to get that. I suggest that you get hold of the Security FAQ, read it
several times, and follow it to the letter. Be sure to work on a backup copy
of your database first. There is a link to the Security FAQ on the Security
page of my website.

--
Lynn Trapp
MS Access MVP
www.ltcomputerdesigns.com
Access Security: www.ltcomputerdesigns.com/Security.htm
Jeff Conrad's Big List: www.ltcomputerdesigns.com/JCReferences.html

 

[Guest]

I read through the posts. I followed the instruction for security set up, I
have a password for the SuperUser. I added general user to general user
group, how can I add a password for the general password?

Thank you,

Blinda

 

[TC]

If you followed a list of proper instructions, you would have added a
password for the Admin user.

Use the same general method to add a password for your General user.

PS. If you have a group called "General", as it seems from your post,
I'd be inclined to name the users with their human names: Tom Smith,
Dick Jones etc. Then, later on, if you want to, you can add some
auditing features to keep a record of "who does what".

If you call your /user/ "General", and everyone logs-in as that user,
you will never be able to tell, or control, who does what; and that
defeats the whole idea of having security in the first place.

HTH,
TC

 

[Guest]

TC,

Yes, I have a password for the Admin User. and as you said I will give them
real name instead of general. Thank you for advice.

I have another question about password. if people get into the security DB
through my shortcut on the desktop, password was required, but if they get
into the database directory directly and double click the .mdb file, no
password needed. What is wrong with the security password? what could I do to
avoid this?

Thank you,

Blinda

 

[Joan Wild]

I have another question about password. if people get into the security DB
through my shortcut on the desktop, password was required, but if they get
into the database directory directly and double click the .mdb file, no
password needed. What is wrong with the security password? what could I do
to
avoid this?

If they can do this, then you missed a step in securing it. You cannot skip
*anything* or as you've found your database won't be secure.
www.jmwild.com/AccessSecurity.htm