Using domain login names for access control?

[Guest]

I would like to make a table containing a list of selected users, their SIDs
or at least NT domain login names and an admin granted level of security for
later queries. How do I go about comparing the current user with the list of
login names? I guess I can live without the SID part, but I do want to limit
certain users to certain queries based on their NT domain names. Is this
possible? I cannot find any VBA calls to retrieve who is using the DB. My
system has a front end for forms and reports and is connected to a SQL
backend. It is pretty much all done, the SQL works fine, but now I want to
limit who sees what. I plan to compare the login ID with their security
level to modify the query so they see only the data for their region. Thanks
for any pointers.

 

[Douglas J. Steele]

See http://www.mvps.org/access/api/api0008.htm at "The Access Web" to get
the current user's network ID.

Note, though, that it'll be pretty trivial for people to circumvent your
security.

 

[Guest]

Maybe security was too strong a word to use. This is more of an automatic
tailoring of queries. I understand they can modify the query, etc., although
for the sales reps this is aimed at, if they can do that, I would gladly ask
them if they want to change positions and move over to IT

 

[Guest]

Anything in Active Directory you can get -- if you know
where it is and have permission.

using ADO, you can query against active directory,
using SQL or ldap_dialect:

SELECT ADsPath, cn FROM 'LDAP://OU=Sales,
DC=Fabrikam,DC=COM' WHERE
objectCategory='person' AND objectClass ='user'

http://msdn.microsoft.com/library/en-us/adsi/adsi/ldap_dialect.asp


(david)