• Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint
Share this Page URL
Help

Chapter 32. Database Security Made Easy > Practical Examples: Securing the Time...

Practical Examples: Securing the Time and Billing Application

Now that you have learned the steps involved in properly securing an Access database, you can apply the steps to the Time and Billing application:

1.
To begin, launch the Workgroup Administrator (Wrkgadm.exe). Click the Create button to create a new workgroup.

2.
Call the workgroup ID TimeBillApp, as shown in Figure 32.22.

Figure 32.22. Entering information for a new workgroup.


3.
Call the workgroup Time.MDW. Click OK. Confirm the path to the new workgroup, as shown in Figure 32.23.



Figure 32.23. Specifying a name and path for a new workgroup information file.


4.
Exit the Workgroup Administrator and launch Access.

5.
Choose Tools | Security | User and Group Accounts.

6.
Click New and add a user named PCGuru. Give PCGuru a personal ID of HeadCheese, as shown in Figure 32.24.

Figure 32.24. Entering the name and personal ID of a new user.


7.
Click Add >> to add PCGuru to the Admins group, as shown in Figure 32.25.

Figure 32.25. Adding a user to a group.


8.
Click the Change Logon Password tab to select it.

9.
Assign a new password of NoPower to the Admin user and click Apply.

10.
Click the Users tab.

11.
From the Name drop-down list, select Admin.

12.
Remove Admin from the Admins group, as shown in Figure 32.26.



Figure 32.26. Removing a user from a group.


13.
Exit and restart Access. Log on as PCGuru (with no password).

14.
Choose Tools | Security | User and Group Accounts.

15.
Click the Change Logon Password tab to select it.

16.
Assign PCGuru the password of TheGuru.

17.
Open the CHAP32 database. Don't forget to hold down the Shift key so that the AutoExec macro does not execute.

18.
Choose Tools | Security | User-Level Security Wizard.

19.
Click OK to secure all objects.

20.
Select a folder location for the secured file and enter CHAP32Secured as the name of the database file. Click Save.

21.
Hold down the Shift key and open CHAP32Secured.

22.
Choose Tools | Security | User and Group Accounts.

23.
Click the Groups tab to select it and add the following groups: Managers, Supervisors, and Staff. Assign any personal IDs you want.

24.
Click the Users tab to select it and add the following users: Dan, Sue, Janet, Reggie, Maureen, and Paul. Assign any personal IDs you want.

25.
Add Dan and Janet to the Managers group. Add Paul and Reggie to the Supervisors group. Add Sue and Maureen to the Staff group.

26.
Choose Tools | Security | User and Group Permissions.

27.
Select the Groups option button.

28.
Select the Managers group. Assign the Managers group Update Data, Insert Data, and Delete Data permissions to the tblClients and tblProjects tables. Click the Apply button between each table. If you forget to click Apply, the dialog box shown in Figure 32.27 appears. Click Yes.

Figure 32.27. This dialog box appears when you forget to apply rights to an object before moving to the next object.


29.
Select the Supervisors group. Assign the Supervisors group Update Data permissions to the tblClients and tblProjects tables.

30.
Select the Staff group. Assign the Staff group Read Data rights to the tblClients and tblProjects tables.

31.
Exit Access and log back on as each of the various users. Attempt to read, modify, add, and delete records from the tblClients and tblProjects tables. Ensure that security has been implemented as planned.


PREVIEW

                                                                          

Not a subscriber?

Start A Free Trial


  
  • Creative Edge
  • Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint