Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
Home
Discussion GroupsFormsForms ProgrammingQueriesModules / DAO / VBAReports / PrintingMacrosDatabase DesignSecurityConversionImporting / LinkingSQL Server / ADPMultiuser / NetworkingReplicationSetup / ConfigurationDeveloper ToolkitsActiveX ControlsNew UsersGeneral 1General 2
Access DirectoryToolsTutorialsUser Groups
Related Topics
SQL ServerOther DB ProductsMS OfficeMore Topics ...
MS Access Forum / Modules / DAO / VBA / April 2007

Tip: Looking for answers? Try searching our database.

Bad user name still allows entry

Thread view: 
Enable EMail Alerts  Start New Thread
Thread rating: 
BruceS - 23 Apr 2007 23:08 GMT
Hi, all!

I'm connecting to a A2K database which is secured with a UID of "Admin" and
a password of "abc".  On a form, I have the user input the UID and PWD to
use, then open the database as follows:

   Set db = OpenDatabase(Me.jobDatabase, False, True, _
           ";UID=" & Me.jobUID & ";pwd=" & Me.jobPwd)

In testing, the db opens no matter what value I use for jobUID.  (The
assword must be correct.)  I even changed the code to ";UI=" ...  and it
still opens without an error.

No other users or groups but "Admin" are set up in the db, but that may not
always be the case.

Does Access not check the UID, or is my syntax wrong?

Shouldn't the object db reject the bad parameter and kick back an error?

Thanks,
Bruce
Reply to this Message
Keith Wilby - 24 Apr 2007 08:55 GMT
> Hi, all!
>
[quoted text clipped - 20 lines]
> Thanks,
> Bruce

Have you verified that user-level security is applied correctly at the
target file?

Keith.
www.keithwilby.com
Reply to this Message
BruceS - 24 Apr 2007 14:14 GMT
Keith,

Thanks for replying.

Doesn't look like it.  Never played with Access security.  Network-level
user security has always handled permissions so I never had to.

Here's where things are, now:

When I posted the first question, I had only 1 user (Admin) set up in the
test database.  (Probably why it was ignoring the UID part of the
OpenDatabase command.)  When I double-clicked the database to open it
manually, it asked only for the password.  When I used VBA to open it, it
opened as long as the pwd was correct.

Since then, I used the wizard to set up a new user (BruceS) and assigned a
pwd (abcd).  Now, when I double-click the database to open it manually, it
gives me a 3033 (no permissions) error.  It doesn't prompt me for uid or pwd.
I can only open it by clicking on the .ldb file that the wizard created,
where it does ask for both uid & pwd.

Now, however, the VBA OpenDatabase command also fails with 3033, even when
using valid UID/pwd info in the parameter.  Just for kicks, I tried pointing
it the .ldb file, instead.  It errors saying that it's not a valid database
format.

Obviously, I don't know what I'm doing here.  Can you point me in the right
direction?

Thanks,
Bruce

> > Hi, all!
> >
[quoted text clipped - 26 lines]
> Keith.
> www.keithwilby.com 
Reply to this Message
Keith Wilby - 24 Apr 2007 14:45 GMT
> Keith,
>
[quoted text clipped - 28 lines]
> right
> direction?

Hi Bruce,

Well I misunderstood your first post.  It seems you had no user-level
security set up (as I thought you had) but you *did* have a database
password set.  Those two entities are completely separate and should not be
confused with each-other.  I'm not sure what the answer is but I would
recommend that you don't dabble with user-level security if you're new to
it, you can very easily lock yourself out and it certainly won't solve your
original problem.  I especially dislike the wizard because it does things
without telling you and you learn nothing about user-level security to help
you trouble-shoot when things go wrong.

Sorry I can't be of more help but hopefully someone else will jump in ...

Regards,
Keith.
Reply to this Message
BruceS - 24 Apr 2007 16:30 GMT
Thanks, anyway, Keith!  Appreciate the effort.

Anyone else have a recommendation?

Bruce

> > Keith,
> >
[quoted text clipped - 45 lines]
> Regards,
> Keith.
Reply to this Message
BruceS - 24 Apr 2007 17:02 GMT
Keith,
Found what I needed at http://support.microsoft.com/kb/163002/en-us
Bruce

> > Keith,
> >
[quoted text clipped - 45 lines]
> Regards,
> Keith.
Reply to this Message
George Nicholson - 24 Apr 2007 23:25 GMT
The Bible (or at least one of them) on Access Security:
http://support.microsoft.com:80/kb/207793/en-us

HTH,

> Keith,
> Found what I needed at http://support.microsoft.com/kb/163002/en-us
[quoted text clipped - 60 lines]
>> Regards,
>> Keith.
Reply to this Message
BruceS - 25 Apr 2007 00:06 GMT
Thanks, George.  If found that one, too, when searching the KB.
Bruce

> The Bible (or at least one of them) on Access Security:
> http://support.microsoft.com:80/kb/207793/en-us
[quoted text clipped - 65 lines]
> >> Regards,
> >> Keith.
Reply to this Message
Keith Wilby - 25 Apr 2007 09:38 GMT
> Keith,
> Found what I needed at http://support.microsoft.com/kb/163002/en-us
> Bruce

Nice, I may have a use for that myself, thanks for posting it.

Keith.
Reply to this Message
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2008 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.