Re: SQL Security & User-Level Access
From: Ian O'Betz (webmaster_at_(NoSpam)premier-ed.com)
Date: Fri, 4 Mar 2005 12:44:02 -0700
I'm creating the project from scratch (not upgrading from Access), so no, I
didn't use the built-in user-level security. I will checkout that resource
though. Thanks for your help.
-- Ian O'Betz Clear Results www.clearresults.net "Mary Chipman [MSFT]" <email@example.com> wrote in message news:firstname.lastname@example.org... > Did you use the built-in user-level security with Access? If so, then > SQL Server security works much the same way, with the ability to add > users to groups (called database roles in SQLS) where they inherit the > permissions granted to the role. You never want to grant permissions > directly to users because it becomes an administrative nightmare. > There are good resources on MSDN, see > http://msdn.microsoft.com/SQL/sqlsecurity/default.aspx to start with. > The major difference is that SQLS security is actually effective, and > failure to implement it correctly can compromise more than just the > database, so you'll want to learn as much as you can and plan > carefully before forging ahead. > > --Mary > > On Fri, 4 Mar 2005 10:40:41 -0700, "Ian O'Betz" > <webmaster@(NoSpam)premier-ed.com> wrote: > > >I've been asked to create an online database for my organization with Access > >as the front end. I'm pretty good with Access and moderate with SQL. In the > >database, I was told that different users need to have access to certain > >tables and columsn in those tables. Some users need to be able to create new > >users to have access. So my admin user needs to grant "grant" permission to > >another user. > > > >The users, however, are stored in a table in the database called Members. > >Certain members in the Members table need to have access to the database. > > > >My question(s): Where is a good place to start when designing something like > >this? Is there some kind of add-in I can import and use or is there some > >other direction I should be headed? Any direction is much appreciated. >