Access数据库安全性问题 [英] Access Database Security Question

问题描述

我在Access 2003中有一个数据库，我只希望某些人能够访问. 在数据库中，我有一个表，其中列出了应该能够访问数据库的人员. (Tbl_BIRT_Users).该表包含其名称，ntlogin和电子邮件地址.它还有一个管理员"字段.

I have a database in Access 2003 that I only want certain people to be able to access. In my database I have a table which lists the people that should be able to access the database. (Tbl_BIRT_Users). The table contains their name, ntlogin and email address. It also has an 'adminstrator' field.

我的问题分为两个部分:

My question has two parts:

1-打开数据库时，如何获取该人的ntlogin(环境用户名)并确保该人有权使用数据库?

1 - On opening the database how can I get it to lookup the ntlogin (environ username) of the person and ensure that that person is authorised to use the database?

2-我需要数据库查看管理员"的是/否"字段，并授予对非管理员的只读访问权限和对管理员的完全访问权限.

2 - I need the database to look at the 'administrator' Yes/No field and grant read only access to non admins and full access to admins.

谢谢！

推荐答案

使用API​​调用获取登录名- API:获取登录名您可以在命令提示符处更改环境变量，然后，如果从命令提示符处启动Access执行，则Access将使用伪造的环境变量.

Use an API call to get the login name - API: Get Login name You can change environment variables while at the command prompt and then, if start Access executing from the command prompt, Access will use the spoofed environment variable.

还有一些方法可以轻松打破表驱动的安全性，例如用户将后端数据库带到Access的零售副本中，更改表中的值并将数据库带回办公室.

Also there are ways of easily breaking table driven security such as the user taking the backend database home to a retail copy of Access resides, changing the values in the tables and bringing the database back to the office.

这篇关于Access数据库安全性问题的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！