473,698 Members | 2,445 Online
Bytes | Software Development & Data Engineering Community
+ Post

Home Posts Topics Members FAQ

Securing A Folder On A Server

Tom
Can anyone give me any advice on how to secure a folder on a network server
so that documents in the folder can only be opened through an Access
database or by the database admin. I need to store MS Word docs in a folder
on a network server. The database admin will save the docs to the folder.
The docs must be available to Word automation out of a specific Access
database and available to the database admin out of MS Word. Only users of
the database must be able to get to the docs from the database and no one
other than the database admin must be able to get to the docs from MS Word.
Access to the folder via Internet Explorer must be blocked to everyone
except perhaps the database admin.

Thanks to all who can help!

Tom
Nov 13 '05 #1
7 2210
Tom,

Try using NTFS folder and file permissions. For example, if you just want
the domain Admin user to have access to a specific folder, then add the
Admin user to have full access to the folder (including subfolders and
files); meanwhile (after you add the Admin user), try removing the
'Everyone' group. Do some research on the Internet if you are unfamiliar
with NTFS folder and file permissions as well. After you remove the
'Everyone' group, only the Admin user should have access. There are other
NTFS folder and file permissions, such as: Read-Only, List Folder Contents,
etc. The permissions give you precise control of what specific users and
groups permissions are enabled.

Best regards,

Todd
"Tom" <tm*****@nospam .please> wrote in message
news:6C******** ********@newsre ad1.news.pas.ea rthlink.net...
Can anyone give me any advice on how to secure a folder on a network
server
so that documents in the folder can only be opened through an Access
database or by the database admin. I need to store MS Word docs in a
folder
on a network server. The database admin will save the docs to the folder.
The docs must be available to Word automation out of a specific Access
database and available to the database admin out of MS Word. Only users of
the database must be able to get to the docs from the database and no one
other than the database admin must be able to get to the docs from MS
Word.
Access to the folder via Internet Explorer must be blocked to everyone
except perhaps the database admin.

Thanks to all who can help!

Tom

Nov 13 '05 #2
If you are talking about Access Database "Admin", this security only works
on Access databases and _not_ other files.

You will need to use the network (Windows server?) security to secure the
Word docs.

--
HTH
Van T. Dinh
MVP (Access)
"Tom" <tm*****@nospam .please> wrote in message
news:6C******** ********@newsre ad1.news.pas.ea rthlink.net...
Can anyone give me any advice on how to secure a folder on a network server so that documents in the folder can only be opened through an Access
database or by the database admin. I need to store MS Word docs in a folder on a network server. The database admin will save the docs to the folder.
The docs must be available to Word automation out of a specific Access
database and available to the database admin out of MS Word. Only users of
the database must be able to get to the docs from the database and no one
other than the database admin must be able to get to the docs from MS Word. Access to the folder via Internet Explorer must be blocked to everyone
except perhaps the database admin.

Thanks to all who can help!

Tom

Nov 13 '05 #3
Tom
Todd,

Thank you for responding!

I will Google to research NTFS folder and file permissions as you suggested.
Would you help me get started with just a blurb about:
1. what is NTFS folder
2. what is a domain Admin

and what can you tell me about the database accessing the folder?

Thanks,

Tom
"Todd Shillam" <tshillam(@)hot mail.com> wrote in message
news:Jf******** ************@co mcast.com...
Tom,

Try using NTFS folder and file permissions. For example, if you just want
the domain Admin user to have access to a specific folder, then add the
Admin user to have full access to the folder (including subfolders and
files); meanwhile (after you add the Admin user), try removing the
'Everyone' group. Do some research on the Internet if you are unfamiliar
with NTFS folder and file permissions as well. After you remove the
'Everyone' group, only the Admin user should have access. There are other
NTFS folder and file permissions, such as: Read-Only, List Folder Contents, etc. The permissions give you precise control of what specific users and
groups permissions are enabled.

Best regards,

Todd
"Tom" <tm*****@nospam .please> wrote in message
news:6C******** ********@newsre ad1.news.pas.ea rthlink.net...
Can anyone give me any advice on how to secure a folder on a network
server
so that documents in the folder can only be opened through an Access
database or by the database admin. I need to store MS Word docs in a
folder
on a network server. The database admin will save the docs to the folder. The docs must be available to Word automation out of a specific Access
database and available to the database admin out of MS Word. Only users of the database must be able to get to the docs from the database and no one other than the database admin must be able to get to the docs from MS
Word.
Access to the folder via Internet Explorer must be blocked to everyone
except perhaps the database admin.

Thanks to all who can help!

Tom


Nov 13 '05 #4
NTFS is a file system used on your PC (or server), just as are FAT and
FAT32. your network administrator can give you more info, including what
system is used on your company's network.

suggest you take a look at Garry Robinson's Real World Microsoft Access
Database Protection and Security, specifically Chapter 12. it talks about
how your network admin can set up user groups with appropriate permissions
that can probably accomplish what you're describing.

hth
"Tom" <tm*****@nospam .please> wrote in message
news:6C******** ********@newsre ad1.news.pas.ea rthlink.net...
Can anyone give me any advice on how to secure a folder on a network server so that documents in the folder can only be opened through an Access
database or by the database admin. I need to store MS Word docs in a folder on a network server. The database admin will save the docs to the folder.
The docs must be available to Word automation out of a specific Access
database and available to the database admin out of MS Word. Only users of
the database must be able to get to the docs from the database and no one
other than the database admin must be able to get to the docs from MS Word. Access to the folder via Internet Explorer must be blocked to everyone
except perhaps the database admin.

Thanks to all who can help!

Tom

Nov 13 '05 #5
Tom
Thanks for responding, Tina!

I haven't done any research yet. I understand the concept of user groups
with appropriate permissions. Is there such a thing as a database with
appropriate permissions?

Tom

"tina" <no****@address .com> wrote in message
news:zl******** ************@bg tnsc05-news.ops.worldn et.att.net...
NTFS is a file system used on your PC (or server), just as are FAT and
FAT32. your network administrator can give you more info, including what
system is used on your company's network.

suggest you take a look at Garry Robinson's Real World Microsoft Access
Database Protection and Security, specifically Chapter 12. it talks about
how your network admin can set up user groups with appropriate permissions
that can probably accomplish what you're describing.

hth
"Tom" <tm*****@nospam .please> wrote in message
news:6C******** ********@newsre ad1.news.pas.ea rthlink.net...
Can anyone give me any advice on how to secure a folder on a network

server
so that documents in the folder can only be opened through an Access
database or by the database admin. I need to store MS Word docs in a

folder
on a network server. The database admin will save the docs to the folder. The docs must be available to Word automation out of a specific Access
database and available to the database admin out of MS Word. Only users of the database must be able to get to the docs from the database and no one other than the database admin must be able to get to the docs from MS

Word.
Access to the folder via Internet Explorer must be blocked to everyone
except perhaps the database admin.

Thanks to all who can help!

Tom


Nov 13 '05 #6
i've never used Acess's user-level security, so i can't answer any questions
about it. but AFAIK, you can't control *server* permissions from within an
Access database. if you want to control user access to files that are not
secured Access databases, i think you're going to have to do it from the
server's security.

to get a more definite answer, suggest you post your question in the
microsoft.pulic .access.securit y newsgroup; there are MVPs there who are real
security gurus.

hth
"Tom" <tm*****@nospam .please> wrote in message
news:oN******** *********@newsr ead1.news.pas.e arthlink.net...
Thanks for responding, Tina!

I haven't done any research yet. I understand the concept of user groups
with appropriate permissions. Is there such a thing as a database with
appropriate permissions?

Tom

"tina" <no****@address .com> wrote in message
news:zl******** ************@bg tnsc05-news.ops.worldn et.att.net...
NTFS is a file system used on your PC (or server), just as are FAT and
FAT32. your network administrator can give you more info, including what
system is used on your company's network.

suggest you take a look at Garry Robinson's Real World Microsoft Access
Database Protection and Security, specifically Chapter 12. it talks about
how your network admin can set up user groups with appropriate permissions that can probably accomplish what you're describing.

hth
"Tom" <tm*****@nospam .please> wrote in message
news:6C******** ********@newsre ad1.news.pas.ea rthlink.net...
Can anyone give me any advice on how to secure a folder on a network server
so that documents in the folder can only be opened through an Access
database or by the database admin. I need to store MS Word docs in a

folder
on a network server. The database admin will save the docs to the

folder. The docs must be available to Word automation out of a specific Access
database and available to the database admin out of MS Word. Only
users of the database must be able to get to the docs from the database and no one other than the database admin must be able to get to the docs from MS

Word.
Access to the folder via Internet Explorer must be blocked to everyone
except perhaps the database admin.

Thanks to all who can help!

Tom



Nov 13 '05 #7
Hi Tom,

As others have said, this is a matter of network permissions rather than
anything to do with Access. If you have a good network administrator
s/he will know whether it's possible and if so how; I guess it might
involve putting the database users in an AD/NT group that can read files
in the folder (otherwise Access won't be able to open them) but cannot
browse the folder (hence cannot see the files to open them from Word or
Windows Explorer).

If that's not possible, things could get hairy. Possibly you could have
to have Access, running under the user's account, launch and automate an
instance of Word running under a different account. See
http://support.microsoft.com/kb/288367/EN-US/ for details. However, I'm
not sure this would do the job.I get the impression that the setup
process described in this article would mean that any time Word was
launched on the workstation it would run under the different account -
which means that users *would* be able to open the verboten files from
an interactive Word session.

Alternative approaches might include:
-Forget about securing the folder. Instead, password-protect the Word
documents and have the Access application know the password but not the
users.
-Don't store the documents on the network at all. Either keep the
contents of each .doc file in a secure database (e.g. SQL Server) and
write it to a temporary folder just before they're needed for
automation, or else write VBA code that automates Word to construct each
document on the fly when needed, using information stored in database
tables.

On Sun, 30 Jan 2005 00:10:42 GMT, "Tom" <tm*****@nospam .please> wrote:
Can anyone give me any advice on how to secure a folder on a network server
so that documents in the folder can only be opened through an Access
database or by the database admin. I need to store MS Word docs in a folder
on a network server. The database admin will save the docs to the folder.
The docs must be available to Word automation out of a specific Access
database and available to the database admin out of MS Word. Only users of
the database must be able to get to the docs from the database and no one
other than the database admin must be able to get to the docs from MS Word.
Access to the folder via Internet Explorer must be blocked to everyone
except perhaps the database admin.

Thanks to all who can help!

Tom


--
John Nurick [Microsoft Access MVP]

Please respond in the newgroup and not by email.
Nov 13 '05 #8

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

12
1817
by: Prabhat | last post by:
Hi All, I have a website setup which has MS-Access DB. The web pages are in ASP and uses ADO to connect to DB. The DB is located in the Folder "/Database". I have the Connection string setup in the Global.asa file. As my virtual Directory is "/" and all files and folders including the "Database" folder are with in the folder so any one who knows the Database folder name and database name can directly download the database from the...
7
3234
by: Andy | last post by:
Hi ! I split a simple Access2K database ( shared on network )and placed the files thusly : x:\app\frontend.mdb x:\app\back\backend.mdb Problem : I once read an article that laid out a "permission" scheme that ,
11
3428
by: Wm. Scott Miller | last post by:
Hello all! We are building applications here and have hashing algorithms to secure secrets (e.g passwords) by producing one way hashes. Now, I've read alot and I've followed most of the advice that made sense. One comment I've seen alot about is "securing the hashing routine" but no-one explains how to accomplish this. So how do I secure my hashing routine? Do I use code access security, role based security, ACLs, etc or combination?...
2
2150
by: Ian B | last post by:
This is a basic question for anyone who knows what they're doing with web server admin so hopefully someone will be able to assist me here!... I have a www based asp.net application which allows users to upload images (screen captures for fault reporting). These files get saved in the folder www.<domain>.co.uk/uploadedfiles/<filename>. I want to prevent public users from being able to see these uploaded files but I want to provide an...
9
1325
by: Brian Russell | last post by:
I develop Web applications locally on my Windows XP (SP1) laptop using Visual Studio. My company is concerned about security, especially if the laptop is compromised, so I should either encrypt all files on my computer using the Encrypting File System (EFS) or I should get the code off my computer. I tried to encrypt the wwwroot directory but I get a popup when running a project that says "Error while trying to run project: Unable to...
2
1948
by: Vaibhav Shah | last post by:
Hi, Can we secure HTML pages on a web site using asp.net? We have a requirement in which we want to display a login page before a visitor can view any HTML page on our website. WE have tried implementing HTML pages in a direcotry and seucring that directory but still, if the visitor accesses the HTML page directly, using URL, he can access this page.
2
1103
by: Chris | last post by:
I want to have a folder with XML files that I don't want to be publically accessible but I want my application to be able to read. My initial thoughts are to stick the files outside the web tree but IIS 6 doesn't allow allow parent path with server mappath. I don't want to enable it but I don't want semi-hardcoded paths either. Does anyone have any suggestions?
7
1840
by: judelakmal | last post by:
We have an access database installed in the server. Multiple users have been recieved rights to access the folder which contain that database. how can we stop accessing this shared folder by other users. Regards Jude
0
1041
by: arizal | last post by:
Hi, I have a folder in a server where all my php files reside. I mean the whole content of the web site is in that folder. So the problem is that if someone knows the filename of any php file, they can directly open the file without login in . I know that there are couple of ways to avoid this. Like adding a line of code to check session at the start of each page. Or to make an .htaccess file. I am aware of the first method which is using...
0
8675
marktang
by: marktang | last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However, people are often confused as to whether an ONU can Work As a Router. In this blog post, we’ll explore What is ONU, What Is Router, ONU & Router’s main usage, and What is the difference between ONU and Router. Let’s take a closer look ! Part I. Meaning of...
0
8604
by: Hystou | last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can effortlessly switch the default language on Windows 10 without reinstalling. I'll walk you through it. First, let's disable language synchronization. With a Microsoft account, language settings sync across devices. To prevent any complications,...
1
8897
by: Hystou | last post by:
Overview: Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows Update option using the Control Panel or Settings app; it automatically checks for updates and installs any it finds, whether you like it or not. For most users, this new feature is actually very convenient. If you want to control the update process,...
0
7729
agi2029
by: agi2029 | last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing, and deployment—without human intervention. Imagine an AI that can take a project description, break it down, write the code, debug it, and then launch it, all on its own.... Now, this would greatly impact the work of software developers. The idea...
1
6521
isladogs
by: isladogs | last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM). In this session, we are pleased to welcome a new presenter, Adolph Dupré who will be discussing some powerful techniques for using class modules. He will explain when you may want to use classes instead of User Defined Types (UDT). For example, to manage the data in unbound forms. Adolph will...
0
4370
by: TSSRALBI | last post by:
Hello I'm a network technician in training and I need your help. I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs. The last exercise I practiced was to create a LAN-to-LAN VPN between two Pfsense firewalls, by using IPSEC protocols. I succeeded, with both firewalls in the same network. But I'm wondering if it's possible to do the same thing, with 2 Pfsense firewalls...
0
4619
by: adsilva | last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
1
3050
by: 6302768590 | last post by:
Hai team i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated we have to send another system
3
2002
bsmnconsultancy
by: bsmnconsultancy | last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating effective websites that not only look great but also perform exceptionally well. In this comprehensive...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.