Wayne <cq*******@volc anomail.comwrot e in news:1183671296 .673111.180040
@x35g2000prf.go oglegroups.com:
Can anyone point me to any info on the pros and cons of upsizing small
to medium size databases to SQL Server?
If the user base is never going to be more than about 10, the app
isn't totally mission critical and the record count will never get
into the hundreds of thousands, is upsizing even worth considering?
Any help is appreciated.
When we grant SQL permissions to users those permissions are independent
of Access (or any other application, for that matter).
If we create an ADP and connect using the same connection values we have
used in another Access application then all the objects for which we have
permissions will be open to us in that new ADP. But we will not be
constrained in our interaction with these objects by the other Access
application.
We may damage the data; we may have data available to us which we should
not.
I believe ODBC connections can be exploited in the same way, but I am not
familiar enough with ODBC to state that as a certainty.
A solution is to use MS-SQL Application Roles. When we use Application
Roles, a user has no permissions other than to log on. It is the
Application that has or seems to have permissions. Beyond the
application, (in a new ADP for example), the user cannot even see the
database objects, much less interact with them.
Access and Application Roles do not seem to mix well because Application
Roles give permissions to connections and Access may use many default
connections at the same time. Coding to grant those permissions to
connections used for Combo-Boxes, for example, may be a nightmare. (As an
aside I might point out that I am a very experienced VBA coder.) I
estimate using Applications Roles may increase development time by a
factor of three or more.
For these reasons I have stopped recommending the use of Access and MS-
SQL together, although I still enhance and maintain ADP applications for
which I have already wrestled with and defeated, more or less, the
problems of implementing Application Roles.
I have not studied this problem for more than a year; it's possible that
Microsoft has a new solution, or that an old solution existed about which
I am unaware.
But Microsoft's retreat from APDs causes me to guess that this is not
true.
As I pointed out I am not totally clear about how this relates to ODBC
connections; the little I know suggests the problem with be similar, but
I will emphasize the "little I know" here.
--
lyle fairfield
Ceterum censeo Redmond esse delendam