Access 2003 security

Paradigm wrote:
I distribute some Access 2K applications as mde files using the Access2K
runtime.
Now that I am thinking of updating to Access 2003 I find that, when I launch
an mde file, I get a number of warning messages about macros and security
which are a nuisance to the users.
Is there any way of avoiding these messages?
Alec

What I do is use selfcert.exe to create a digital signature that can be
applied to the mdb file. Another twist I came across recently was that
for a certain machine I had to run mmc (Microsoft Management Console)
using the Add/Remove Snap-in option to drag and drop the digital
signature into a Trusted Certificates category. So far I have been
able to get rid of all the warnings. Only a few machines have needed
the digital signature fix so I create the digital signature with the
user's name. I haven't had to do this in a more automated way yet. I
hope this helps.

James A. Fortune

James, you have selfcert.exe generated certs to work on PCs other than the one the cert
was generated on? That's not supposed to happen...

The "proper" procedure is to get a cert from a Certificate Authority but the cost/process
may be unreasonable for some applications.

There are work arounds ranging from modifying registry settings (that is considered rude
to do to a customer/client without their approval) to using Automation to start Access and
modify the security settings for the immediate session.

If you search this group on "macro security 2003" you should get lots of info.

--
'---------------
'John Mishefske
'---------------

Nov 13 '05 #3

Paradigm wrote:
I distribute some Access 2K applications as mde files using the Access2K
runtime.
Now that I am thinking of updating to Access 2003 I find that, when I launch
an mde file, I get a number of warning messages about macros and security
which are a nuisance to the users.
Is there any way of avoiding these messages?
Alec

What I do is use selfcert.exe to create a digital signature that can be
applied to the mdb file. Another twist I came across recently was that
for a certain machine I had to run mmc (Microsoft Management Console)
using the Add/Remove Snap-in option to drag and drop the digital
signature into a Trusted Certificates category. So far I have been
able to get rid of all the warnings. Only a few machines have needed
the digital signature fix so I create the digital signature with the
user's name. I haven't had to do this in a more automated way yet. I
hope this helps.

James A. Fortune

Nov 13 '05 #4

jimfortune

John Mishefske wrote:

James, you have selfcert.exe generated certs to work on PCs other than the one the cert
was generated on? That's not supposed to happen...
I'm sorry for being unclear on this point. I use selfcert.exe on the
target PC. After that, I usually modify the mdb by importing the
changes rather than compacting so that I don't have to create the
Digital Signature again.
The "proper" procedure is to get a cert from a Certificate Authority but the cost/process
may be unreasonable for some applications.
I'm not aware of any EULA's being violated by using selfcert.exe. For
a custom app selfcert.exe seems quite "proper." I certainly trust the
author :-). In what situations would a cert from a Certificate
Authority be useful?
There are work arounds ranging from modifying registry settings (that is considered rude
to do to a customer/client without their approval) to using Automation to start Access and
modify the security settings for the immediate session.
I definitely don't want to change any registry settings. With
selfcert.exe I don't have to change the security settings at all.
If you search this group on "macro security 2003" you should get lots of info.

That's a possibility. I'm more interested in why I had to do the
Trusted Sources for only one particular machine.

James A. Fortune

Nov 13 '05 #5

jimfortune

John Mishefske wrote:

James, you have selfcert.exe generated certs to work on PCs other than the one the cert
was generated on? That's not supposed to happen...
I'm sorry for being unclear on this point. I use selfcert.exe on the
target PC. After that, I usually modify the mdb by importing the
changes rather than compacting so that I don't have to create the
Digital Signature again.
The "proper" procedure is to get a cert from a Certificate Authority but the cost/process
may be unreasonable for some applications.
I'm not aware of any EULA's being violated by using selfcert.exe. For
a custom app selfcert.exe seems quite "proper." I certainly trust the
author :-). In what situations would a cert from a Certificate
Authority be useful?
There are work arounds ranging from modifying registry settings (that is considered rude
to do to a customer/client without their approval) to using Automation to start Access and
modify the security settings for the immediate session.
I definitely don't want to change any registry settings. With
selfcert.exe I don't have to change the security settings at all.
If you search this group on "macro security 2003" you should get lots of info.

That's a possibility. I'm more interested in why I had to do the
Trusted Sources for only one particular machine.

James A. Fortune

Nov 13 '05 #6

John Mishefske wrote:

James, you have selfcert.exe generated certs to work on PCs other than the one the cert
was generated on? That's not supposed to happen...

I'm sorry for being unclear on this point. I use selfcert.exe on the
target PC. After that, I usually modify the mdb by importing the
changes rather than compacting so that I don't have to create the
Digital Signature again.

Ahh.. I see. I haven't tried that...
The "proper" procedure is to get a cert from a Certificate Authority but the cost/process
may be unreasonable for some applications.

I'm not aware of any EULA's being violated by using selfcert.exe. For
a custom app selfcert.exe seems quite "proper." I certainly trust the
author :-). In what situations would a cert from a Certificate
Authority be useful?

Didn't mean to imply anything nefarious; only that Microsoft would encourage you to follow
a procdure to get a cert. I don't do it since my clients aren't interested in the extra
expense and lack of benefits for our particular market.

There are work arounds ranging from modifying registry settings (that is considered rude
to do to a customer/client without their approval) to using Automation to start Access and
modify the security settings for the immediate session.

I definitely don't want to change any registry settings. With
selfcert.exe I don't have to change the security settings at all.

Agreed.

If you search this group on "macro security 2003" you should get lots of info.

That's a possibility. I'm more interested in why I had to do the
Trusted Sources for only one particular machine.

Not sure about that; perhaps someone reading this has experienced this problem and
identified the cause?

--
'---------------
'John Mishefske
'---------------

Nov 13 '05 #7

John Mishefske wrote:

James, you have selfcert.exe generated certs to work on PCs other than the one the cert
was generated on? That's not supposed to happen...

I'm sorry for being unclear on this point. I use selfcert.exe on the
target PC. After that, I usually modify the mdb by importing the
changes rather than compacting so that I don't have to create the
Digital Signature again.

Ahh.. I see. I haven't tried that...
The "proper" procedure is to get a cert from a Certificate Authority but the cost/process
may be unreasonable for some applications.

I'm not aware of any EULA's being violated by using selfcert.exe. For
a custom app selfcert.exe seems quite "proper." I certainly trust the
author :-). In what situations would a cert from a Certificate
Authority be useful?

Didn't mean to imply anything nefarious; only that Microsoft would encourage you to follow
a procdure to get a cert. I don't do it since my clients aren't interested in the extra
expense and lack of benefits for our particular market.

There are work arounds ranging from modifying registry settings (that is considered rude
to do to a customer/client without their approval) to using Automation to start Access and
modify the security settings for the immediate session.

I definitely don't want to change any registry settings. With
selfcert.exe I don't have to change the security settings at all.

Agreed.

If you search this group on "macro security 2003" you should get lots of info.

That's a possibility. I'm more interested in why I had to do the
Trusted Sources for only one particular machine.

Not sure about that; perhaps someone reading this has experienced this problem and
identified the cause?

--
'---------------
'John Mishefske
'---------------

Nov 13 '05 #8

by: Noesis Strategy | last post by:

When I ordered my new laptop, Sony didn't offer Access 2003 in its bundles. Recently, I have begun to design Access databases using an copy of Access 2002 from my previous laptop. It works fine,...

Framework 1.1 / Access Unspecified Error

by: RM | last post by:

Had VS .Net 2002 installed on W2k Server SP3 and supported a number of web sites. Installed VS .Net 2003 on Friday and now all web sites using .Net & MS ACCESS get this strange error upon open. ...

ASP.NET

Deploying Data Access Application Block

by: Rachel | last post by:

Hi, I am using the data access application block successfully in our development environment, however when I deploy to our testing server as Private Assemblies I keep getting the following ...

ASP.NET

Access 2002 vs. 2003

by: Neil | last post by:

We are running an Access 2000 MDB with a SQL 7 back end. Our network guy is upgrading to Windows Server 2003 and wants to upgrade Office and SQL Server at the same time. We're moving to SQL Server...

Created on Access 2003, but.......................

by: Mell via AccessMonster.com | last post by:

I created databases on Access 2003 and I want to deploy them to users. My code was also done using 2003. If they have Ms Access 2000 or higher, will they be able to use these dbs with all code,...

Ms Access 2003

by: Mell via AccessMonster.com | last post by:

Is there a way to find out where an application was created from? i.e. - work or home i.e. - if application sits on a (work) server/network, the IT people know the application is sitting...

Converting A2K to Access 03

by: Reggie | last post by:

Hi and TIA. I developed several A2K dbs which are now being run on my clients computer which have been upgraded to Access 03. I'm not sure exactly what they mean but of you know or could point me...

Transfering access records between databases via email?

by: Walshi | last post by:

Hi all, I'm a relative newby to access and VBA etc. My forms and tables etc are working great and saving lots of time...However... I have two databases with the exact same table format. I want...

Access 2003 Run-Time

by: Prakash | last post by:

I am developing an HR package under Access 2003 for a client but do not want to give him the source code. I understand that under these circumstances I would need to compile my package, thus...

Thinking of upgrading runtime from Access 97, any comparisons / tips?

by: ARC | last post by:

Hello All, I have a major application for quoting and invoicing that is written in Access 97 (both front and back ends). I have a user base of over 300 customers, and currently I don't require...

Migrating Website to Cloud - Emmanuel Katto

by: emmanuelkatto | last post by:

Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud. Please let me know. Thanks! Emmanuel

General

Navigating the Data Structures and Algorithms (DSA)

by: BarryA | last post by:

What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...

Algorithms / Advanced Math

Looking to do Android software development, any suggestions? Is flutter better?

by: nemocccc | last post by:

hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?

General

How to build RAID in BIOS?

by: Hystou | last post by:

There are some requirements for setting up RAID: 1. The motherboard and BIOS support RAID configuration. 2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...

Computer Hardware

Maximizing Business Potential: The Nexus of Website Design and Digital Marketing

by: jinu1996 | last post by:

In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...

Online Marketing

The easy way to turn off automatic updates for Windows 10/11

by: Hystou | last post by:

Overview: Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows...

Windows Server

Discussion: How does Zigbee compare with other wireless protocols in smart home applications?

by: tracyyun | last post by:

Dear forum friends, With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each...

General

AI Job Threat for Devs

by: agi2029 | last post by:

Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing,...

Career Advice

Access Europe - Using VBA to create a class based on a table - Wed 1 May

by: isladogs | last post by:

The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM). In this session, we are pleased to welcome a new...