Hello,
We are using Access ADP as a front end, SQL Server 2000 as a back end.
We have a customer contact database. We would like to limit certain
users to only receive certain records based on Windows NT group
membership.
For example, Eastern Sales Group can see clients located in their
region, but they cannot see clients located in the Northern Region.
Is there an elegant way to do this? Below a two solutions which have
been proposed, but none seem to fit. Access is required as a Front End
for its ease of use.
*********
** 1 **
*********
Add an additional attribute (bit mask value) to tblCustomers, and
query appropriately based on the user's group membership.
Problem:
Access allows users direct access to the underlying table.
*********
** 2 **
*********
Create a separe table for each group (effectively splitting
tblCustomers into smaller, separate tables based on group access).
Then, apply SQL Server security on the objects to enforce the business
rules.
Problem:
Does this break Normal Form??? I've never seen a solution like this.
I've googled and found similar questions, but not a good solution.
Any suggestions would be appreciated.
Thanks,
Jeff
Jeffrey Walton
noloader.at.yahoo.com