Hi Ken,
The db opens to a switchboard form. I am trying (as much as possible) to
keep users from getting to the underlying objects in the db from the form.
1.) Tools | Startup...
Uncheck everything, including "Use Access Special Keys" and "Display
Database Window".
2.) Tools | Database Utilities | Make .MDE File...
First convert your DB to the Access 2002/2003 file format, if it is
currently in the Access 2000 file format (you can only create a .MDE file by
using the underlying file format for your version of Access). Second, make
sure any VBA code compiles without any errors. Then you are ready to try
creating the .mde file.
One benefit of creating a .mde file is that it effectively prevents your
users from opening forms, reports or modules in design view. However, it
provides no protection for tables, queries and macros. Convert any macros,
except Autoexec and/or Autokeys, to VBA code first, so that you will have
minimal exposure to the possiblity of a user mucking with your macros.
3.) Disable the Shift Bypass Key
Use this utility, which you can download from my web site:
http://www.accessmvp.com/TWickerath/downloads/Shiftkey2000.zip
This will prevent the trick of holding down the Shift key. However, keep in
mind that anyone who knows of this trick can easily re-enable the Shift key.
You can secure this setting, using Access User Level Security, but a
knowledgeable user could still get around this.
4.) Split database, with the back-end on a file server. The shared folder is
only made available to those with a need-to-know (ie. RWCD privileges *only*
for authorized users of your application). In addition, to help prevent a
user from accidently opening the BE database, you can add an Autoexec macro
that tell's 'em to get out (either displays a message box, using the MsgBox
function, or open a form). Disable the shift bypass key on the BE file as
well. No need to convert the BE to a .mde, as tables are not protected.
5.) Consider implementing Access MVP Tony Toews AutoFE Updater utility,
specifying the %AppData% path. This way, you only distribute a shortcut to
your users. When they double-click on their shortcut, the compiled .mde FE
database is automajically downloaded to a normally hidden folder on thier
PC's. So, out-of-sight, out-of-mind. It becomes a bit harder to muck with the
FE app. if they don't know where to find it. Only the more computer saavy
folks in your organization will be able to figure it out. I discuss this
utility in this article:
Implementing a Successful Multiuser Access/JET Application
http://www.accessmvp.com/TWickerath/articles/multiuser.htm
These steps will keep honest users out. It's up to your company's management
and/or HR department to keep dishonest people from being hired in the first
place, and to deal with them in an appropriate manner, if they are discovered.
If you send me a private e-mail message, with a valid reply-to address, I
will send you a sample of mine for you to test out as a normal user. It
incorporates the above features.
Tom Wickerath
Microsoft Access MVP
http://www.accessmvp.com/TWickerath/
http://www.access.qbuilt.com/html/expert_contributors.html
__________________________________________