Enforcing user's to choose password

K

Karen

Hi - what is the best way to ensure a user sets up a
password in an Access db?

If the user chooses not to set up a password, they can
still get into the Access db. I'm assuming most users
will be vigilant about managing their passwords, but want
to plan for the occasional user who will either forget or
will deliberately not set a password so they don't have
to remember it. If this happens, anyone with access to
their desktop can click the shortcut and get into our db
which is stored on a shared server.

Thanks,
Karen
 
T

TC

Karen said:
Hi - what is the best way to ensure a user sets up a
password in an Access db?

If the user chooses not to set up a password, they can
still get into the Access db. I'm assuming most users
will be vigilant about managing their passwords, but want
to plan for the occasional user who will either forget or
will deliberately not set a password so they don't have
to remember it. If this happens, anyone with access to
their desktop can click the shortcut and get into our db
which is stored on a shared server.
Click to expand...


Do you mean the *database* password (which just asks for a password), or the
*user-level security* password (which asks for a username *and* a password)?

- If the former, know this: The database password is easily cracked using
code that is freely available all over the web. (At least for access 97 &
earlier. Later versions need different code, but the principle is much the
same.)

- If the latter, I suspect you need to read the Access "Security FAQ". Links
to that document are posted regularly in this newsgroup.

HTH,
TC
 
J

Joseph Meehan

The only thing I can suggest is to blank out all the existing passwords
and see who does not complain or go to each user and check.
 
L

Lynn Trapp

Karen,
Unfortunately, with the Access security model, as long as you allow the
users to have access to the change password screen, there really isn't any
way to force users to create a password. If you, as administrator, want to
manage their passwords for them, you can block access to the change password
screen and require them to send you a new password when they want to change
it. That way you can always set them up with a password.
 
L

Lynn Trapp

If you get no error, then their password is
blank - throw up a message advising the user of the evils of having no
password.
Click to expand...

Or threaten the removal of body parts if they don't have a password.... <g>
 
J

Joan Wild

Lynn Trapp said:
Or threaten the removal of body parts if they don't have a password....
Click to expand...
<g>


Ya know, I originally typed 'throw up a nasty message', but thought better
of it.
 
T

TC

Count the # of successful logons, then delete the user from the workgroup
file!
(assuming that is possible at that point in time - I've never tried)

"You have THREE blank-password logons to go ..."
"You have TWO blank-password logons to go ..."
!

TC
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Checking a users password 5
Password Question/Access 2007 3
Enforce specific password complexity in user-level security 1
Exporting data with vba from Excel to an Access 2007 db with password 8
2 user level passwords and a system password still can't run avbscript 0
Workgroup file for one db only (not to apply to other dbs) 2
Set password for groups 2
password required for one user and not others (Access 2003) 3

Top