Security warning

[Mike Revis]

Hi Group,
This is probably a windows question but here goes anyway.
Win xp access 2007.

I have several computers that do not have Access installed.
They do have Microsoft Access Runtime 2007 installed.
When I open the db on one of these computers I get a popup security warning.
"apotential security concern has been identified.....etc. Do you want to
continue?"

The windows security center was not much help that I can see.

If anyone can help me get rid of that warning I will be eternally grateful.

As always any thoughts, comments or suggestions are welcome.

Best regards,
Mike

 

[Douglas J. Steele]

I believe what Jeff Conrad has at http://accessjunkie.com/faq_33.aspx
addresses this issue.

 

[Mike Revis]

Doug,
Thanks for your response.

Unless I'm missing something the link to Jeff's page has to do with setting
a trusted location from within the full version of Access. I can do that.
I'm not sure how I would go about making registry changes on a computer that
is in New York. I'm in Seattle.

I am trying to get rid of the warning that shows up on a computer that does
not have the full version of Access and is using the 2007 runtime.

The back end is on a computer that has the full program so I can set the
trusted location.

The front ends are on computers using the Access 2007 runtime.

Regards,
Mike

 

[AccessVandal via AccessMonster.com]

Full version or Runtime version, both will work. I'm sure you know how to
create a script and with this, you can ask the users to download it at your
web site or e-mail to them than ask them to run your script. They the users,
must be have administrator or the admin user privileges else may have to ask
their IT to help.

 

[Douglas J. Steele]

Shouldn't even need a script. Export the key as a .reg file and have them
double-click on it to update the registry.

And since we're talking about HKCU (the Current User hive in the registry),
I wouldn't expect they'd even need Administrator. (Of course, some places do
use GPOs to prevent users from updating the registry themselves, so you
could be right)

 

[AccessVandal via AccessMonster.com]

Good point Doug, but I'm not certain about those users with Full Access
Version. They may have their own Trusted Location.

Importing a Reg Key may override their existing Trusted Location. Does
importing .reg file work this way? I'm not sure about this.

 

[Douglas J. Steele]

I don't have Access 2007 installed on this machine, so I can't check, but it
looks as though there are multiple keys Location0, Location1, Location2,
etc. so yes, I guess it's possible (likely) that you'd override one of the
user's existing locations.

 

[Mike Revis]

You guys are waaaaaaaay way over my head.

I think someone has already used the phrase "clueless". I mean me not you.

Regards,
Mike

 

[Tony Toews [MVP]]

This is probably a windows question but here goes anyway.
Win xp access 2007.

I have several computers that do not have Access installed.
They do have Microsoft Access Runtime 2007 installed.
When I open the db on one of these computers I get a popup security warning.
"apotential security concern has been identified.....etc. Do you want to
continue?"

The windows security center was not much help that I can see.

If anyone can help me get rid of that warning I will be eternally grateful.

The next version of the Auto FE Updater, due out in a three or four
days, will have a setting to set the FE folder on the client system as
an A2007 trusted location.

See my sig for info on the current version.

Tony

--
Tony Toews, Microsoft Access MVP
Tony's Main MS Access pages - http://www.granite.ab.ca/accsmstr.htm
Tony's Microsoft Access Blog - http://msmvps.com/blogs/access/
For a free, convenient utility to keep your users FEs and other files
updated see http://www.autofeupdater.com/
Granite Fleet Manager http://www.granitefleet.com/

 

[Tony Toews [MVP]]

Full version or Runtime version, both will work. I'm sure you know how to
create a script and with this, you can ask the users to download it at your
web site or e-mail to them than ask them to run your script. They the users,
must be have administrator or the admin user privileges else may have to ask
their IT to help.

Trouble is if the FE is installed in the users local applications
folder this will be specific by user name. I don't know if you can
set up a script to do this.

AFAIK you don't need to be an admin to set this registry entry as it
is in HKCU.

Tony
--
Tony Toews, Microsoft Access MVP
Tony's Main MS Access pages - http://www.granite.ab.ca/accsmstr.htm
Tony's Microsoft Access Blog - http://msmvps.com/blogs/access/
For a free, convenient utility to keep your users FEs and other files
updated see http://www.autofeupdater.com/
Granite Fleet Manager http://www.granitefleet.com/

 

[Tony Toews [MVP]]

I don't have Access 2007 installed on this machine, so I can't check, but it
looks as though there are multiple keys Location0, Location1, Location2,
etc. so yes, I guess it's possible (likely) that you'd override one of the
user's existing locations.

You are not restricted to Location0, 1, 2, etc. You can use any
registry key you want. (Which is what I originally thought too.)

One outfit I know of decided to use a GUID. A2007 looks at all the
keys under the main key
HKCU\Software\Microsoft\Office\12.0\Access\Security\Trusted
Locations

The next version of the Auto FE Updater, due out in three or five
days, will have an option to set this registry key. I chose to use a
key that was the same name as the INI file which is used to control
the Auto FE Updater. I also set the Description and data registry
keys so anyone looking at the registry will know exactly what happened
and when.

Tony
--
Tony Toews, Microsoft Access MVP
Tony's Main MS Access pages - http://www.granite.ab.ca/accsmstr.htm
Tony's Microsoft Access Blog - http://msmvps.com/blogs/access/
For a free, convenient utility to keep your users FEs and other files
updated see http://www.autofeupdater.com/
Granite Fleet Manager http://www.granitefleet.com/

 

[Douglas J. Steele]

Trouble is if the FE is installed in the users local applications
folder this will be specific by user name. I don't know if you can
set up a script to do this.

You mean knowing C:\Documents and Settings\Tony\My Documents\ for you vs.
C:\Documents and Settings\Tony\My Documents\ for me? The SpecialFolders
property of the WshShell object can give you any of the following:
AllUsersDesktop, AllUsersStartMenu, AllUsersPrograms, ,AllUsersStartup,
Desktop, Favorites, Fonts, MyDocuments, NetHood, PrintHood, Programs,
Recent, SendTo, StartMenu, Startup, Templates

Dim WshShell

Set WshShell = WScript.CreateObject("WScript.Shell")
MsgBox "Your documents are located at " &
WshShell.SpecialFolders("MyDocuments")

AFAIK you don't need to be an admin to set this registry entry as it
is in HKCU.

I believe that's true.

 

[Tony Toews [MVP]]

You mean knowing C:\Documents and Settings\Tony\My Documents\ for you vs.
C:\Documents and Settings\Tony\My Documents\ for me? The SpecialFolders
property of the WshShell object can give you any of the following:
AllUsersDesktop, AllUsersStartMenu, AllUsersPrograms, ,AllUsersStartup,
Desktop, Favorites, Fonts, MyDocuments, NetHood, PrintHood, Programs,
Recent, SendTo, StartMenu, Startup, Templates

Excellent. I figured there had to be a way.

Tony
--
Tony Toews, Microsoft Access MVP
Tony's Main MS Access pages - http://www.granite.ab.ca/accsmstr.htm
Tony's Microsoft Access Blog - http://msmvps.com/blogs/access/
For a free, convenient utility to keep your users FEs and other files
updated see http://www.autofeupdater.com/
Granite Fleet Manager http://www.granitefleet.com/