The setup:

• X users each using an instance of a MS Access front end MDE which connects to a single back end MDB.
• User-Level access/permission controls in place (e.g. Users, Trusted-Users, Admins).
• All changes are made via the Tool->Security->etc. MS Access menu options.
• All security is stored in a single secure.mdw file, to which all MDB instances connect.

The problem:

• When modifying a particular group’s permissions (e.g. Trusted-Users) – say, from being allowed to modify queries, to not be able to modify queries – the change works on the MDB instance the change was made (as expected), but not on the other instances (i.e. MDB instances on the other PCs). Basically, after the change is made, if we then go to one of the other instances and log in as an Admin, we see that the permissions for the group (Trusted-Users) have not changed.

• Interestingly (back on the first MDB instance), if we move a user out of one group and into another group, then move to another MDB instance, we now see this change HAS propagated to all other instances – thereby indicating they do point to the same MDW file.

Questions:

• Is it the case that modifying a group’s permissions on one MDB instance does NOT propagate to ALL MDB instances (even though they point to a single MDB file)?

• If yes, does this mean we must then re-install EVERY MDB instance after making a change to a group’s permissions?

• Or instead, is our approach incorrect? Should we modify group permissions in a different way?

If you need any further information let me know.

Many thanks.