A recent security audit pointed out that any user who has permissions to use Crystal Reports 9 can go to File->options->Database and give himself access to tables, which allows access to confidential data (Social Security numbers, etc). Is there a way to deny access to changing the options, or deny a user access to tables? There are lots of views, and we can control access to those.
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Security in Crystal Reports 9
- Thread starter bfloyd
- Start date
- Thread starter
- #2
Why not control access using the DBMS users & groups?
hth,
- Ido
Visual CUT & DataLink Viewer:
view, e-mail, export, burst, distribute, and schedule Crystal Reports.
hth,
- Ido
Visual CUT & DataLink Viewer:
view, e-mail, export, burst, distribute, and schedule Crystal Reports.
- Thread starter
- #4
Contact your DBA (the person who administers the Informix server for you).
Cheers,
- Ido
Visual CUT & DataLink Viewer:
view, e-mail, export, burst, distribute, and schedule Crystal Reports.
Cheers,
- Ido
Visual CUT & DataLink Viewer:
view, e-mail, export, burst, distribute, and schedule Crystal Reports.
- Thread starter
- #6
Trying to block access just in Crystal is of limited value because the same users would be able to connect using ODBC and a variety of othet tools (MS Access, Excel, ...).
Visual CUT & DataLink Viewer:
view, e-mail, export, burst, distribute, and schedule Crystal Reports.
Visual CUT & DataLink Viewer:
view, e-mail, export, burst, distribute, and schedule Crystal Reports.
- Status
Similar threads
- Locked
- Question
- Locked
- Question
- Locked
- Question
- Locked
- Question