What kind of file and folder permissions are necessary for ODBC?

Question

In our network, we are using an application that connects to an *.mdb access database through ODBC (User DSN).

The mdb is based on a subfolder of a share that is locally mapped to W:

What kind of minimum permissions do I have to give users on the subfolder so that they can use the application without limits, at the same time are not permitted to unintentionally do harm, such as delete the mdb file, or make any other changes to this folder?

Ideally, only the application could access the file, the users wouldn't have any direct access to it.

All ideas/advice welcome.

score 2 · Answer 1 · answered Nov 02 '15 at 15:40

In theory you shouldn't need to give the users any NTFS permissions on the subfolder, only on the mdb file itself. The Bypass Traverse Checking user right (which every user has by default) will allow the application/user to access the mdb file without having any permissions to the subfolder (or the parent folder for that matter). This means that you can configure the application's ODBC DNS with the path to the mdb file without giving the users direct access to the folder(s) where the file exists.

What kind of file and folder permissions are necessary for ODBC?

1 Answers1