Any user who knows the database password and has access to the Unset Database Password command can change or clear the password, unless you remove the Administer permission on the database for all users and groups except the database administrator. Similarly, if you want to prevent users from setting a password on a database, remove the Administer permission on the database for those users or groups. By default, the Users group, the Admins group, and the creator (owner) of the database all have Administer permission on the database. For more information about permissions, see "Permissions" later in this chapter. Additionally, tools are available for Microsoft Office 2000 that allow system administrators to disable the user interface for setting database and document passwords. For information about how administrators can disable the password user interface, see the Microsoft Office 2000 Resource Kit (Microsoft Press, 1999).
Note You can remove the Administer permission without establishing User-Level security, but any user who knows how to do so can restore the Administer permission by using the User and Group Permissions command on the Security submenu (Tools menu). If you want to make sure that no unauthorized user can set, clear, or change a database password, you must establish User-Level security in addition to removing the Administer permission.
