<div>
Is this Access application used in a corporate domain? &nbsp;If so, use their login credentials. &nbsp;If they are allowed to use your database, the fact that they have been authenticated by their domain server should be good enough for you.
</div>


<div>
Yes, it is used in a Not for profit. The computer ID and WindowsUser ID is also tracked in t_User_Logs.<br />
I believe that the Login credentials are a far superior measure of strength, however, I would still like to also add the extra encrypted layer just to help me sleep at night, lol...
</div>


<div>
Hi,<br />
<br />
Untested, but the folowing link should cover your needs:<br />
<a href="https://en.wikibooks.org/wiki/Visual_Basic_for_Applications/String_Hashing_in_VBA" rel="ugc">https://en.wikibooks.org/wiki/Visual_Basic_for_Applications/String_Hashing_in_VBA</a>
</div>


<div>
You can hash the allowed username values in the table. &nbsp;Don't bother storing passwords.<br />
<br />
If you feel like adding some strength, you can use a salt value, usually a GUID string.
</div>


Logon-Master-Encryption-v-2.zip

<div>
You are asking for advice and receive two valid proposals, yet you reject both, while you claim it to be &quot;ridiculous&quot; that no one has created a ready-boiled solution for you.<br />
<br />
It is fair not to have the time, patience, or knowledge to work out solutions, but then you should open a task in Gigs and stop acting miffed when no one wishes to take on the full work for you. <br />
<br />
/gustav
</div>


<div>
I really did not mean to offend anyone with my comments, especially the help offered by Aikimark. In fact I am hoping that one day I will be able to learn and utilize what he has offered, but I am unable to get what he suggested working due to my inexperience.<br />
<br />
However, I do stand by my feeling that something as universal as a Login form with encryption should be a standard item found on the internet.<br />
<br />
When I do figure it out, I will post it for others like me to learn from. Personally, I usually need to see things in their executable form to see how they work.<br />
<br />
So please accept my sincere apology, Aikimark, if I offended you in any way. I actually really appreciate your help and plan to return to your suggestion when I have more time.<br />
<br />
Bill
</div>


<div>
The simplest solution for me at this time... I wish I could incorporate better encryption, but I am on a deadline for a work project and I have been at it all day combing through example after example and am frankly lost.<br />
It just seems so ridiculous to me that the internet is not teeming with completed Login databases demonstrating all the different ways you can accomplish this....and I mean a complete working logon form that uses the best encryption possible... I guess most people do not struggle so much as I do when trying to figure this stuff out...but I keep plugging away and thanks to the many kind and knowledgeable people here at Expert's Exchange who actually attempt to help... wow I hope i will be able to repay that one day...but we will see if my laptop remains on the table and not flung against a wall......lol....
</div>


<div>
<div class="content wysiwyg-content">
I have been using a simple Logon form. The password is encrypted in the immediate window, and I then copy and paste that hash into the password field. This works in the attached database as far as matching is concerned.<br />
There is no problem for me to create a &quot;Welcome123&quot; temporary password which I create and paste the hash for, but, I would prefer not to be involved in hashing their new password.<br />
<br />
In other words, in the reset password form I would like to run a function that hashes their password and copies it into the t_Users Password as the newly hashed value...<br />
<br />
Does anyone have a version they would be willing to share? With my limited knowledge I do not want to reinvent the wheel, and I would be more comfortable knowing this is something recommended from people that do understand a strong version vs a weak one.<br />
<br />
My current Login database is attached if anyone would like to look. The encryption part is from a Steve Bishop video on You Tube and he cautions that it is very weak.<br />
<a href="https://filedb.experts-exchange.com/incoming/2017/11_w46/1210418/Logon-Master-Encryption-v-1.zip" target="_blank" class="file-inline" title="My basic unsatisfactory encryption of the Users Password (639 KB)"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><path d="M67.508 468.467c-58.005-58.013-58.016-151.92 0-209.943l225.011-225.04c44.643-44.645 117.279-44.645 161.92 0 44.743 44.749 44.753 117.186 0 161.944l-189.465 189.49c-31.41 31.413-82.518 31.412-113.926.001-31.479-31.482-31.49-82.453 0-113.944L311.51 110.491c4.687-4.687 12.286-4.687 16.972 0l16.967 16.971c4.685 4.686 4.685 12.283 0 16.969L184.983 304.917c-12.724 12.724-12.73 33.328 0 46.058 12.696 12.697 33.356 12.699 46.054-.001l189.465-189.489c25.987-25.989 25.994-68.06.001-94.056-25.931-25.934-68.119-25.932-94.049 0l-225.01 225.039c-39.249 39.252-39.258 102.795-.001 142.057 39.285 39.29 102.885 39.287 142.162-.028A739446.174 739446.174 0 0 1 439.497 238.49c4.686-4.687 12.282-4.684 16.969.004l16.967 16.971c4.685 4.686 4.689 12.279.004 16.965a755654.128 755654.128 0 0 0-195.881 195.996c-58.034 58.092-152.004 58.093-210.048.041z"/></svg>Logon-Master-Encryption-v-1.zip</a>
</div>
</div>


My basic unsatisfactory encryption of the Users Password

Logon-Master-Encryption-v-1.zip

I have been using a simple Logon form. The password is encrypted in the immediate window, and I then copy and paste that hash into the password field. This works in the attached database as far as matching is concerned.
There is no problem for me to create a "Welcome123" temporary password which I create and paste the hash for, but, I would prefer not to be involved in hashing their new password.

In other words, in the reset password form I would like to run a function that hashes their password and copies it into the t_Users Password as the newly hashed value...

Does anyone have a version they would be willing to share? With my limited knowledge I do not want to reinvent the wheel, and I would be more comfortable knowing this is something recommended from people that do understand a strong version vs a weak one.

My current Login database is attached if anyone would like to look. The encryption part is from a Steve Bishop video on You Tube and he cautions that it is very weak.

Login form with strong User Password Encryption

Encryption is the process of encoding messages or information in such a way that only authorized parties can read it. In an encryption scheme, the intended communication information or message, referred to as plaintext, is encrypted using an encryption algorithm, generating ciphertext that can only be read if decrypted. For technical reasons, an encryption scheme usually uses a pseudo-random encryption key generated by an algorithm. An authorized recipient can easily decrypt the message with the key provided by the originator to recipients, but not to unauthorized interceptors.

Encryption

Databases are organized collections of data, most commonly accessed through management systems including schemas, tables, queries and processes that allow users to enter and manipulate the information or utilize it in other fashions, such as with web applications or for reporting purposes.

Databases

Microsoft Access is a rapid application development (RAD) relational database tool. Access can be used for both desktop and web-based applications, and uses VBA (Visual Basic for Applications) as its coding language.