In general, Business Office Explorer (BOE) Security is handled at the accessibility level. It is not meant to replace Domain Authentication or SQL Server permissions. In fact, BOE is designed to organize access to a wide variety of systems and data resources that still need to be secured at the enterprise level based on an organizations requirements.

In BOE, each object whether it is a Form, Report, Query, File Hyperlink or Web Address is owned by a Workgroup Team.

Since each object can be associated as a child to any other object, and be opened or initiated with overriding parameters, each Parent/Child Association is also assigned a Security Group.

Remember, BOE is a Treeview based organization and ACCESSIBILITY framework. Each node (branch or selection) and its child nodes (branches or selections) can only be viewed by members of their designated Security Group.

Each user's List bar and Treeview will only consist of those objects and associations that belong to the Security Groups to which the user has been granted membership by the Systems Security Administrator.

Since all Workgroup Team and User information is stored in an Access Security Workgroup (MDW) file you can also use ordinary Access Security to manage access to an object level. BOE's accessibility based security not only eases administration but it allows a level of organizational customization at the individual user level, having no effect on any other users.

Easy User/Group Security management insures that each workgroup member can only see the items to which they are authorized.  Management can be User-Centric or Team-Centric...