>
>Let me clarify. The application connects to the SQL Server using a SQL Login. The SQL Login credentials are in a configuration file (xml file). The connection string (example) is as follows:
>

>cConnString = "DRIVER=SQL Server;SERVER=MySQLServerName;DATABASE=MySQLServerDBName;Trusted_Connection='No'"
>

>
>Then, there is a separate table in the application with encrypted fields for each user of the application.
>So, a user has to enter his/her user name and password to load the application. A user is authenticated against this table. Therefore, the application "knows" who is currently using the application.
>
What I currently have is almost exactly what you have explained so far.

>Then, when a user makes any change to a table, another table gets an entry of the value before and after the change; for each changed field. Therefore, this Audit Table is what the application uses to report of what changes were done to a table/field and who did it. The auditing routine in itself is part of the Biz Object of the application.
>
In other words, before saving the changes for each table (remote view), the Biz object opens the audit view where it saves all the fields changed (both old and new values) in that table together with the user id, date/time and workstation. Am I right? If not, please, correct me.

>I hope it answers you question.

Thanks.