>I searching for the best way to manage security in an application. In others word what is the best way to create multiple security profile for different access in an application.

The way that I prefer (and I am doing this from the DOS world!) is to defined access right for my different screens and/or functions, then define profile and then allow to customize the profile for every user.

So I can define a clerk profile which has access to some functionnalities. Then, I configure some user to be "Clerk". Then, if I want one particular clerk to have (or don't have) a particular access, I can modify it to the user level.

I know that you can define users in database and then give security based on the user id. How do you manage particular access?

If you work with MTS, you can define profiles and roles but again, how do you manage particular access?

I hope that someone else will complete those ideas.