Grant Permission In Access Database

Similar Messages

• Grant permission to "Create Database" Only

  I want to create a user in SQL,
  user just need a permission to create a new database nothing else,
  how can i accomplish this?
  Regards
  k

  use [master]
  GO
  GRANT CREATE ANY DATABASE TO [LoginName]
  GO
  -Prashanth

• Set Grant Permission to table in Access Database

  Hello All,
  How to set grant permission in Access 2003 Database. I am using Microsoft ACE OLEDB 12.0 Connection String, Using System.Data.OleDb Component and want to set Grant DELETE, INSERT, PROCEDURE, SELECT, UPDATE ON MSysObjects TO Admin
  Best Regard
  Xan To

  Hello Kevin And Paul
  I have tried what you all say, but I get an error like this
  this my code:
  Private Sub Form1_Load(ByVal sender As System.Object, ByVal e As System.EventArgs) Handles MyBase.Load
  Dim Builder As New OleDb.OleDbConnectionStringBuilder
  Try
  With Builder
  .Provider = "Microsoft.ACE.OLEDB.12.0"
  .DataSource = "C:\Users\Xan To\Desktop\Test.mdb"
  End With
  'Using cn As New OleDb.OleDbConnection("Provider=Microsoft.Jet.OLEDB.4.0;Data Source=C:\Users\Xan To\Desktop\Test.mdb; Jet OLEDB:System Database=system.mdw;")
  Using cn As New OleDb.OleDbConnection
  With cn
  .ConnectionString = Builder.ConnectionString
  End With
  Using cmd As New OleDb.OleDbCommand
  With cmd
  .Connection = cn
  .CommandText = "GRANT SELECT ON TABLE MSysObjects TO Admin"
  End With
  cn.Open()
  cmd.ExecuteNonQuery()
  End Using
  End Using
  Catch ex As Exception
  MessageBox.Show(ex.ToString)
  End Try
  End Sub

• How to grant permission to user to access Lync 2013 OcsPowerShell

  I'm writing script for our first line for creating Lync users. I need give access to connect to https://lyncpool.domain.local/OcsPowerShell via powershell. Only users in CSAdministrator group have permission to connect, but this group have to much
  privileges. I created custom group with custom permissions and I need grant permission to this group to access OcsPowerShell.

  Try giving them CsUserAdministrator RBAC membership. They should be able to run the following cmdlets to manage the users only:
  Disable-CsUser
  Enable-CsUser
  Get-CsAdUser
  Get-CsUser
  Get-CsUserClusterInfo
  Move-CsUser
  Move-CsLegacyUser
  Set-CsUser
  Grant-CsClientPolicy
  Grant-CsClientVersionPolicy
  Grant-CsConferencingPolicy
  Grant-CsDialPlan
  Grant-CsExternalAccessPolicy
  Grant-CsHostedVoicemailPolicy
  Grant-CsLocationPolicy
  Grant-CsPinPolicy
  Grant-CsVoicePolicy
  Get-CsArchivingPolicy
  Get-CsClientPolicy
  Get-CsClientVersionPolicy
  Get-CsConferencingPolicy
  Get-CsExternalAccessPolicy
  Get-CsHostedVoicemailPolicy
  Get-CsLocationPolicy
  Get-CsPinPolicy
  Get-CsVoicePolicy
  Get-CsClientPinInfo
  Unlock-CsClientPin
  Lock-CsClientPin
  Set-CsClientPin
  Get-CsClientVersionConfiguration
  Get-CsDialPlan
  Get-CsSite
  Get-CsComputer
  Get-CsNetworkInterface
  Get-CsPool
  Get-CsService
  Get-CsSipDomain
  Revoke-CsClientCertificate
  If this helped you please click "Vote As Helpful" if it answered your question please click "Mark As Answer" | Blog
  www.lynced.com.au | Twitter
  @imlynced

• Need to grant permission to programme attempting to access firewall

  Hi,
  I want to allow a programme access my firewall but am having problems. This is the message in my firewall log.
  Jan 29 22:50:23 bryan-collins-imac Firewall[50]: Deny Connect360Helper data in from 192.168.1.5:62626 uid = 0 proto=17
  The Connect360 Helper is the programme I want to grant permission to but I can't find it in Spotlight. Any ideas?

  Hi Silvine,
  I'd get EasyFind...
  http://www.versiontracker.com/dyn/moreinfo/macosx/11706
  You can also in the Sharing Pref Pane>Firewall tab>New...>Other, set Port 62626 to open UDP and/or TCP, and name it C360Helper or something.

• Permission based access

  I'm guessing this is a fairly common need, but I'm not sure what the proper
  way to implement it is.
  I need to enable our WL7 application to support users with custom
  permissions. I have already implemented a set of custom security providers
  that allow us to authenticate against our database. The next step is
  supporting "feature" or permission based access to various application
  components. I understand how to configure the security on weblogic
  resources, but that is not granular enough for me.
  In our system, each user is granted a set of features or functions that they
  have access to. This may be a global action, such as "Create a user" or it
  may be very specific such as "Change zip code". Our application logic needs
  to check these permissions (and either deny access or modify a menu or some
  other logic).
  My first pass at this was to get security working at the weblogic resource
  level. Then I wrote a utility class that will take a subject and check if
  it has the permission in our database. This works, but it's done outside of
  the JAAS security model and I'm trying to do this the "right" way. It seems
  to me that I need to setup a JAAS security policy and associate Permission
  objects for the features that I need to secure, but I don't know how to do
  this in the context of a weblogic application.
  What is the proper way to do this? Can someone give me some tips or point
  me towards some usefull documentation?
  Thanx,
  Matt

  I don't have any code that I can send you right now (it would take me too
  long to rip out my companies proprietary stuff), but here's the approach I
  took.
  I started from the sample providers that are available on dev2dev (
  http://dev2dev.bea.com/code/codedirect.jsp?highlight=codedirect ). From
  there, I just removed the providers that I didn't need. In the sample
  framework, there are a set of database classes that implement the user
  storage. In the samples, the users are stored in a properties file on the
  disk. I just replaced the code in those files with the appropriate database
  lookups in my environment.
  Couple things that took me time to work through:
  1. You must create a user that is in the Admin group for the server to start
  under. I was not successfull in separating the authentication mechanism for
  the server id and the users.
  2. You cannot use the weblogic datasources or connection pools to access
  your database. Since the server id is authenticating against your custom
  provider, the datasources and pools have not yet been created.
  3. I had trouble configuring my realm using the console. There seemed to be
  an intermittent bug that kept my realm information from being persisted into
  the security store. I exported the security realm configuration into an xml
  file, modified the xml file to exactly what I wanted, and loaded it back
  into the server. The process for doing this is available in the docs (
  http://e-docs.bea.com/wls/docs70/admin_domain/failures.html#1106023 ).
  I would love a workaround for 1 and 2, but so far I haven't found one.
  Good luck!
  Matt Galvin
  GoSolutions
  "Amit" <[email protected]> wrote in message
  news:[email protected]...
  >
  Hi Matt
  In your mail to BEA groups you have mentioned that you
  have implemented authorization/access privileges
  against your DB.
  I need to implement similar functionality where I need
  to store userid, password, role in the DB and then
  make users access Weblogic 7.0 resources based on the
  roles stored in the DB. Could you provide me some code
  or pointers that would could help me?
  Thanks and regards,
  Amit
  "Matt Galvin" <[email protected]> wrote:
  I'm guessing this is a fairly common need, but I'm not sure what the
  proper
  way to implement it is.
  I need to enable our WL7 application to support users with custom
  permissions. I have already implemented a set of custom security
  providers
  that allow us to authenticate against our database. The next step is
  supporting "feature" or permission based access to various application
  components. I understand how to configure the security on weblogic
  resources, but that is not granular enough for me.
  In our system, each user is granted a set of features or functions that
  they
  have access to. This may be a global action, such as "Create a user"
  or it
  may be very specific such as "Change zip code". Our application logic
  needs
  to check these permissions (and either deny access or modify a menu or
  some
  other logic).
  My first pass at this was to get security working at the weblogicresource
  level. Then I wrote a utility class that will take a subject and check
  if
  it has the permission in our database. This works, but it's done outside
  of
  the JAAS security model and I'm trying to do this the "right" way. It
  seems
  to me that I need to setup a JAAS security policy and associatePermission
  objects for the features that I need to secure, but I don't know how
  to do
  this in the context of a weblogic application.
  What is the proper way to do this? Can someone give me some tips or
  point
  me towards some usefull documentation?
  Thanx,
  Matt

• The Microsoft Access database engine cannot open or write to the file in Report Builder 3.0

  I am trying to build a report in Report Builder 3.0.  I created the Data Source to point to my Excel file and the Data Set.  I drag a couple of fields on to the canvas and then choose Run.  I get the error:  "The Microsoft Access
  database engine cannot open or write to the file.  It is already opened exclusively by another user".  I am using the Excel driver.  Why am I getting this message?  How can I fix this?

  No, now I am getting the error message again.  It is quite long:
  ERROR [HY000] [Microsoft][ODBC Excel Driver] The Microsoft Access database engine cannot open or write to the file '(unknown)'. It is already opened exclusively by another user, or you need permission to view and write its data.
  ERROR [01S00] [Microsoft][ODBC Excel Driver]Invalid connection string attribute Trusted_Connection
  Please help

• Open an Access database from ASP on the Windows 2008 32-bit server

  We are upgrading to a Windows 2008 server.  The ASP application opens an Access database with this code:
    Set oConn=Server.CreateObject("ADODB.connection")
    oConn.Open  "Provider=Microsoft.Jet.OLEDB.4.0; Data Source=E:\webdata\applications\po\sfisnet\sfisnet.mdb;"
  The open statement causes this error:
         Number: -2147217887
         Description: Multiple-step OLE DB operation generated errors. Check each OLE DB
         status value, if available. No work was done.
         Source: Microsoft JET Database Engine
         SQL State:
         Native Error: 0
  Research includes: 
   - ODBC drivers  
   - verified that the ms jet dll is present: msjet40.dll, msjet35.dll
   - IIS settings reviewed
   - permission and sharing on the directory and "sfisnet.mdb" database
   - verifies thet OLEDB_SERVICES is in the registry

  They'll help you over here.
  Microsoft ASP.Net forums
  Regards, Dave Patrick ....
  Microsoft Certified Professional
  Microsoft MVP [Windows]
  Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

• SCVMM 2008 R2 - "The SQL Server service account does not have permission to access Active Directory Domain Services (AD DS)."

  I know this question has been asked before, but never for R2, that I can tell, and the posted fixes aren't working. I have just installed SCVMM 2008 R2 on a Windows Server 2008 R2 server, using a remote SQL 2008 SP1 database. When I attempt to connect to SCVMM, I get the following error:
  "The SQL Server service account does not have permission to access Active Directory Domain Services (AD DS).
  Ensure that the SQL Server service is running under a domain account or a computer account that has permission to access AD DS. For more information, see "Some applications and APIs require access to authorization information on account objects" in the Microsoft Knowledge Base at http://go.microsoft.com/fwlink/?LinkId=121054.
  ID: 2607"
  What I've seen online is that this is usually becuase the domain account SCVMM is running as does not have the proper permissions on the SQL database. Here's what I've confirmed:
  1) My SCVMM service account is a local admin on the SCVMM server
  2) My SCVMM service account is a dbowner on the SCVMM database in SQL
  3) My SQL service account is a dbowner on the SCVMM database in SQL
  4) My SQL service account is a domain user (even made it a domain admin, just in case, and it still "doesn't have access to AD DS," which is obviously untrue)
  5) Neither service account is locked out
  Has anyone run in to this? It says in Technet that remote SQL 2008 is supported, as long as the SQL management studio is installed to the SCVMM server, and I installed and patched before I began the SCVMM installation. I just don't know what else to try - I have no errors in event logs, no issues during the installation itself...
  Andrew Topp

  That answer was very unhelpful fr33m4n. The individual mentions that they've received the error that points to the KB article. I currently receive the same error -- there seems to be no resolution. I've run the Microsoft VBS script to add TAUG to the WAAG
  as suggested by 331951, and that made absolutely no difference.
  1) My SCVMM service account is a local admin on the SCVMM server
  2) My SCVMM service account is a dbowner on the SCVMM database in SQL
  3) My SQL service account is a dbowner on the SCVMM database in SQL
  4) My SQL service account is a domain user (even made it a domain admin, just in case, and it still
  "doesn't have access to AD DS," which is obviously untrue)
  The user is also a member of WAAG, the machines have delegated authority to each other. Is there any other solution?

• The Microsoft Access database engine cannot open or write to the file \\fileserver\db\access.mdb

  Hi,
  I have Windows Server 2012 with SQL 2012 Standard SP1. I am using linked server, and Access Database Engine 2010 Redistributable to access my database file made in Microsoft Access (.mdb) from network file server.
  EXEC master.dbo.sp_addlinkedserver @server = N'MyLinkedServer', @srvproduct=N'MyLinkedServer', @provider=N'Microsoft.ACE.OLEDB.12.0', @datasrc=N'\\myfileserver.mydomain.com\files\mydatabase.mdb'
  My SQL service is running with domain service account MYDOMAIN\SQL1$ , i have added Full control for file share and NTFS permission on my file server folder (C:\Files).
  When I open (as domain admin with UAC elevated permissions) on my DB server SQL Management studio, I can browse tables and everything works.
  The problem is, if I open SQL management studio (as domain admin with UAC elevated permissions) on my File server or any other computer, when trying to browse my linked server i got error:
  TITLE: Microsoft SQL Server Management Studio
  Failed to retrieve data for this request. (Microsoft.SqlServer.Management.Sdk.Sfc)
  For help, click: http://go.microsoft.com/fwlink?ProdName=Microsoft+SQL+Server&LinkId=20476
  ADDITIONAL INFORMATION:
  An exception occurred while executing a Transact-SQL statement or batch. (Microsoft.SqlServer.ConnectionInfo)
  Cannot initialize the data source object of OLE DB provider "Microsoft.ACE.OLEDB.12.0" for linked server "Synesis_3PRO2013". (Microsoft SQL Server, Error: 7303)
  For help, click: http://go.microsoft.com/fwlink?ProdName=Microsoft+SQL+Server&ProdVer=11.00.3000&EvtSrc=MSSQLServer&EvtID=7303&LinkId=20476
  When I try to place simlpe Select SQL query I got error:
  OLE DB provider "Microsoft.ACE.OLEDB.12.0" for linked server "MyLinkedServer" returned message "The Microsoft Access database engine cannot open or write to the file '\\myfileserver.mydomain.com\files\mydatabase.mdb'. It is already opened exclusively by another
  user, or you need permission to view and write its data.".
  I do not have any other program using my access database, and user has full control. I am trying to use in security mode - "For a login not defined in the list above, connections will be made without using a security context", i have also tried all four options.
  I am confused becouse it works from SQL server but from any SQL client domain member computer/server it does not work.
  I have same problem in another environment where I have Windows Server 2008 R2 and SQL 2008 R2 SP2.
  Please help.
  -- Hrvoje Kusulja

  NTFS must be fine since it works from same server using same accounts.
  As I understand, adding my access file to Access trusted location could be a problem. I have tried now to add my access database file location to trusted locations for user which is my SQL service user (Windows Service - AD managed service account MYDOMAIN\SQL1$)
  and my test user which I use to connect to sql server as a client from sql management studio. (Account is Domain Admins and have full permissions on SQL server also)
  I have added this .reg:
  Windows Registry Editor Version 5.00
  [HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Access\Security]
  [HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Access\Security\Trusted Documents]
  "LastPurgeTime"=dword:01592874
  "DisablePromptOpenNetworkTrustedDocuments"=dword:00000000
  [HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Access\Security\Trusted Locations]
  "AllowNetworkLocations"=dword:00000001
  [HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Access\Security\Trusted Locations\Location0]
  "Description"="My file server"
  "AllowSubFolders"=dword:00000001
  "Path"="\\\\myfileserver.mydomain.com\\files\\"
  I have done this for SQL service account user and my personal test account as I said. I have tried to logoff and restart sql service and all servers also.
  The same problem still persists.
  Anyway, thank you for giving me a hint.

• How add grant permission in java.policy

  hi master
  sir serch in my system
  C:\Program Files\j2sdk_nb\j2sdk1.4.2\jre\lib\security
  C:\Program Files\j2sdk_nb\_jvm\lib\security
  C:\Program Files\Java\j2re1.4.1_03\lib\security
  C:\Program Files\Java\jre1.5.0_10\lib\security
  sir i have many java.policy file which one is default java.policy file
  how i add the code
  permission java.util.PropertyPermission "java.version", "read";
  permission java.util.PropertyPermission "java.vendor", "read";
  permission java.util.PropertyPermission "java.vendor.url", "read";
  permission java.util.PropertyPermission "java.class.version", "read";
  permission java.util.PropertyPermission "os.name", "read";
  permission java.util.PropertyPermission "os.version", "read";
  permission java.util.PropertyPermission "os.arch", "read";
  permission java.util.PropertyPermission "file.separator", "read";
  permission java.util.PropertyPermission "path.separator", "read";
  permission java.util.PropertyPermission "line.separator", "read";
  permission java.util.PropertyPermission "java.specification.version", "read";
  permission java.util.PropertyPermission "java.specification.vendor", "read";
  permission java.util.PropertyPermission "java.specification.name", "read";
  permission java.util.PropertyPermission "java.vm.specification.version", "read";
  permission java.util.PropertyPermission "java.vm.specification.vendor", "read";
  permission java.util.PropertyPermission "java.vm.specification.name", "read";
  permission java.util.PropertyPermission "java.vm.version", "read";
  permission java.util.PropertyPermission "java.vm.vendor", "read";
  permission java.util.PropertyPermission "java.vm.name", "read";
  and this code
  grant codeBase "C:\Program Files\j2sdk_nb\j2sdk1.4.2\jre\lib\security
  permission java.security.AllPermission;
  give me idea how i add my code in java.policy file of using the oracle database in applete
  thank
  aamir

  in the control panel see what runtime is used by ur applet, mostly the lastest one u installed.
  C:\Program Files\Java\jre1.5.0_10\lib\security
  in this folder grant permission for the codebase where ur database is located.

• Granting Read Only Access to user in another schema

  Oracle Database 10g
  Red Hat Enterprise Linux Server release 5.3
  We are requested by a developer to grant his account read only access to TABLES, VIEWS, INDEXES, SEQUENCES, FUNCTIONS, PROCEDURES, PACKAGES, TRIGGERS, JOBS of another schema.
  I know granting read only access to Tables and Views. But is it possible to grant READ ONLY access to other mentioned objects ? How to do it ?
  And some views are in INVALID status.
  I tried to compile them using alter view owner.viewname compile;
  But got this ---- Warning: View altered with compilation errors.
  Those views are still in INVALID status. And then I tried to use utlrp.sql . Same result.
  Then I used the following
  SELECT TEXT FROM DBA_VIEWS WHERE VIEW_NAME='view-name';
  select REFERENCED_NAME,REFERENCED_TYPE from dba_dependencies where name='view-name';
  It turns out some reference types are non existent.
  Does that mean DBAs cannot do anything about this ?

  Nilton wrote:
  We are requested by a developer to grant his account read only access to TABLES, VIEWS, INDEXES, SEQUENCES, FUNCTIONS, PROCEDURES, PACKAGES, TRIGGERS, JOBS of another schema.
  I know granting read only access to Tables and Views. But is it possible to grant READ ONLY access to other mentioned objects ? How to do it ?
  TABLES -> YES grant SELECT
  VIEWS -> YES grant SELECT
  SEQUENCE -> YES grant SELECT
  INDEXES -> There is no read access for indexes...indexes are put on tables and a user who has read access on tables can read the index as well.
  FUNCTIONS / PROCEDURES / PACKAGES -> I am not sure what you mean by read access on procedures, functions and packages. You may grant EXECUTE privilege on these.
  TRIGGERS -> there is no read access on triggers required. They are implemented on tables for a DML event. If the user has DML access he has the execute access on the trigger as well.
  JOBS -> I am not sure what to read from Jobs.
  And some views are in INVALID status.
  I tried to compile them using alter view owner.viewname compile;
  But got this ---- Warning: View altered with compilation errors.
  Those views are still in INVALID status. And then I tried to use utlrp.sql . Same result.
  Then I used the following
  SELECT TEXT FROM DBA_VIEWS WHERE VIEW_NAME='view-name';
  select REFERENCED_NAME,REFERENCED_TYPE from dba_dependencies where name='view-name';
  It turns out some reference types are non existent.
  Does that mean DBAs cannot do anything about this ?There are compilation errors in the Views. e.g. the view may be referring to a table which doesn't exist etc.
  Unless you fix the error in the view you can't compile it and male it valid. Fix the view errors. If objects are non existing create them or refer to view to some where else.
  If the nonexistent objects were mistakenly dropped, or the data file which contained those objects was dropped, no matter what was the reason for that object to be gone a DBA can bring it back if he is a well prepared DBA and has setup his database for such kind of disasters.
  Now tell us why those objects are non-existent ? were they meant to be gone ? or they were dropped mistakenly?
  Now here are my guesses:
  If they were meant to be gone then probably the views definitions need to be adjusted not to refer them anymore.
  If they were mistakenly dropped then:
  Do you have them in recyclebin? (only tables) if YES just FLASHBACK TABLE <<tablename>> AS BEFORE DROP.
  Is your database has Flashback database ON? if YES FLASHBACK DATABASE until 'time/scn just before the object was dropped'
  Do you have backups and your database is running in ARCHIVE LOG mode? if YES perform an incomplete recovery using RMAN.

• Grant permission to all objects of a schema to apps user(Oracle 10g)

  Dear Fiiends,
  I would like to grant permission on all objects of a particular schema to apps user(Oracle 10g).How do I do it?
  (ex)grant all on <schemaname>.<objectname> to apps with grant option.
  This is the permission i want to give but i can't do it for all objects one by one so how do i do it in a single command.
  Regards,
  Arun

  You can't do it in a single command. You have to give object-by-object privileges (you could grant something like SELECT ANY TABLE, but that applies to every schema in the database and is generally a rather bad idea). You can, however, use a bit of dynamic SQL to do the job, i.e.
  FOR x IN (SELECT * FROM user_tables)
  LOOP
    EXECUTE IMMEDIATE 'GRANT ALL ON schema_name.' || x.table_name || ' TO apps WITH GRANT OPTION';
  END LOOP;You can do the same with other object types, hit DBA_TABLES rather than USER_TABLES if you don't want to run this as the object owner, etc.
  Justin

• Need access levels to access database

  hi ,
  i am doing project with jsp in ms-access database. this webapplication should be accessible to 10 people. all should be view the data but levels should be there.how can i get the access levels to the database like reading access to some 2 people. writing and modifying access to some 5 people.inserting can be done by other 2 people . please give the solution for this. i have netbeans4.1 ide , and tomcat bundled server.
  so, kindly give the jsp code and msaccess solution.
  thanks .

  I am not informed if the ms-access DB supports SQL-92. In that case you should be able to define the users and set the rules using GRANT sql command. So it is more or less an off topic entry here for a java forum.
  Else if you try to implement the authoization business logic out of your DB domain in java (or C or whatever), it is no more coupled with the DB and most likely that is not what you are supposed to deliver.

• MS Access database opens read only

  An Access application with linked databases opens read only, but sometimes is editable. The system was developed in Access 10 on a Win 7 machine and migrated to a standalone laptop running Win 8 and Office 365.
  The Access 10 has no problem in operating the application. The Win 8 laptop randomly opens the application read only. I have reviewed Trust settings and there is no difference between the different laptops and systems. 
  Is this a common problem? Is it associated with Win 8? Is it associated with Access form Office 365? The application is crucial to the business and we are getting way behind because we don't have a reliable or useful system. Last year the same application
  ran satisfactorily on Win 7 and Access 10.
  I would welcome some thoughts leading too a solution.

  Hi,
  Did you get the error message like "You are trying to open a read-only database". If yes, this issue may be due to the permission of the Access database. If we migrate the Access database from Access 2010 to Access 2013, the user/account's permission
  may be changed with different Windows operation system. We need the full control permission of the Access database. To workaround this issue, follow these steps:     
  On the desktop, double-click My Computer.
  Locate the Microsoft Access database that you moved.
  Right-click the database name, and then click Properties.
  In the Properties dialog box, clear the Read-only check box under
  Attributes.
  Click OK to apply the change.
  Open your database in Access.
  Please note: Make sure the user has full control of the root folder.
  If no, please tell us the whole error message, we'd like to do further troubleshooting.
  Regards,
  George Zhao
  TechNet Community Support
  It's recommended to download and install
  Configuration Analyzer Tool (OffCAT), which is developed by Microsoft Support teams. Once the tool is installed, you can run it at any time to scan for hundreds of known issues in Office
  programs.