Request.ServerVariables ("LOGON_USER")is empty when called from an ASP page and when authentication method for our intranet is allow anonymous access AND winNT challenge/response. Now according to Microsoft this is by design. But when I do the same from global.asa, from a Session_OnStart method I get the requested NTusername. And not only that but my requests later on in my ASP pages give also an NTusername back !!??<BR>Can anyone help...I&#039;m rather confused and can&#039;t find anything on this matter.<BR>Thanks in advance,<BR>Leon