I am working on an ecommerce site and I will be putting the "check-out" pages through a secure server. Do the "check-out" pages need to reside in a subweb on a secure server/SSL or can the secure server be defined for certain portions of my site? If it is on a subweb, will the session variables that I defined in my global.asa work across and through the subweb? From my understanding, if I do not place another global.asa in my subweb, then the global.asa of the root will be in effect, including any session variables. Will my session.sessionID from the root web still be valid in the subweb?<BR><BR>Thanks in advance