I need to provide restricted access to users on an intranet site. To do that, I wanna use the NT authentication instead of using a database oriented authorization, because that would mean creating hundreds on new accounts in the db.<BR><BR>In the IIS admin tool, I was able to password protect the direcory. Now I have two issues at hand:<BR><BR>A. The users of the trusted doamins should also be able to login using their username/passwords/domain scheme.<BR><BR>B. I want to find out the username and/or machinename who is logged in. Is this info stored in the http headers?????<BR><BR>Thanks in advance for any help regrding this matter.