I have read many articles about authenticating. I just have one question. Can I build a form where a user will enter a user name and password, then when they submit that form and it gets to the processing form, I will check their login info and if it is correct I will let them through to the next page with the rights of the NT user that they matched? Then I want to have IIS act as if the user had logged in using the challenge and response method. Is that possible? If so, can you provide the code, or a link to it. Basically, I want to have a form and then I want to do the authentication my self then I want to have the logged in user be able to do the same stuff that they could if they had logged in using the challenge and response method.<BR><BR>FirstForm.asp<BR><html><B R><body><BR><form action="secondPage.asp"><BR><input type="text" name="UserName"><BR><input type="text" name="Password"><BR><input type="submit" name="FormSubmit"><BR></form><BR></body><BR></html><BR><BR>secondpage.asp<BR><%<BR>� 39do authentication stuff here<BR>'either against a DB or against NT<BR>'if auth then send to nextPage.asp<BR>%><BR><BR>nextPage.asp<BR>� 60;%<BR>'access file system object and have rights of NT user "1234"<BR>%><BR><BR><BR>Is this possible?