I need to lock down a database file on a Windows NT4.0 server running IIS4. I only want to give certain people modify access to this database. I tried changing the Security settings on the file, and enable NT Challenge/Response in IIS. When accessing the site with the mdb file, it does prompt for a username and password. However, if the person only has Read Access to the Database file, after logging on successfully to the site, he or she can actually modify the database, so that security is not working properly.<BR>How would I go about restricting access to this Database on a per-user basis?