I have a login on my site, using asp with a user database, however, I want to protect certain content with file system level security. My problem is that IIS seems to want a Windows account for each user. (It then prompts users to enter that user/pass when they access the site) I want to be able to have one windows account with public access, and one that has access to the restricted files. Then, I want to associate each user in my database with one account or the other. (Creating and maintaining a few thousand windows accounts is not my idea of fun...) Does anyone have any suggestions? Or another way to secure content at the file system level?