I'm using win2k server and I'm trying to make a 'webmembers' group. They will be allowed to enter the protected area of a particular website. I have that all set up already through IIS and NTFS. Now what I'm trying to do is add a group called 'webmembers'. I don't want the group to be able to do ANYTHING locally. I dont' want them to be able to log in, shut down, use services, or anything. I want them to have NO rights whatsoever (except for the right to view the protected area on the website). The group only exists for Integrated Windows Authentication. The only thing the users of that group will be able to do is view the protected area of the website. I went to 'Local Security Policy' and removed the group 'Everyone' from the local policies that contained 'Everyone'. This didn't help. It allowed me to login locally with a user in the group 'webmembers'. What am I doing wrong here??? (By the way, my server is not set up as a domain controller). Please help.