We have a new application that uses apache web server on a normal win xp box, working model = a windows 2000 domain user can logon (well not at the moment) and the apache server authenticates the username and password against ADS (this I gather) and the user can navigate to the next web page. Currently this app resturns on the logon page and states that the user does not have the correct rights and fails. If I use the domain admin user and password to log on through the web page is works ok, but a normal domain user cannot authenticate... I have searched through Active Directory to see what settings might be wrong. I guess the same principal will work with an app that uses ISS to authenticate windows user logons, it must be the same setting - possibly HTTP trying to interact with active directory? Not sure.... can you help thanks!