After fighting with the "NT User Folder" product for quite a while, I've run across a "feature" :) Unless your NT server is a PDC/BDC for a Domain (so that the local SAM is queried), it isn't possible to use NT User Folder for authentication of users in the Domain. I'm attempting to run Zope on an IIS server that is member server in a Domain, but not a Domain Controller of any kind. The only way to limit access seems to be by adding/deleting local users and putting them in the ACL for HKLM/Software/DigitalCreations/.../Role SO, I'm entertaining alternatives. How can I reference the users in a remote Zope User Folder? It would be nice to be able to put the "smb User Folder" on a Linux server running Zope, and merely XML-RPC the folder lookups from the NT box to the Linux box. Would it be possible to create a regular acl_users folder with the preresiquite methods defined that would merely redirect the "simulated" method to another Zope server? Yes, it's a kludge. Yes it's sick and twisted. The appropriate solution would be to put the Zope server on a BDC. However, I'm not one for the "easy way out" :) - Ian C. Blenke <icblenke@2c2.com> <ian@blenke.com>