If you use loginmanager with your NT domain ACL as the usersource and validation, this would only require using: <dtml-var "REQUEST['REMOTE_ADDR']"> and <dtml-var "REQUEST['AUTHENTICATED_USER']"> Works well for me. -- Erik Myllymaki erik@pacific-shores.com