We have a server here at the office that serves as a repository of all of our server information, docs, files, etc. A few years back I threw together a rather crude webpage that housed tech support numbers, Terminal Server Advanced Client, and other pertinent information related to our servers in the company. The only group that needs to access this information is the Domain Admins group. At one time I had the security set on this website so that non-members of the Domain Admin group would get prompted for a username, password, and domain when they tried to hit the page and could go no further. For some reason, that prompting has stopped and now any user on the domain can hit the page with no problem. Could anyone familiar with IIS 6 perhaps point me to some documentation that describes securing this website. Thanks in advance for any info.