Yes, Active Directory in mixed mode. My clients are all SecureNAT. They don't have any client software installed and they don't have a proxy server setting in the browser. I created a Site and Content Rule to try to deny access for a specific NT security group/user to a specific web site. Karl -----Original Message----- From: Jason Ballard [mailto:jasonb54@xxxxxxxxx] Sent: Thursday, May 02, 2002 2:46 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: Limiting Rules by Users and Groups http://www.ISAserver.org I'm assuming you are speaking of an Active Directory mixed mode domain?? We currently limit access to the Internet based on group membership with ISA and the domain is in mixed mode. Only difference is the ISA Server is installed in Stand-alone mode. Group filtering should not be impacted though regardless. What type of rule did you create and did you modify the existing rules in any way? Jason -----Original Message----- From: Karl Schneider [mailto:kschneider@xxxxxxxxxxxxxx] Sent: Thursday, May 02, 2002 3:20 PM To: [ISAserver.org Discussion List] Subject: [isalist] Limiting Rules by Users and Groups http://www.ISAserver.org I am attempting to create a rule that is limited by domain userid or security group. Does the "Select User or Groups" exception work in Mixed mode? I specified Users and groups, but those users still were able to access the web site I was blocking. However when I applied the rule to everyone, everyone was blocked. Has anyone else encountered this? Karl Schneider ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jasonb54@xxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: kschneider@xxxxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')