hi, i have created a protocol rule which allow every one to connect to all destination and it works but i want to set policies and schedules to restrict users using internet . when i create the suitable rule - site and content or protocol rule it dose'nt work so i have to check the "allow authorize users "attribute form the outgoing tab of the server properties which need authentication from the user for every web request. but in user site error 407 appears which says isa denies user account. i don't know how isa server authenticate users i think it uses the active directory database if so why it dose'nt allow users.? or how can i set polisies which can work for web proxy clients? --------------------------------- Do You Yahoo!? Yahoo! Games - play chess, backgammon, pool and more