Hi, I noticed this element of ISA 2006 SP1: "Support for client certificate authentication in a workgroup deployment. This removes the requirement to map each client certificate to an Active Directory(r) directory user account when forms-based authentication is used as the primary authentication method and client certificates are used as the secondary method." Sorry if I am being a dumbass, but can someone explain this feature a little and ideally provide a scenario or example where it is valid? Would this change have an impact on publishing non-domain joined SCCM IBCM clients for example? Thanks JJ ________________________________ This email and any files transmitted with it are confidential and intended solely for the use of the individual to whom it is addressed. If you have received this email in error, or if you believe this email is unsolicited and wish to be removed from any future mailings, please contact our Support Desk immediately on 01202 360360 or email helpdesk@xxxxxxxxxxxxxxxxx If this email contains a quotation then unless otherwise stated it is valid for 7 days and offered subject to Silversands Professional Services Terms and Conditions, a copy of which is available on request. Any pricing information, design information or information concerning specific Silversands' staff contained in this email is considered confidential or of commercial interest and exempt from the Freedom of Information Act 2000. Any view or opinions presented are solely those of the author and do not necessarily represent those of Silversands Silversands Limited, 3 Albany Park, Cabot Lane, Poole, BH17 7BX. Company Registration Number : 2141393.