> allow {$userid_1} > allow {$username_user1} > allow {$username_user2} > allow {$username_user3} > allow {$username_admin} > deny true Hello. The upgrade script had to leave the following (order of directives matters) in your case: allow {$userid_1} deny true allow {$username_user1} allow {$username_user2} allow {$username_user3} allow {$username_admin} The "deny true" is a measure to let the user make sure the conversion went right before the ruleset actually is used. Just remove it and let know if it didn't help. -- DO4-UANIC