Ive written some tools which I use to dump the AD/Exchange group member ship etc to a CSV file. these reports can then be forwarded off to various team or business group managers to validate their group membership. File and folder ACL's can be dumped to a text/CSV file using tools like Cacls. hope this helps. Tony. -----Original Message----- From: Bill Beckett [mailto:Bill.beckett@xxxxxxxxxxxxxxxxx] Sent: Fri 24/09/2004 8:42 a.m. To: 'windows2000@xxxxxxxxxxxxx' Cc: Subject: [windows2000] Security Open to any and all list members who would like to add their 2 cents. I'm curious as to how/what you do to conduct internal security audits like checking memberships, who has access to what and make sure everything is correct. Any feedback welcome.