> How can you allow only users logged in with a domain account > access to > the Internet (not just WWW, all connectivity).
If you've got a firewall that supports authentication (fw1, others?), have it authenticate users against a RADIUS server on one of your NT Server boxes.
