It appears to me that when I install the IIS filter to redirect HTTP requests from IIS to Tomcat, (isapi_redirect.dll) directory-level security that was set up in IIS (prompting the user for their Windows userid and password before they can view either static pages or JSPs in the directory in question) no longer works. My guess is that isapi-redirect.dll gains control before IIS security is invoked. How can I configure IIS or Tomcat so Tomcat serves the JSP pages, but IIS security is still leveraged? David Bates GE Corporate Information Services, Schenectady Phone: (518) 388-7647, DC: 8*564-7647, Fax: (518) 388-7657 Email: [EMAIL PROTECTED]
