Hello, We are running ASP.NET on Win2K server and having problems with authenticating against an AD domain. IsInRole() does not return correct values and our solution depends on the ability to differentiate between different user groups. When a user that definitely not belongs to a certain group is logged in, IsInRole(rolename) still returns true. I read something about this being a bug in .NET 2.0 with authenticating against AD - but isn't IsInRole supposed to work regardless of .NET version? Have anyone else had this problem before? Is there any way go get around this problem? Thanks, Christoffer