Hi All I've got the .htaccess files working now, thanks to Phil and I am now challenged for a username/password pair, however I still cannot get to the html and php files as the password for the user does not seem to be valid at that moment in time. I have experimented with the htpasswd command and have found that the encrypted password changes even though the same user and password is supplied. This happens unless the command is repeated quickly using htpasswd -np <user> <password> to show the result on screen. This suggests there is a time element in the encryption. Surely the encrypted password should be the same no matter when the command was executed? It seem obvious the client and server have different ideas what the encrypted password should be. Are there any other flags required to get this working? Regards Bill