A traditional VFP app, yes. DBC procs run via the OLE DB provider, no. That was I meant.

>I've lost you there. If I'm running this app under NT/2000, and ADSI is installed (it is in 2000 and can be added to NT easily if not already there) then, with the proper permissions the app could check that the current user is member of a certain group before allowing access to the DBC. Isn't this basically sound?
>
>
>>Only one problem: With no objects and no DECLARE - DLL supported by the provider, how you gonna do that?
>>
>>>>I'll go you one better on that one: You can (somewhat) integrate a DBC with Windows security by using the SYS(0) function to validate a user versus a free table of permissible users.
>>>
>>>Interesting idea. How about replacing SYS(0) with and ADSI routine to read the NT/2000 users and/or groups? That should work.