I have something odd happening with forms based authenticated users... When a forms authenticated user is not a member of the site collection's root-subweb, permissions do not behave correctly for that user in his department subweb. The user must be a member of the Visitors group at a minimum. For example: The USERSITE Site is located at /RootWEB/DivisionWeb/DepartmentWeb User X is added to a group in the DepartmentWeb site that has Read access. This allows the user to view the DepartmentWeb homepage but the user gets denied access when attempting to access several of the document libraries. User X can access some of the libraries but not all. ALL Libraries inherit permissions from the parent site (DepartmentWeb). To resolve the issue, I added User X to the root site's visitors group (the RootWEB Site). Once the user is a member of the RootWEB visitor group, permissions on the DepartmentWeb subweb function as expected. Any ideas? I'm at a loss. At the moment, I am contemplating adding all the forms users to the Visitors group. There are a lot of users, this will be very difficult to maintain.