There are multiple ways of doing this. For members, you need to have an authentication system and maintain session for them. For permissions, you could either use a DB, or maintain the permissions based on "membership", in a pagewise manner. Better approach is using a DB to map the pages with membership types and associating the members to their particular membership and using sessions to grant access.
I would: 1. install aspnet_membership 2. create a permission table 3. link newly created permission table with aspnet_roles table.