<Directory /Program Files (x86)/Apache Group/Apache2/htdocs/pwDLs> AuthType Basic AuthName "Restricted Files" AuthUserFile THIS IS WORKING FINE Require user USERNAME </Directory> so ya i got the above edit in my config file and it does not work. as in when i restart the server it does not start back up. i have fix the issue there. but now i noticed 2 issues with this auth system. 1.) if i have a link to the "authorized-only" page on another page it bypasses the auth system. 2.) when does the user have to re-type there username and password?