Thanks to everyone who responded to my first message. Now I'm trying to tackle another problem. Here it is: Some background info: Presently, users are dialing into a MAX 2024 and getting authenticated locally. I have Ascend Access Control v1.0Ai5 installed on a Windows NT Server box. I'm currently testing login sessions using user profiles stored in AAC. I'm trying to allow dial-in users to change their own password after it expires. I'm testing this using the following user profile: bsimpson Password = "*****", Expiration = "Aug 17 2000" Ascend-PW-Lifetime = 30, Ascend-PW-Warntime = 1, Framed-Protocol = PPP, Framed-IP-Address = 0.0.0.0, Framed-Routing = None, Ascend-Assign-IP-Pool = 1, Ascend-Idle-Limit = 300 I set the Expiration attribute to the current day so the password will have expired already. After this user profile was created, I started the RadiusSrv service using NT's "Services" tool in the Control Panel. I also made sure to enter a <-P> in the Parameters text box when I started RadiusSrv. The problem is after all of this configuration, AAC doesn't tell me my password is expired, doesn't prompt me to change my password, and still accepts my expired password. Anyone have any ideas on what I'm doing wrong? I greatly appreciate any response and help. Thanks in advance, Ryan L. Robbins Communication Services Distributed Operations & Systems Management ryan.l.robbins at mail.sprint.com