Hi All, I'm back from the dead and glad to see CertForums still doing the bizz! I'm currently working on a little project at work and we have a few sites where we have devices in locations that are not part of our company sites but we have users there that access our network through these places. These PC's laptops link over BT's N3 network to the LAN firewall then outside addresses are translated into local addresses but i would like to set these up using Junipers Netscreen Remote VPN client to access our network so as they can be part of the LAN eg remote devices having a LAN address then being tunnelled over the BT network then being able to access our network. I have had a look around on the net regarding this and all the info i can find relates to using RADIUS and xAUTH. I was wondering and hoping that it would be possible for the users and devices to authenticate to Active directory as if they were sittting actually on the LAN but connot find reference to this. I'm not looking for a complete rundown as to how this can be done because i would like to get to the bottom of this as much as i can myself but was just wondering if this was a technically feasible option? If anybody has had experience with this type of solution it would be great to hear if this can be done. The devices also need to be picking up dhcp addresses but these will be reserved for the remote devices on AD but i know this can be done through dhcp relay. (i think!) Thanks guys/gals.