btw. the next service release (this weekend probably) will include a debug option do dump out the authentication and impersonation traces as well, so I should be able to get to the bottom of what's happening in your case. Tony