I have a 3000 concentrator which I've configured to use the SSL VPN client authenticating off an AD 2003 server. The problem I have is authorization of resources for users that connect in. For example: a user can connect via SSL client remotely, but when they try to access mapped drives or restricted intranet pages it does not allow them to stating that a "domain controller" cannot be found. Can anyone shed light on this for me? Is AD authentication suppose to also provide authorization?