Jason, I've got one more problem here! I set up all the rules according to the guide and it works. The problem is that I previously assigned a limited logins rule (Max logins) that will pass a user entering the wrong email or password twice to the forgotpassword page. How do I combine this rule with the other rule I set up named "Admins and Students" which restrict access to users other than those with UserLevel 2 (approved Students) and 3 (Admin) status? I want a user who initially after registration is assigned UserLevel (1) Visitor in database (Which I will change from administration pages after I approve them) not to be able to login at all initially! Best would be if the user not yet approved would see a messege on top of the login box reading they are not yet approved. Users with level 2 and 3 (Students and Admin) should be passed to forgotpassword after 2 unsuccessful attempts to login or be logged in with correct email and password. That is working fine but I can't figure out how to incorporate the access level rule in the max logins rule or how to have both of their functionallity according to my needs?