As Xavier already pointed out, try be_acl. It allows you to set access for one or more user/group on any page (recursively). Since I tried it years ago, I cannot imagine using the classic TYPO3 access handling for any complex scenario. Tomas Mrozek