Thanks for the reply Ivan.
I'm not familiar with ASP.NET membership and authentication etc, so it sounds like I need to read up on that first and learn how that stuff works. Would you agree?
I'm not sure how your Login User Controls fit into the whole picture but maybe I'll understand a bit after I read up on the ASP.NET membership info.
I've just started reading this article
which says (under the "Configuring Membership" section):
"Later in this walkthrough you will put pages into a subdirectory that is protected. You must create the subdirectory now so that you can configure security for it later in the walkthrough."
Given that Sitefinity stores it's "pages" in the database, how does the above statement work in the context of a Sitefinity project?