I have now tried to do the same with .htaccess: Does not work either with the same users file. But if I create a .htpasswd with the password unencrypted it works. So it apparently has to do with the users file. I have created the users file normally using the lsws admin and it looks good. The only thing that's new to me is a ":" at the end of the user entry (after the password).