Tim, I changed the login-config.xml file and now the other domain section looks like this:
<application-policy name = "other"> <!-- A simple server login module, which can be used when the number of users is relatively small. It uses two properties files: users.properties, which holds users (key) and their password (value). roles.properties, which holds users (key) and a comma-separated list of their roles (value). The unauthenticatedIdentity property defines the name of the principal that will be used when a null username and password are presented as is the case for an unuathenticated web client or MDB. If you want to allow such users to be authenticated add the property, e.g., unauthenticatedIdentity="nobody" --> <login-module code = "org.jboss.security.auth.spi.UsersRolesLoginModule" flag = "required"> <module-option name="unauthenticatedIdentity">guest</module-option> </login-module> </application-policy> It will take me about an hour to test it since the exception only occurs after the system has been idle for about 30 minutes. Thanks for your help, Dennis View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3953499#3953499 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3953499 Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user