LDAP is perfectly designed for this use. A properly setup LDAP server offers you a single authentication point for many different applications. What happens is that you create an authentication record in the LDAP user for each application that you want the user to access. The user's name and password for that application are stored in the LDAP database and recalled whenever a the application is called. Granted this is over simplifying the process but that's essentially how it works. We had implemented this at my last job and it worked great to provide one login to all our applications that resided on many contexts.
I hope this helps, Kenny =========================================================================== To unsubscribe: mailto [EMAIL PROTECTED] with body: "signoff JSP-INTEREST". For digest: mailto [EMAIL PROTECTED] with body: "set JSP-INTEREST DIGEST". Some relevant archives, FAQs and Forums on JSPs can be found at: http://java.sun.com/products/jsp http://archives.java.sun.com/jsp-interest.html http://forums.java.sun.com http://www.jspinsider.com