Hi, I figured out that I can change the behavior for a specific bean using <role-mapping-manager><authentication-module> However, how do I provide unrestricted access? Do I have to code a LoginModule that always allows acces? If this is the case does anybody know what methods I have to overide? Will just overide checkPassword do the trick? Thanks, d. _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] http://lists.sourceforge.net/lists/listinfo/jboss-user