Finally I found the answer to my problem. For all who are interested in it: here it is. My application which is using form-based loging must NOT run inside TOMCAT_HOME/webapps. My problem was not the folder where it is located in, but the web.xml. For using authentification, you must comment out the <welcome-file-list> entry or better delete it; otherwise j_security_check will not be found. Hope this will help all the others who had the same problem. Regards & good luck, Mascha
