Okay, I guess that makes sense. I read through this <http://tomee.apache.org/tomee-and-security.html> and keyed on the following:
"Rather than providing its own security implementation, TomEE makes full use of the security features that are part of Tomcat. Any Catalina realm is supported or you can provide your own security module using the login.config file." Really, any Catalina realm is supported provided you deploy as a webapp. Thanks again for your help! -- View this message in context: http://openejb.979440.n4.nabble.com/webservice-security-basic-auth-tp4662743p4662756.html Sent from the OpenEJB User mailing list archive at Nabble.com.