According to the discussion in http://www.jboss.org/modules/bb/index.html?module=bb&op=viewtopic&t=forums/ I can allow single sign-on between different WARs by adding a SingleSignOn valve entry to tomcat4-service.xml.

However, I'm seeing the same problems other users are reporting: initial single sign-on success followed by intermittent 403 (Access denied) errors, even within one application. <login-config> and <security-domain> setup is uniform within the two WARs. Anyone seen and solved this problem?

Thanks in advance
Ken