I understand how to use Kerberos to authenticate and I userstand how to setup my jaas security domain in JBoss. But, I DON'T understand how to use Kerberos as my LoginModule...

<application-policy name="my_security">
 <authentication>
 <login-module code="com.sun.security.auth.module.Krb5LoginModule" flag="required">

And I've added the following java-opts to by run.conf:

-Djavax.security.auth.useSubjectCredsOnly=false
-Djavax.security.auth.useTicketCache=true
-Djava.security.krb5.realm=MYREALM
-Djava.security.krb5.kdc=MYKDC.NET

I can authenticate just fine in a stand-alone application. But when running from JBoss I get exceptions like so: javax.security.auth.login.LoginException: Pre-authentication information was invalid (24)

I'm using a simple (j_security_check) login form to get the username and password.

Thanks!