hi,

after browsing 10 pages of threads for the keyword 'anonymous' and found that Jboss 5.1 seems not ok for doing secuirty propagation from remote EJB client to session bean, is it ture!? since i've spending long long time to dig into this topic and 've tried so many approaches but the end result is 'anonymous' dumped by ctx.getCallerPrinciple() in session bean...!!!

Can anybody tell me the truth...!?

LAW