Hi All,

We try for several days to integrate SSO/kerberos in a jboss EJB application (not web) but we dont really know how to do this, even after having intensively look on the web.

We can see in the trace the following message :

"excluding mechanism GSSAPI because it is not in the allowed list"

This seems to be the problem for the moment (?) 

But how are we supposed to allow a mechanism ?? Where is this list defined ??

Any help would be highly appreciated.

Thanks in advance....

TP

PS: for short, on the client side, we can login, get the kerberos TGT, a TGS and execute the lookup with these privileges. We set ctx.SECURITY_AUTHENTICATION to "GSSAPI".

On the server, we defined security-domains in the standalone.xml file according to various tutorials found on the web.