I'm looking for documentation about security annotation. There's a short tutorial on this topic. I found the @SecurityDomain("other") which tell jboss to use .properties files for login / password and user / roles association. But this strategy is very basic, and I would like to use SQL database or LDAP to store these information. How does the other security domain work (with ejb 3) ?