I use mod_cluster for balancing everything looks good when I enable "org.jboss.web.tomcat.service.sso.ClusteredSingleSignOn" but in that case I receive another problem - two application that are deployed (but use different security domains) also get SSO. So I can assess second app by logging in only first.
In case SSO is disabled I have another problem: when apps are deployed (in farm) and I stop 1st node - user dosen't get autologged in 2nd done (login requires).
What I need is:
1. Auto login to 2nd node in case of 1st node fail
2. SSO between same apps between nodes, but NO SSO between DIFFERENT apps.