> I have also another understanding problem: I need to
> authenticate users against several type of accounts
> implemented by different EB's. (...)
My understanding is : ff different beans need different types of login, then you should have different security contexts in your jaas.jar. Then you deploy the beans in different jars, one for each security context you require, and in this jar you refer to the appropriate security context.