"weston.price(a)jboss.com" wrote : | How about a JDBC deployment that only support application-managed security? What if this is required information and can only be done via | getConnection(username,password)? | Then the configuration referenced by jca should map to a fixed username and password based security aspect that populates the caller Subject with the PasswordCredential. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4009599#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...