I just want to add, that the access is restricted correctly if I add the @RolesAllowed Annotation to the DAO bean. So basically the things are working - but not with the usage of the ejb-jar.xml.
Reply to this message by going to Community
Start a new discussion in EJB 3.0 at Community