Thanks for your reply. I do understand a little better of the idea you were suggesting after reading the related documentation. However I am using AAF (Australian Access Federation) as my SSO server. I am running my JBoss Application Server under Apache2 and have already configured Apache2 to redirect my portal access to the AAF login site. Here the user chooses his IdP and logins using the same. This part is done. Now after the user logs in successfully, he can see the default page of the portal but he is NOT logged into the portal. I need a way to log him into the portal and set his username/principal on to the request parameters. Also the framework that I am trying to provide, I would still like the "Logout" button on the portal which the user can click to signout as his default login and use another login if he may have (like if someone knows the admin login). View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4135493#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...