Have you added an application-policy for messaging in login-config.xml? | | <application-policy name = "messaging"> | <authentication> | <login-module code = "org.jboss.security.auth.spi.UsersRolesLoginModule" | flag = "required" > | <module-option name = "unauthenticatedIdentity">guest</module-option> | <module-option name = "usersProperties">messaging-users.properties</module-option> | <module-option name = "rolesProperties">messaging-roles.properties</module-option> | </login-module> | </authentication> | </application-policy> | | View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3993919#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...