another question: Currently our systems works like this: We set an apache in front of JBoss and use Basic authentification. If the users goes straight to the JBoss Webserver without going over Apache, a login formular is presentet. To check this, the software checks the HTTP header if Basis authentification was done and if not presents the login formular. We now plan to to the same with SPNEGO. That is, if SPNEGO works, no login formular will be shown. If SPNEGO fails or is not available, the login formular should be shown. Is there a way to check in the HTTP Header if SPNEGO was successful or done at all? Claus View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4168370#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...