What are you trying to achieve ? Does it really have to be in the session ? With the former portal how do you share the information in the different sessions ? If you look at the 2.6 codebase, we use a different approach. An identity service is sitting waiting for your portlets to ask information about the user. After all the only thing you need to propagate is the username, from that you can get any information you want using those services. You can get the username using the JSR168 API View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4032060#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...