Download the jbpm-jpdl-suite-3.2.1.zip file from sourceforge. Inside you'll find deploy/jbpm-enterprise.ear. That's the main ear you'll deploy. It needs : * a datasource called JbpmDS which you'll have to configure. * an authentication policy called jbpm, to add to conf/login-config.xml The latter looks like this if you choose to keep your users in database : <application-policy name = "jbpm"> | <authentication> | <login-module code="org.jboss.security.auth.spi.DatabaseServerLoginModule" | flag="required"> | <module-option name="dsJndiName">java:/JbpmDS</module-option> | <module-option name="principalsQuery"> | SELECT PASSWORD_ FROM JBPM_ID_USER WHERE NAME_=? | </module-option> | <module-option name="rolesQuery"> | SELECT g.NAME_ ,'Roles' | FROM JBPM_ID_USER u, | JBPM_ID_MEMBERSHIP m, | JBPM_ID_GROUP g | WHERE g.TYPE_='security-role' | AND m.GROUP_ = g.ID_ | AND m.USER_ = u.ID_ | AND u.NAME_=? | </module-option> | </login-module> | </authentication> | </application-policy> You may want to use some properties files for authentication and the configuration may be simpler. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4059446#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...