How about something like this? <page view-id="/home.xhtml"> | <navigation from-action="#{identity.login}"> | <rule if="#{user.passwordExpired}"> | <redirect view-id="/changepassword.xhtml"/> | </rule> | <rule if-outcome="loggedIn"> | <redirect view-id="/profile.xhtml"/> | </rule> | </navigation> | </page> Inside your authentication method you'd need to put your user object into session scope, and it would need to have an isPasswordExpired() method or equivalent. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4039483#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...