Hi Ragav, modifying our flow is not at all an option, we have our own reason for making audit an asynchronous process... I think nobody will like to have an imapct on thier SLA by using synchronous audit/log process. So again, modifying our flow, is not at all an choice.... So what you are saying is that from an MDB, we cant access a secured EJB? View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4175198#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...