So I enabled the HTTPS on both sites. Now the jboss-federation-server.sar/conf/server.cfg.xml file looks like this: | <federation-server> | <partners> | <partner domain="ssodemo-site1" server="https://www.ssosite1.com:8443/federate"/> | <partner domain="ssodemo-site2" server="https://www.ssosite2.com:18443/federate"/> | </partners> | </federation-server> | However, I still don't get the cross-domain SSO :( Should I see anything from the log regarding federation servers exchange the token? I don't see anything in the log right now. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4161649#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...