hi i have configured a security domain successfully. in some session beans i have declared: @RolesAllowed({"Operator", "ServiceAdministrator"}) in another session bean i don't have declared any Roles. but still if i'm tryin to access them (using the local home interface in a web application) with an anonymous session i get an Authentication failure. if i'm logged in as Operator or ServiceAdministrator everthing works fine. how do i configure my session beans that they will allow anonymous access? any help is appreciated. thanks daniel View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3986814#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...