Thanx for ur reply.. As said, I had modified the security constraint in the default-obect.xml relevant to cmsadmin portlet. I had created a new role and made the following change.. <security-constraint> <policy-permission> <role-name>NewRole</role-name> <action-name>viewrecursive</action-name> </policy-permission> </security-constraint> Still..i am getting an error that "Access is denied"...when i log in as a user and try to access cms admin portlet. Kindly throw some light on this.. One more query...can this security modification be done by using the "Management portlet" as said in the user guide?i tried that also and it didnt work.. Plz le me know.. Thanx in advance View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3995298#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...