Try adding a security constrain to the portal definition in the *-object.xml file. Here is a suggestion, in context: <deployments> | <deployment> | <portal> | ... | <security-constraint> | <policy-permission> | <unchecked/> | <action-name>view</action-name> | <action-name>personalizerecursive</action-name> | </policy-permission> | </security-constraint> | </portal> | ... | </deployment> | </deployments> View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3997703#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...