In order to do this, we could use a MBeanServer code to load the global configuration and call the appropriate methods on that to do the decode, but the {CLASS} and {EXT} implementations within SecurityStore will remain as is for use otherwise. 1. Doesn't this seem to be a duplicate code? 2. Using MBeanServer we will have to use the org.jboss.mx.util.MBeanServerLocator, isn't this tied up to JBoss alone? It will not work on Tomcat! View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3981669#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...