Well, the login-conf.xml may stay untouched because there is a dynamic login bean in the jboss-service.xml in the jbpm-service.sar, my problem is that it was missing from there so you may discard the login-conf change. The dynamic bean is like this: <mbean code="org.jboss.security.auth.login.DynamicLoginConfig" name="org.jbpm:service=LoginConfig"> | <attribute name="PolicyConfig" serialDataType="jbxb"> | <jaas:policy xsi:schemaLocation="urn:jboss:security-config:4.1 resource:security-config_4_1.xsd" xmlns:jaas="urn:jboss:security-config:4.1" | xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> | <jaas:application-policy name="jbpm-console"> | ... Regds, Sergio View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=4257884#... Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&a...