[ https://issues.jboss.org/browse/TEIIDDES-2734?page=com.atlassian.jira.plu... ] Steven Hawkins commented on TEIIDDES-2734: ------------------------------------------ The problem is a little indirect from just a vdb. Designer would have to know what security-domain is applicable for the vdb (either the security-domain vdb property or the default for the server, which prior to 9.0 could be different per transport). Then it would need to get the security configuration for that security domain(s) and infer how to get the groups from the LoginModules. Which is not simply a part of the LoginModule api. So it probably only makes sense to think of this from a top down scenario where the user has to explicitly configure an ldap browser or other logic in Designer, which could in turn configure the eap instance to have a security domain backed by ldap access. -- This message was sent by Atlassian JIRA (v6.4.11#64026)