I agree with Magnus. I started this
thread with a question "Why cannot we access client security information in the entity bean's ejbActivate method". Reid's answer was correct becuase the HFE does say that client is not associated during ejbPassivate so during ejbActivate also its not associated with a client.
Coming to my second question "How does container know which client has invoked the method (in case of multiple client accessing the same EJBObject)". The only solution seems EJBObject tracks the different clients and the container has access to this information. Am I going in the right direction............
Sudhir V<br />(SCJP 1.2, SCWCD, OCA, SCBCD)