The process whereby the security run time environment obtains the required authentication data when the Java client accesses a protected enterprise bean for the first time.