diff --git a/docs/src/main/asciidoc/_elytron/Elytron_Subsystem.adoc b/docs/src/main/asciidoc/_elytron/Elytron_Subsystem.adoc
index 02905353fe4d..bce4315b3d2c 100644
--- a/docs/src/main/asciidoc/_elytron/Elytron_Subsystem.adoc
+++ b/docs/src/main/asciidoc/_elytron/Elytron_Subsystem.adoc
@@ -93,8 +93,8 @@ server factories.
 the SASL server factory is an aggregation of other SASL server
 factories.
 
-|configurable-http-server-mechanism-factory |A SASL server factory
-definition where the SASL server factory is an aggregation of other SASL
+|configurable-http-server-mechanism-factory |An HTTP server factory
+definition where the HTTP server factory is an aggregation of other HTTP
 server factories.
 
 |configurable-sasl-server-factory |A SASL server factory definition
diff --git a/docs/src/main/asciidoc/_elytron/migrate/SSL_with_Client_Cert_Migration.adoc b/docs/src/main/asciidoc/_elytron/migrate/SSL_with_Client_Cert_Migration.adoc
index 5f369b4ad364..75304787d41e 100644
--- a/docs/src/main/asciidoc/_elytron/migrate/SSL_with_Client_Cert_Migration.adoc
+++ b/docs/src/main/asciidoc/_elytron/migrate/SSL_with_Client_Cert_Migration.adoc
@@ -164,6 +164,24 @@ Resulting in: -
 </subsystem>
 ----
 
+If you want to use the HTTP DIGEST authentication mechanism in the domain mode behind a load balancer, you can add the option below to the HTTP server mechanism factory:
+
+----
+<subsystem xmlns="urn:wildfly:elytron:1.1" final-providers="combined-providers" disallowed-providers="OracleUcrypto">
+  ...
+  <http>
+    ...
+    <configurable-http-server-mechanism-factory name="configured-http" http-server-mechanism-factory="global">
+        <properties>
+            <property name="org.wildfly.security.http.session-digest" value="true"/>
+        </properties>
+    </configurable-http-server-mechanism-factory>
+    ...
+  </http>
+  ...
+</subsystem>
+----
+
 == SASL Authentication Factory
 
 The architecture of the two authentication factories if very similar so a SASL authentication factory can be defined in the same way as the HTTP equivalent.
diff --git a/testsuite/domain/pom.xml b/testsuite/domain/pom.xml
index dc5baaa17ca3..f7e555ccfca5 100644
--- a/testsuite/domain/pom.xml
+++ b/testsuite/domain/pom.xml
@@ -279,6 +279,11 @@
             <groupId>xom</groupId>
             <artifactId>xom</artifactId>
         </dependency>
+        <dependency>
+            <groupId>commons-codec</groupId>
+            <artifactId>commons-codec</artifactId>
+            <scope>test</scope>
+        </dependency>
     </dependencies>
 
     <build>
diff --git a/testsuite/domain/src/test/java/org/jboss/as/test/integration/domain/suites/HttpSessionDigestDomainTestCase.java b/testsuite/domain/src/test/java/org/jboss/as/test/integration/domain/suites/HttpSessionDigestDomainTestCase.java
new file mode 100644
index 000000000000..e3f4149b61de
--- /dev/null
+++ b/testsuite/domain/src/test/java/org/jboss/as/test/integration/domain/suites/HttpSessionDigestDomainTestCase.java
@@ -0,0 +1,269 @@
+/*
+ *
+ * Copyright 2023 Red Hat, Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ */
+
+package org.jboss.as.test.integration.domain.suites;
+
+import org.apache.commons.codec.digest.DigestUtils;
+import org.apache.http.HeaderElement;
+import org.apache.http.HttpResponse;
+import org.apache.http.client.methods.HttpGet;
+import org.apache.http.impl.client.CloseableHttpClient;
+import org.apache.http.impl.client.HttpClients;
+import org.jboss.as.test.integration.domain.management.util.DomainTestSupport;
+import org.jboss.dmr.ModelNode;
+import org.jboss.shrinkwrap.api.ShrinkWrap;
+import org.jboss.shrinkwrap.api.exporter.ZipExporter;
+import org.jboss.shrinkwrap.api.spec.WebArchive;
+import org.junit.Assert;
+import org.junit.BeforeClass;
+import org.junit.Test;
+
+import java.io.File;
+import java.io.IOException;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.security.MessageDigest;
+import java.security.NoSuchAlgorithmException;
+import java.util.Arrays;
+import java.util.Map;
+import java.util.stream.Collectors;
+
+import static org.jboss.as.controller.descriptions.ModelDescriptionConstants.ADD;
+import static org.jboss.as.controller.descriptions.ModelDescriptionConstants.COMPOSITE;
+import static org.jboss.as.controller.descriptions.ModelDescriptionConstants.CONTENT;
+import static org.jboss.as.controller.descriptions.ModelDescriptionConstants.ENABLED;
+import static org.jboss.as.controller.descriptions.ModelDescriptionConstants.OP;
+import static org.jboss.as.controller.descriptions.ModelDescriptionConstants.OP_ADDR;
+import static org.jboss.as.controller.descriptions.ModelDescriptionConstants.STEPS;
+import static org.jboss.as.controller.descriptions.ModelDescriptionConstants.DEPLOYMENT;
+import static org.jboss.as.controller.descriptions.ModelDescriptionConstants.HOST;
+import static org.jboss.as.controller.descriptions.ModelDescriptionConstants.SERVER;
+import static org.jboss.as.test.integration.domain.management.util.DomainTestSupport.validateResponse;
+
+public class HttpSessionDigestDomainTestCase {
+
+    private static DomainTestSupport testSupport;
+    private static File tmpDir;
+    private static final String TEST = "test.war";
+
+    public static final String SERVER_GROUP = "server-group";
+    private static final String REPLACEMENT = "test.war.v2";
+    private static final ModelNode ROOT_ADDRESS = new ModelNode();
+    private static final ModelNode ROOT_DEPLOYMENT_ADDRESS = new ModelNode();
+    private static final ModelNode ROOT_REPLACEMENT_ADDRESS = new ModelNode();
+    private static final ModelNode MAIN_SERVER_GROUP_ADDRESS = new ModelNode();
+    private static final ModelNode MAIN_SERVER_GROUP_DEPLOYMENT_ADDRESS = new ModelNode();
+    private static final ModelNode OTHER_SERVER_GROUP_ADDRESS = new ModelNode();
+    private static final ModelNode OTHER_SERVER_GROUP_DEPLOYMENT_ADDRESS = new ModelNode();
+    private static final ModelNode MAIN_RUNNING_SERVER_ADDRESS = new ModelNode();
+    private static final ModelNode MAIN_RUNNING_SERVER_DEPLOYMENT_ADDRESS = new ModelNode();
+    private static final ModelNode OTHER_RUNNING_SERVER_ADDRESS = new ModelNode();
+    private static final ModelNode OTHER_RUNNING_SERVER_GROUP_ADDRESS = new ModelNode();
+
+    static {
+        ROOT_ADDRESS.setEmptyList();
+        ROOT_ADDRESS.protect();
+        ROOT_DEPLOYMENT_ADDRESS.add(DEPLOYMENT, TEST);
+        ROOT_DEPLOYMENT_ADDRESS.protect();
+        ROOT_REPLACEMENT_ADDRESS.add(DEPLOYMENT, REPLACEMENT);
+        ROOT_REPLACEMENT_ADDRESS.protect();
+        MAIN_SERVER_GROUP_ADDRESS.add(SERVER_GROUP, "main-server-group");
+        MAIN_SERVER_GROUP_ADDRESS.protect();
+        MAIN_SERVER_GROUP_DEPLOYMENT_ADDRESS.add(SERVER_GROUP, "main-server-group");
+        MAIN_SERVER_GROUP_DEPLOYMENT_ADDRESS.add(DEPLOYMENT, TEST);
+        MAIN_SERVER_GROUP_DEPLOYMENT_ADDRESS.protect();
+        OTHER_SERVER_GROUP_ADDRESS.add(SERVER_GROUP, "other-server-group");
+        OTHER_SERVER_GROUP_ADDRESS.protect();
+        OTHER_SERVER_GROUP_DEPLOYMENT_ADDRESS.add(SERVER_GROUP, "other-server-group");
+        OTHER_SERVER_GROUP_DEPLOYMENT_ADDRESS.add(DEPLOYMENT, TEST);
+        OTHER_SERVER_GROUP_DEPLOYMENT_ADDRESS.protect();
+        MAIN_RUNNING_SERVER_ADDRESS.add(HOST, "master");
+        MAIN_RUNNING_SERVER_ADDRESS.add(SERVER, "main-one");
+        MAIN_RUNNING_SERVER_ADDRESS.protect();
+        MAIN_RUNNING_SERVER_DEPLOYMENT_ADDRESS.add(HOST, "master");
+        MAIN_RUNNING_SERVER_DEPLOYMENT_ADDRESS.add(SERVER, "main-one");
+        MAIN_RUNNING_SERVER_DEPLOYMENT_ADDRESS.add(DEPLOYMENT, TEST);
+        MAIN_RUNNING_SERVER_DEPLOYMENT_ADDRESS.protect();
+        OTHER_RUNNING_SERVER_ADDRESS.add(HOST, "primary");
+        OTHER_RUNNING_SERVER_ADDRESS.add(SERVER, "other-two");
+        OTHER_RUNNING_SERVER_ADDRESS.protect();
+        OTHER_RUNNING_SERVER_GROUP_ADDRESS.add(HOST, "primary");
+        OTHER_RUNNING_SERVER_GROUP_ADDRESS.add(SERVER, "other-two");
+        OTHER_RUNNING_SERVER_GROUP_ADDRESS.add(DEPLOYMENT, TEST);
+        OTHER_RUNNING_SERVER_GROUP_ADDRESS.protect();
+
+    }
+
+    @BeforeClass
+    public static void setupDomainAndDeployWebApp() throws Exception {
+
+        WebArchive webArchive = ShrinkWrap.create(WebArchive.class, TEST);
+        webArchive.addAsWebResource(Thread.currentThread().getContextClassLoader().getResource("helloWorld/index.html"), "index.html");
+        webArchive.addAsWebInfResource("domain-session-digest/web.xml", "web.xml");
+
+        tmpDir = new File("target/deployments/" + DeploymentManagementTestCase.class.getSimpleName());
+        new File(tmpDir, "archives").mkdirs();
+        webArchive.as(ZipExporter.class).exportTo(new File(tmpDir, "archives/" + TEST), true);
+
+        final DomainTestSupport.Configuration configuration;
+        configuration = DomainTestSupport.Configuration.create(DeploymentManagementTestCase.class.getSimpleName(),
+                "domain-configs/domain-session-digest.xml", "host-configs/host-primary.xml", "host-configs/host-secondary.xml");
+        testSupport = DomainTestSupport.create(configuration);
+        testSupport.start();
+
+        deployWebApplicationToDomain();
+    }
+
+    @Test
+    public void testHttpSessionDigestPropertyWithTwoServers() throws Exception {
+        testDigestAuthenticationForTwoServers();
+    }
+
+    @Test
+    public void testHttpSessionDigestSameNonceCannotBeUsedTwice() throws Exception {
+        String server1 = "http://localhost:8080/test/";
+        String server2 = "http://localhost:8630/test/";
+
+        try (CloseableHttpClient httpclient = HttpClients.createDefault()) {
+            HttpGet httpFirstGetRequest = new HttpGet(server1);
+            HttpResponse response = httpclient.execute(httpFirstGetRequest);
+            Map<String, String> wwwAuth = Arrays.stream(response.getHeaders("WWW-Authenticate")[0].getElements())
+                    .collect(Collectors.toMap(HeaderElement::getName, HeaderElement::getValue));
+            String realm = wwwAuth.get("Digest realm");
+            String nonce = wwwAuth.get("nonce");
+            String uri = "/test/";
+
+            // the first call always fails with a 401 and a requested nonce, realm, etc.
+            Assert.assertEquals(response.getStatusLine().getStatusCode(), 401);
+            httpFirstGetRequest.releaseConnection();
+
+            // create response with headers
+            HttpGet request = new HttpGet(server1);
+            addAuthenticateHeader(request, realm, nonce, uri);
+
+            // send a response to the server2 which did not send a challenge
+            // the result is 200 because the nonce manager was configured to be persisted with "org.wildfly.security.http.session-digest" option
+            request.setURI(new URI(server2));
+            Assert.assertEquals(200, httpclient.execute(request).getStatusLine().getStatusCode());
+            request.releaseConnection();
+
+            // try to send a same response to the server1 that have sent a challenge
+            // 401 is returned because the same nonce cannot be used twice
+            request.setURI(new URI(server1));
+            response = httpclient.execute(request);
+            Assert.assertEquals(401, response.getStatusLine().getStatusCode());
+            request.releaseConnection();
+        }
+    }
+
+    private void testDigestAuthenticationForTwoServers() throws IOException, NoSuchAlgorithmException, URISyntaxException {
+        String server1 = "http://localhost:8080/test/";
+        String server2 = "http://localhost:8630/test/";
+
+        try (CloseableHttpClient httpclient = HttpClients.createDefault()) {
+            HttpGet httpFirstGetRequest = new HttpGet(server1);
+            HttpResponse response = httpclient.execute(httpFirstGetRequest);
+            Map<String, String> wwwAuth = Arrays.stream(response.getHeaders("WWW-Authenticate")[0].getElements())
+                    .collect(Collectors.toMap(HeaderElement::getName, HeaderElement::getValue));
+            String realm = wwwAuth.get("Digest realm");
+            String nonce = wwwAuth.get("nonce");
+            String uri = "/test/";
+
+            // the first call always fails with a 401 and a requested nonce, realm, etc.
+            Assert.assertEquals(response.getStatusLine().getStatusCode(), 401);
+            httpFirstGetRequest.releaseConnection();
+
+            // create response with headers
+            HttpGet request = new HttpGet(server1);
+            addAuthenticateHeader(request, realm, nonce, uri);
+
+            // send a response to the server2 which did not send a challenge
+            // the result is 200 because the nonce manager was configured to be persisted with "org.wildfly.security.http.session-digest" option
+            request.setURI(new URI(server2));
+            Assert.assertEquals(200, httpclient.execute(request).getStatusLine().getStatusCode());
+            request.releaseConnection();
+        }
+    }
+
+    private void addAuthenticateHeader(HttpGet httpGetRequestWithAuthHeader, String realm, String nonce, String uri) throws NoSuchAlgorithmException {
+        httpGetRequestWithAuthHeader.setHeader("Authorization", "Digest " +
+                "username=" + "\"myUser\",\n" +
+                "realm=\"" + realm + "\",\n" +
+                "nonce=\"" + nonce + "\",\n" +
+                "uri=\"" + uri + "\",\n" +
+                "algorithm=\"" + "MD5" + "\",\n" +
+                "response=\"" + computeDigest("/test/", nonce, "myUser", "myPassword", "MD5", realm, "GET") +
+                "\"");
+    }
+
+    private static void deployWebApplicationToDomain() throws IOException {
+        String url = new File(tmpDir, "archives/" + TEST).toURI().toURL().toString();
+        ModelNode content = new ModelNode();
+        content.get("url").set(url);
+        ModelNode composite = createDeploymentOperation(content, MAIN_SERVER_GROUP_DEPLOYMENT_ADDRESS, OTHER_SERVER_GROUP_DEPLOYMENT_ADDRESS);
+        executeOnMaster(composite);
+    }
+
+    private static ModelNode createDeploymentOperation(ModelNode content, ModelNode... serverGroupAddressses) {
+        ModelNode composite = getEmptyOperation(COMPOSITE, ROOT_ADDRESS);
+        ModelNode steps = composite.get(STEPS);
+        ModelNode step1 = steps.add();
+        step1.set(getEmptyOperation(ADD, ROOT_DEPLOYMENT_ADDRESS));
+        step1.get(CONTENT).add(content);
+        for (ModelNode serverGroup : serverGroupAddressses) {
+            ModelNode sg = steps.add();
+            sg.set(getEmptyOperation(ADD, serverGroup));
+            sg.get(ENABLED).set(true);
+        }
+
+        return composite;
+    }
+
+    private static ModelNode getEmptyOperation(String operationName, ModelNode address) {
+        ModelNode op = new ModelNode();
+        op.get(OP).set(operationName);
+        if (address != null) {
+            op.get(OP_ADDR).set(address);
+        } else {
+            // Just establish the standard structure; caller can fill in address later
+            op.get(OP_ADDR);
+        }
+        return op;
+    }
+
+    private static ModelNode executeOnMaster(ModelNode op) throws IOException {
+        return validateResponse(testSupport.getDomainPrimaryLifecycleUtil().getDomainClient().execute(op));
+    }
+
+    private String computeDigest(String uri, String nonce, String username, String password, String algorithm, String realm, String method) throws NoSuchAlgorithmException, NoSuchAlgorithmException {
+        String A1, HashA1, A2, HashA2;
+        MessageDigest md = MessageDigest.getInstance(algorithm);
+        A1 = username + ":" + realm + ":" + password;
+        HashA1 = getMD5(A1);
+        A2 = method + ":" + uri;
+        HashA2 = getMD5(A2);
+        String combo, finalHash;
+        combo = HashA1 + ":" + nonce + ":" + HashA2;
+        finalHash = DigestUtils.md5Hex(combo);
+        return finalHash;
+    }
+
+    public String getMD5(String value) {
+        return DigestUtils.md5Hex(value);
+    }
+}
diff --git a/testsuite/domain/src/test/resources/domain-configs/domain-session-digest.xml b/testsuite/domain/src/test/resources/domain-configs/domain-session-digest.xml
new file mode 100644
index 000000000000..351dd8b902a1
--- /dev/null
+++ b/testsuite/domain/src/test/resources/domain-configs/domain-session-digest.xml
@@ -0,0 +1,649 @@
+<!--
+  ~ JBoss, Home of Professional Open Source.
+  ~ Copyright 2023, Red Hat, Inc., and individual contributors
+  ~ as indicated by the @author tags. See the copyright.txt file in the
+  ~ distribution for a full listing of individual contributors.
+  ~
+  ~ This is free software; you can redistribute it and/or modify it
+  ~ under the terms of the GNU Lesser General Public License as
+  ~ published by the Free Software Foundation; either version 2.1 of
+  ~ the License, or (at your option) any later version.
+  ~
+  ~ This software is distributed in the hope that it will be useful,
+  ~ but WITHOUT ANY WARRANTY; without even the implied warranty of
+  ~ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+  ~ Lesser General Public License for more details.
+  ~
+  ~ You should have received a copy of the GNU Lesser General Public
+  ~ License along with this software; if not, write to the Free
+  ~ Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
+  ~ 02110-1301 USA, or see the FSF site: http://www.fsf.org.
+  -->
+
+<domain xmlns="urn:jboss:domain:20.0">
+
+    <extensions>
+        <extension module="org.jboss.as.clustering.infinispan"/>
+        <extension module="org.jboss.as.clustering.jgroups"/>
+        <extension module="org.jboss.as.connector"/>
+        <extension module="org.jboss.as.jmx"/>
+        <extension module="org.jboss.as.jpa"/>
+        <extension module="org.jboss.as.logging"/>
+        <extension module="org.jboss.as.ee"/>
+        <extension module="org.jboss.as.ejb3"/>
+        <extension module="org.jboss.as.jaxrs"/>
+        <extension module="org.jboss.as.jdr"/>
+        <extension module="org.jboss.as.mail"/>
+        <extension module="org.jboss.as.modcluster"/>
+        <extension module="org.jboss.as.naming"/>
+        <extension module="org.jboss.as.remoting"/>
+        <extension module="org.jboss.as.sar"/>
+        <extension module="org.jboss.as.transactions"/>
+        <extension module="org.jboss.as.weld"/>
+        <extension module="org.jboss.as.webservices"/>
+        <extension module="org.wildfly.extension.elytron"/>
+        <extension module="org.wildfly.extension.io"/>
+        <extension module="org.wildfly.extension.messaging-activemq"/>
+        <extension module="org.wildfly.extension.security.manager"/>
+        <extension module="org.wildfly.extension.undertow"/>
+    </extensions>
+
+    <system-properties>
+        <property name="jboss.domain.test.property.one" value="ONE"/>
+        <property name="jboss.domain.test.property.two" value="${jboss.domain.test.property.one}"/>
+    </system-properties>
+
+    <paths>
+        <path name="domainTestPath"/>
+    </paths>
+
+    <management>
+        <access-control provider="simple">
+            <role-mapping>
+                <role name="SuperUser">
+                    <include>
+                        <user name="$local"/>
+                    </include>
+                </role>
+            </role-mapping>
+        </access-control>
+    </management>
+
+    <profiles>
+        <profile name="full-ha">
+            <subsystem xmlns="urn:jboss:domain:logging:8.0">
+                <periodic-rotating-file-handler name="FILE" autoflush="true">
+                    <formatter>
+                        <named-formatter name="PATTERN"/>
+                    </formatter>
+                    <file relative-to="jboss.server.log.dir" path="server.log"/>
+                    <suffix value=".yyyy-MM-dd"/>
+                    <append value="true"/>
+                </periodic-rotating-file-handler>
+                <logger category="com.arjuna">
+                    <level name="WARN"/>
+                </logger>
+                <logger category="io.jaegertracing.Configuration">
+                    <level name="WARN"/>
+                </logger>
+                <logger category="org.jboss.as.config">
+                    <level name="DEBUG"/>
+                </logger>
+                <logger category="sun.rmi">
+                    <level name="WARN"/>
+                </logger>
+<!--                <logger category="org.wildfly.security">-->
+<!--                    <level name="TRACE"/>-->
+<!--                </logger>-->
+<!--                <logger category="org.infinispan">-->
+<!--                    <level name="TRACE"/>-->
+<!--                </logger>-->
+                <root-logger>
+                    <level name="INFO"/>
+                    <handlers>
+                        <handler name="FILE"/>
+                    </handlers>
+                </root-logger>
+                <formatter name="PATTERN">
+                    <pattern-formatter pattern="%d{yyyy-MM-dd HH:mm:ss,SSS} %-5p [%c] (%t) %s%e%n"/>
+                </formatter>
+                <formatter name="COLOR-PATTERN">
+                    <pattern-formatter pattern="%K{level}%d{HH:mm:ss,SSS} %-5p [%c] (%t) %s%e%n"/>
+                </formatter>
+            </subsystem>
+            <subsystem xmlns="urn:jboss:domain:datasources:6.0">
+                <datasources>
+                    <datasource jndi-name="java:jboss/datasources/ExampleDS" pool-name="ExampleDS" enabled="true" use-java-context="true" statistics-enabled="${wildfly.datasources.statistics-enabled:${wildfly.statistics-enabled:false}}">
+                        <connection-url>jdbc:h2:mem:test;DB_CLOSE_DELAY=-1;DB_CLOSE_ON_EXIT=FALSE</connection-url>
+                        <driver>h2</driver>
+                        <security>
+                            <user-name>sa</user-name>
+                            <password>sa</password>
+                        </security>
+                    </datasource>
+                    <drivers>
+                        <driver name="h2" module="com.h2database.h2">
+                            <xa-datasource-class>org.h2.jdbcx.JdbcDataSource</xa-datasource-class>
+                        </driver>
+                    </drivers>
+                </datasources>
+            </subsystem>
+            <subsystem xmlns="urn:jboss:domain:ee:6.0">
+                <spec-descriptor-property-replacement>false</spec-descriptor-property-replacement>
+                <concurrent>
+                    <context-services>
+                        <context-service name="default" jndi-name="java:jboss/ee/concurrency/context/default" use-transaction-setup-provider="true"/>
+                    </context-services>
+                    <managed-thread-factories>
+                        <managed-thread-factory name="default" jndi-name="java:jboss/ee/concurrency/factory/default" context-service="default"/>
+                    </managed-thread-factories>
+                    <managed-executor-services>
+                        <managed-executor-service name="default" jndi-name="java:jboss/ee/concurrency/executor/default" context-service="default" hung-task-termination-period="0" hung-task-threshold="60000" keepalive-time="5000"/>
+                    </managed-executor-services>
+                    <managed-scheduled-executor-services>
+                        <managed-scheduled-executor-service name="default" jndi-name="java:jboss/ee/concurrency/scheduler/default" context-service="default" hung-task-termination-period="0" hung-task-threshold="60000" keepalive-time="3000"/>
+                    </managed-scheduled-executor-services>
+                </concurrent>
+                <default-bindings context-service="java:jboss/ee/concurrency/context/default" datasource="java:jboss/datasources/ExampleDS" jms-connection-factory="java:jboss/DefaultJMSConnectionFactory" managed-executor-service="java:jboss/ee/concurrency/executor/default" managed-scheduled-executor-service="java:jboss/ee/concurrency/scheduler/default" managed-thread-factory="java:jboss/ee/concurrency/factory/default"/>
+            </subsystem>
+            <subsystem xmlns="urn:jboss:domain:ejb3:9.0">
+                <session-bean>
+                    <stateless>
+                        <bean-instance-pool-ref pool-name="slsb-strict-max-pool"/>
+                    </stateless>
+                    <stateful default-access-timeout="5000" cache-ref="distributable" passivation-disabled-cache-ref="simple"/>
+                    <singleton default-access-timeout="5000"/>
+                </session-bean>
+                <mdb>
+                    <resource-adapter-ref resource-adapter-name="${ejb.resource-adapter-name:activemq-ra.rar}"/>
+                    <bean-instance-pool-ref pool-name="mdb-strict-max-pool"/>
+                </mdb>
+                <pools>
+                    <bean-instance-pools>
+                        <strict-max-pool name="mdb-strict-max-pool" derive-size="from-cpu-count" instance-acquisition-timeout="5" instance-acquisition-timeout-unit="MINUTES"/>
+                        <strict-max-pool name="slsb-strict-max-pool" derive-size="from-worker-pools" instance-acquisition-timeout="5" instance-acquisition-timeout-unit="MINUTES"/>
+                    </bean-instance-pools>
+                </pools>
+                <caches>
+                    <cache name="simple"/>
+                    <cache name="distributable" passivation-store-ref="infinispan" aliases="passivating clustered"/>
+                </caches>
+                <passivation-stores>
+                    <passivation-store name="infinispan" cache-container="ejb" max-size="10000"/>
+                </passivation-stores>
+                <async thread-pool-name="default"/>
+                <timer-service thread-pool-name="default" default-data-store="default-file-store">
+                    <data-stores>
+                        <file-data-store name="default-file-store" path="timer-service-data" relative-to="jboss.server.data.dir"/>
+                    </data-stores>
+                </timer-service>
+                <remote cluster="ejb" connectors="http-remoting-connector" thread-pool-name="default">
+                    <channel-creation-options>
+                        <option name="MAX_OUTBOUND_MESSAGES" value="1234" type="remoting"/>
+                    </channel-creation-options>
+                </remote>
+                <thread-pools>
+                    <thread-pool name="default">
+                        <max-threads count="10"/>
+                        <keepalive-time time="60" unit="seconds"/>
+                    </thread-pool>
+                </thread-pools>
+                <iiop enable-by-default="false" use-qualified-name="false"/>
+                <default-security-domain value="other"/>
+                <application-security-domains>
+                    <application-security-domain name="other" security-domain="ApplicationDomain"/>
+                </application-security-domains>
+                <default-missing-method-permissions-deny-access value="true"/>
+                <statistics enabled="${wildfly.ejb3.statistics-enabled:${wildfly.statistics-enabled:false}}"/>
+                <log-system-exceptions value="true"/>
+            </subsystem>
+            <subsystem xmlns="urn:wildfly:elytron:15.0" final-providers="combined-providers" disallowed-providers="OracleUcrypto">
+                <providers>
+                    <aggregate-providers name="combined-providers">
+                        <providers name="elytron"/>
+                        <providers name="openssl"/>
+                    </aggregate-providers>
+                    <provider-loader name="elytron" module="org.wildfly.security.elytron"/>
+                    <provider-loader name="openssl" module="org.wildfly.openssl"/>
+                </providers>
+                <audit-logging>
+                    <file-audit-log name="local-audit" path="audit.log" relative-to="jboss.server.log.dir" format="JSON"/>
+                </audit-logging>
+                <security-domains>
+                    <security-domain name="ApplicationDomain" default-realm="ApplicationRealm" permission-mapper="default-permission-mapper">
+                        <realm name="ApplicationRealm" role-decoder="groups-to-roles"/>
+                    </security-domain>
+                </security-domains>
+                <security-realms>
+                    <properties-realm name="ApplicationRealm">
+                        <users-properties path="/home/diana/oldLaptopBackup/work/projects/wildfly/testsuite/domain/src/test/resources/domain-digest/app-users.properties" plain-text="true" digest-realm-name="ApplicationRealm"/>
+                        <groups-properties path="/home/diana/oldLaptopBackup/work/projects/wildfly/testsuite/domain/src/test/resources/domain-digest/app-groups.properties"/>
+                    </properties-realm>
+                </security-realms>
+                <mappers>
+                    <simple-permission-mapper name="default-permission-mapper" mapping-mode="first">
+                        <permission-mapping>
+                            <principal name="anonymous"/>
+                            <permission-set name="default-permissions"/>
+                        </permission-mapping>
+                        <permission-mapping match-all="true">
+                            <permission-set name="login-permission"/>
+                            <permission-set name="default-permissions"/>
+                        </permission-mapping>
+                    </simple-permission-mapper>
+                    <constant-realm-mapper name="local" realm-name="local"/>
+                    <simple-role-decoder name="groups-to-roles" attribute="groups"/>
+                    <constant-role-mapper name="super-user-mapper">
+                        <role name="SuperUser"/>
+                    </constant-role-mapper>
+                </mappers>
+                <permission-sets>
+                    <permission-set name="login-permission">
+                        <permission class-name="org.wildfly.security.auth.permission.LoginPermission"/>
+                    </permission-set>
+                    <permission-set name="default-permissions">
+                        <permission class-name="org.wildfly.extension.batch.jberet.deployment.BatchPermission" module="org.wildfly.extension.batch.jberet" target-name="*"/>
+                        <permission class-name="org.wildfly.transaction.client.RemoteTransactionPermission" module="org.wildfly.transaction.client"/>
+                        <permission class-name="org.jboss.ejb.client.RemoteEJBPermission" module="org.jboss.ejb-client"/>
+                    </permission-set>
+                </permission-sets>
+                <http>
+                    <http-authentication-factory name="application-http-authentication" security-domain="ApplicationDomain" http-server-mechanism-factory="sessionDigestHttpMechFactory">
+                        <mechanism-configuration>
+                            <mechanism mechanism-name="DIGEST">
+                                <mechanism-realm realm-name="ApplicationRealm" />
+                            </mechanism>
+                        </mechanism-configuration>
+                    </http-authentication-factory>
+                    <provider-http-server-mechanism-factory name="global"/>
+                    <configurable-http-server-mechanism-factory name="sessionDigestHttpMechFactory" http-server-mechanism-factory="global">
+                        <properties>
+                            <property name="org.wildfly.security.http.session-digest" value="true"/>
+                        </properties>
+                    </configurable-http-server-mechanism-factory>
+                </http>
+                <sasl>
+                    <sasl-authentication-factory name="application-sasl-authentication" sasl-server-factory="configured" security-domain="ApplicationDomain">
+                        <mechanism-configuration>
+                            <mechanism mechanism-name="DIGEST-MD5">
+                                <mechanism-realm realm-name="ApplicationRealm"/>
+                            </mechanism>
+                        </mechanism-configuration>
+                    </sasl-authentication-factory>
+                    <configurable-sasl-server-factory name="configured" sasl-server-factory="elytron">
+                        <properties>
+                            <property name="wildfly.sasl.local-user.default-user" value="$local"/>
+                            <property name="wildfly.sasl.local-user.challenge-path" value="${jboss.server.temp.dir}/auth"/>
+                        </properties>
+                    </configurable-sasl-server-factory>
+                    <mechanism-provider-filtering-sasl-server-factory name="elytron" sasl-server-factory="global">
+                        <filters>
+                            <filter provider-name="WildFlyElytron"/>
+                        </filters>
+                    </mechanism-provider-filtering-sasl-server-factory>
+                    <provider-sasl-server-factory name="global"/>
+                </sasl>
+                <tls>
+                    <key-stores>
+                        <key-store name="applicationKS">
+                            <credential-reference clear-text="password"/>
+                            <implementation type="JKS"/>
+                            <file path="application.keystore" relative-to="jboss.domain.config.dir"/>
+                        </key-store>
+                    </key-stores>
+                    <key-managers>
+                        <key-manager name="applicationKM" key-store="applicationKS" generate-self-signed-certificate-host="localhost">
+                            <credential-reference clear-text="password"/>
+                        </key-manager>
+                    </key-managers>
+                    <server-ssl-contexts>
+                        <server-ssl-context name="applicationSSC" key-manager="applicationKM"/>
+                    </server-ssl-contexts>
+                </tls>
+            </subsystem>
+            <subsystem xmlns="urn:jboss:domain:infinispan:13.0">
+                <cache-container name="ejb" default-cache="dist" marshaller="PROTOSTREAM" aliases="sfsb" modules="org.wildfly.clustering.ejb.infinispan">
+                    <transport lock-timeout="60000"/>
+                    <distributed-cache name="dist">
+                        <locking isolation="REPEATABLE_READ"/>
+                        <transaction mode="BATCH"/>
+                        <expiration interval="0"/>
+                        <file-store/>
+                    </distributed-cache>
+                </cache-container>
+                <cache-container name="server" default-cache="default" marshaller="PROTOSTREAM" aliases="singleton cluster" modules="org.wildfly.clustering.server">
+                    <transport lock-timeout="60000"/>
+                    <replicated-cache name="default">
+                        <transaction mode="BATCH"/>
+                        <expiration interval="0"/>
+                    </replicated-cache>
+                </cache-container>
+                <cache-container name="web" default-cache="dist" marshaller="PROTOSTREAM" modules="org.wildfly.clustering.web.infinispan">
+                    <transport lock-timeout="60000"/>
+                    <replicated-cache name="sso">
+                        <locking isolation="REPEATABLE_READ"/>
+                        <transaction mode="BATCH"/>
+                        <expiration interval="0"/>
+                    </replicated-cache>
+                    <replicated-cache name="routing">
+                        <expiration interval="0"/>
+                    </replicated-cache>
+                    <distributed-cache name="dist">
+                        <locking isolation="REPEATABLE_READ"/>
+                        <transaction mode="BATCH"/>
+                        <expiration interval="0"/>
+                        <file-store/>
+                    </distributed-cache>
+                </cache-container>
+                <cache-container name="hibernate" marshaller="JBOSS" modules="org.infinispan.hibernate-cache">
+                    <transport lock-timeout="60000"/>
+                    <local-cache name="local-query">
+                        <heap-memory size="10000"/>
+                        <expiration max-idle="100000"/>
+                    </local-cache>
+                    <local-cache name="pending-puts">
+                        <expiration max-idle="60000"/>
+                    </local-cache>
+                    <invalidation-cache name="entity">
+                        <heap-memory size="10000"/>
+                        <expiration max-idle="100000"/>
+                    </invalidation-cache>
+                    <replicated-cache name="timestamps">
+                        <expiration interval="0"/>
+                    </replicated-cache>
+                </cache-container>
+            </subsystem>
+            <subsystem xmlns="urn:jboss:domain:io:3.0">
+                <worker name="default"/>
+                <buffer-pool name="default"/>
+            </subsystem>
+            <subsystem xmlns="urn:jboss:domain:jaxrs:2.0"/>
+            <subsystem xmlns="urn:jboss:domain:jca:5.0">
+                <archive-validation enabled="true" fail-on-error="true" fail-on-warn="false"/>
+                <bean-validation enabled="true"/>
+                <default-workmanager>
+                    <short-running-threads>
+                        <core-threads count="50"/>
+                        <queue-length count="50"/>
+                        <max-threads count="50"/>
+                        <keepalive-time time="10" unit="seconds"/>
+                    </short-running-threads>
+                    <long-running-threads>
+                        <core-threads count="50"/>
+                        <queue-length count="50"/>
+                        <max-threads count="50"/>
+                        <keepalive-time time="10" unit="seconds"/>
+                    </long-running-threads>
+                </default-workmanager>
+                <cached-connection-manager/>
+            </subsystem>
+            <subsystem xmlns="urn:jboss:domain:jdr:1.0"/>
+            <subsystem xmlns="urn:jboss:domain:jgroups:8.0">
+                <channels default="ee">
+                    <channel name="ee" stack="udp" cluster="ejb"/>
+                </channels>
+                <stacks>
+                    <stack name="udp">
+                        <transport type="UDP" socket-binding="jgroups-udp"/>
+                        <protocol type="PING"/>
+                        <protocol type="MERGE3"/>
+                        <socket-protocol type="FD_SOCK" socket-binding="jgroups-udp-fd"/>
+                        <protocol type="FD_ALL"/>
+                        <protocol type="VERIFY_SUSPECT"/>
+                        <protocol type="pbcast.NAKACK2"/>
+                        <protocol type="UNICAST3"/>
+                        <protocol type="pbcast.STABLE"/>
+                        <protocol type="pbcast.GMS"/>
+                        <protocol type="UFC"/>
+                        <protocol type="MFC"/>
+                        <protocol type="FRAG3"/>
+                    </stack>
+                    <stack name="tcp">
+                        <transport type="TCP" socket-binding="jgroups-tcp"/>
+                        <socket-protocol type="MPING" socket-binding="jgroups-mping"/>
+                        <protocol type="MERGE3"/>
+                        <socket-protocol type="FD_SOCK" socket-binding="jgroups-tcp-fd"/>
+                        <protocol type="FD_ALL"/>
+                        <protocol type="VERIFY_SUSPECT"/>
+                        <protocol type="pbcast.NAKACK2"/>
+                        <protocol type="UNICAST3"/>
+                        <protocol type="pbcast.STABLE"/>
+                        <protocol type="pbcast.GMS"/>
+                        <protocol type="MFC"/>
+                        <protocol type="FRAG3"/>
+                    </stack>
+                </stacks>
+            </subsystem>
+            <subsystem xmlns="urn:jboss:domain:jmx:1.3">
+                <expose-resolved-model/>
+                <expose-expression-model/>
+            </subsystem>
+            <subsystem xmlns="urn:jboss:domain:jpa:1.1">
+                <jpa default-extended-persistence-inheritance="DEEP"/>
+            </subsystem>
+            <subsystem xmlns="urn:jboss:domain:mail:4.0">
+                <mail-session name="default" jndi-name="java:jboss/mail/Default">
+                    <smtp-server outbound-socket-binding-ref="mail-smtp"/>
+                </mail-session>
+            </subsystem>
+            <subsystem xmlns="urn:jboss:domain:messaging-activemq:14.0">
+                <server name="default">
+                    <security elytron-domain="ApplicationDomain"/>
+                    <cluster password="${jboss.messaging.cluster.password:CHANGE ME!!}"/>
+                    <statistics enabled="${wildfly.messaging-activemq.statistics-enabled:${wildfly.statistics-enabled:false}}"/>
+                    <security-setting name="#">
+                        <role name="guest" send="true" consume="true" create-non-durable-queue="true" delete-non-durable-queue="true"/>
+                    </security-setting>
+                    <address-setting name="#" dead-letter-address="jms.queue.DLQ" expiry-address="jms.queue.ExpiryQueue" max-size-bytes="10485760" page-size-bytes="2097152" message-counter-history-day-limit="10" redistribution-delay="1000"/>
+                    <http-connector name="http-connector" socket-binding="http" endpoint="http-acceptor"/>
+                    <http-connector name="http-connector-throughput" socket-binding="http" endpoint="http-acceptor-throughput">
+                        <param name="batch-delay" value="50"/>
+                    </http-connector>
+                    <in-vm-connector name="in-vm" server-id="0">
+                        <param name="buffer-pooling" value="false"/>
+                    </in-vm-connector>
+                    <http-acceptor name="http-acceptor" http-listener="default"/>
+                    <http-acceptor name="http-acceptor-throughput" http-listener="default">
+                        <param name="batch-delay" value="50"/>
+                        <param name="direct-deliver" value="false"/>
+                    </http-acceptor>
+                    <in-vm-acceptor name="in-vm" server-id="0">
+                        <param name="buffer-pooling" value="false"/>
+                    </in-vm-acceptor>
+                    <jgroups-broadcast-group name="bg-group1" jgroups-cluster="activemq-cluster" connectors="http-connector"/>
+                    <jgroups-discovery-group name="dg-group1" jgroups-cluster="activemq-cluster"/>
+                    <cluster-connection name="my-cluster" address="jms" connector-name="http-connector" discovery-group="dg-group1"/>
+                    <jms-queue name="ExpiryQueue" entries="java:/jms/queue/ExpiryQueue"/>
+                    <jms-queue name="DLQ" entries="java:/jms/queue/DLQ"/>
+                    <connection-factory name="InVmConnectionFactory" entries="java:/ConnectionFactory" connectors="in-vm"/>
+                    <connection-factory name="RemoteConnectionFactory" entries="java:jboss/exported/jms/RemoteConnectionFactory" connectors="http-connector" ha="true" block-on-acknowledge="true" reconnect-attempts="-1"/>
+                    <pooled-connection-factory name="activemq-ra" entries="java:/JmsXA java:jboss/DefaultJMSConnectionFactory" connectors="in-vm" transaction="xa"/>
+                </server>
+            </subsystem>
+            <subsystem xmlns="urn:jboss:domain:modcluster:5.0">
+                <proxy name="default" advertise-socket="modcluster" listener="ajp">
+                    <dynamic-load-provider>
+                        <load-metric type="cpu"/>
+                    </dynamic-load-provider>
+                </proxy>
+            </subsystem>
+            <subsystem xmlns="urn:jboss:domain:naming:2.0">
+                <remote-naming/>
+            </subsystem>
+            <subsystem xmlns="urn:jboss:domain:remoting:4.0">
+                <http-connector name="http-remoting-connector" connector-ref="default" sasl-authentication-factory="application-sasl-authentication"/>
+            </subsystem>
+            <subsystem xmlns="urn:jboss:domain:resource-adapters:6.0"/>
+            <subsystem xmlns="urn:jboss:domain:sar:1.0"/>
+            <subsystem xmlns="urn:jboss:domain:security-manager:1.0">
+                <deployment-permissions>
+                    <maximum-set>
+                        <permission class="java.security.AllPermission"/>
+                    </maximum-set>
+                </deployment-permissions>
+            </subsystem>
+            <subsystem xmlns="urn:jboss:domain:transactions:6.0">
+                <core-environment node-identifier="${jboss.tx.node.id:1}">
+                    <process-id>
+                        <uuid/>
+                    </process-id>
+                </core-environment>
+                <recovery-environment socket-binding="txn-recovery-environment" status-socket-binding="txn-status-manager"/>
+                <coordinator-environment statistics-enabled="${wildfly.transactions.statistics-enabled:${wildfly.statistics-enabled:false}}"/>
+                <object-store path="tx-object-store" relative-to="jboss.server.data.dir"/>
+            </subsystem>
+            <subsystem xmlns="urn:jboss:domain:undertow:13.0" default-server="default-server" default-virtual-host="default-host" default-servlet-container="default" default-security-domain="other" statistics-enabled="${wildfly.undertow.statistics-enabled:${wildfly.statistics-enabled:false}}">
+                <buffer-cache name="default"/>
+                <server name="default-server">
+                    <ajp-listener name="ajp" socket-binding="ajp"/>
+                    <http-listener name="default" socket-binding="http" redirect-socket="https" enable-http2="true"/>
+                    <https-listener name="https" socket-binding="https" ssl-context="applicationSSC" enable-http2="true"/>
+                    <host name="default-host" alias="localhost">
+                        <location name="/" handler="welcome-content"/>
+                        <http-invoker http-authentication-factory="application-http-authentication"/>
+                    </host>
+                </server>
+                <servlet-container name="default">
+                    <jsp-config/>
+                    <websockets/>
+                </servlet-container>
+                <handlers>
+                    <file name="welcome-content" path="${jboss.home.dir}/welcome-content"/>
+                </handlers>
+                <application-security-domains>
+                    <application-security-domain name="other" http-authentication-factory="application-http-authentication"/>
+                </application-security-domains>
+            </subsystem>
+            <subsystem xmlns="urn:jboss:domain:webservices:2.0" statistics-enabled="${wildfly.webservices.statistics-enabled:${wildfly.statistics-enabled:false}}">
+                <wsdl-host>${jboss.bind.address:127.0.0.1}</wsdl-host>
+                <endpoint-config name="Standard-Endpoint-Config"/>
+                <endpoint-config name="Recording-Endpoint-Config">
+                    <pre-handler-chain name="recording-handlers" protocol-bindings="##SOAP11_HTTP ##SOAP11_HTTP_MTOM ##SOAP12_HTTP ##SOAP12_HTTP_MTOM">
+                        <handler name="RecordingHandler" class="org.jboss.ws.common.invocation.RecordingServerHandler"/>
+                    </pre-handler-chain>
+                </endpoint-config>
+                <client-config name="Standard-Client-Config"/>
+            </subsystem>
+            <subsystem xmlns="urn:jboss:domain:weld:4.0"/>
+        </profile>
+        <profile name="minimal">
+            <subsystem xmlns="urn:jboss:domain:logging:3.0">
+                <periodic-rotating-file-handler name="FILE" autoflush="true">
+                    <formatter>
+                        <named-formatter name="PATTERN"/>
+                    </formatter>
+                    <file relative-to="jboss.server.log.dir" path="server.log"/>
+                    <suffix value=".yyyy-MM-dd"/>
+                    <append value="true"/>
+                </periodic-rotating-file-handler>
+                <logger category="com.arjuna">
+                    <level name="WARN"/>
+                </logger>
+                <logger category="sun.rmi">
+                    <level name="WARN"/>
+                </logger>
+                <root-logger>
+                    <level name="INFO"/>
+                    <handlers>
+                        <handler name="FILE"/>
+                    </handlers>
+                </root-logger>
+                <formatter name="PATTERN">
+                    <pattern-formatter pattern="%d{yyyy-MM-dd HH:mm:ss,SSS} %-5p [%c] (%t) %s%e%n"/>
+                </formatter>
+            </subsystem>
+        </profile>
+    </profiles>
+
+    <!--
+         Named interfaces that can be referenced elsewhere. Different
+         mechanisms for associating an IP address with the interface
+         are shown.
+    -->
+    <interfaces>
+        <interface name="management"/>
+        <interface name="public"/>
+    </interfaces>
+
+    <socket-binding-groups>
+        <socket-binding-group name="web-sockets" default-interface="public">
+            <socket-binding name="http" port="8080"/>
+            <socket-binding name="https" port="8443"/>
+        </socket-binding-group>
+        <socket-binding-group name="standard-sockets" default-interface="public">
+            <socket-binding name="ajp" port="8009"/>
+            <socket-binding name="http" port="8080"/>
+            <socket-binding name="https" port="8443"/>
+            <!-- include socket-binding-group="web-sockets"/-->
+            <socket-binding name="jmx-connector-registry" interface="management" port="1090"/>
+            <socket-binding name="jmx-connector-server" interface="management" port="1091"/>
+            <socket-binding name="jgroups-diagnostics" port="0" multicast-address="224.0.75.75" multicast-port="7500"/>
+            <socket-binding name="jgroups-mping" port="0" multicast-address="${jboss.default.multicast.address:230.0.0.4}" multicast-port="45700"/>
+            <socket-binding name="jgroups-tcp" port="7600"/>
+            <socket-binding name="jgroups-tcp-fd" port="57600"/>
+            <socket-binding name="jgroups-udp" port="55200" multicast-address="${jboss.default.multicast.address:230.0.0.4}" multicast-port="45688"/>
+            <socket-binding name="jgroups-udp-fd" port="54200"/>
+            <socket-binding name="modcluster" port="0" multicast-address="224.0.1.105" multicast-port="23364"/>
+            <socket-binding name="remoting" port="4447"/>
+            <socket-binding name="txn-recovery-environment" port="4712"/>
+            <socket-binding name="txn-status-manager" port="4713"/>
+            <outbound-socket-binding name="mail-smtp">
+                <remote-destination host="localhost" port="25"/>
+            </outbound-socket-binding>
+        </socket-binding-group>
+        <socket-binding-group name="other-sockets" default-interface="public">
+            <socket-binding name="ajp" port="8009"/>
+            <socket-binding name="http" port="8080"/>
+            <socket-binding name="https" port="8443"/>
+            <socket-binding name="jmx-connector-registry" interface="management" port="1090"/>
+            <socket-binding name="jmx-connector-server" interface="management" port="1091"/>
+            <socket-binding name="jgroups-diagnostics" port="0" multicast-address="224.0.75.75" multicast-port="7500"/>
+            <socket-binding name="jgroups-mping" port="0" multicast-address="${jboss.default.multicast.address:230.0.0.4}" multicast-port="45700"/>
+            <socket-binding name="jgroups-tcp" port="7600"/>
+            <socket-binding name="jgroups-tcp-fd" port="57600"/>
+            <socket-binding name="jgroups-udp" port="55200" multicast-address="${jboss.default.multicast.address:230.0.0.4}" multicast-port="45688"/>
+            <socket-binding name="jgroups-udp-fd" port="54200"/>
+            <socket-binding name="modcluster" port="0" multicast-address="224.0.1.105" multicast-port="23364"/>
+            <socket-binding name="remoting" port="4447"/>
+            <socket-binding name="txn-recovery-environment" port="4712"/>
+            <socket-binding name="txn-status-manager" port="4713"/>
+            <outbound-socket-binding name="mail-smtp">
+                <remote-destination host="localhost" port="25"/>
+            </outbound-socket-binding>
+            <!-- include socket-binding-group="standard-sockets"/-->
+        </socket-binding-group>
+        <socket-binding-group name="ignored" default-interface="public">
+            <socket-binding name="http" port="8080"/>
+        </socket-binding-group>
+        <socket-binding-group name="reload-sockets" default-interface="public"/>
+    </socket-binding-groups>
+
+    <server-groups>
+        <server-group name="main-server-group" profile="full-ha">
+            <jvm name="default">
+                <heap size="64m" max-size="100m"/>
+                <environment-variables>
+                    <variable name="DOMAIN_TEST_MAIN_GROUP" value="main_group"/>
+                </environment-variables>
+            </jvm>
+            <socket-binding-group ref="standard-sockets"/>
+        </server-group>
+
+        <server-group name="other-server-group" profile="full-ha">
+            <jvm name="default">
+                <heap size="64m" max-size="100m"/>
+            </jvm>
+            <socket-binding-group ref="other-sockets"/>
+        </server-group>
+
+        <server-group name="reload-test-group" profile="minimal">
+            <socket-binding-group ref="reload-sockets"/>
+            <jvm name="default">
+                <heap size="64m" max-size="100m"/>
+            </jvm>
+        </server-group>
+
+    </server-groups>
+
+
+</domain>
diff --git a/testsuite/domain/src/test/resources/domain-session-digest/app-groups.properties b/testsuite/domain/src/test/resources/domain-session-digest/app-groups.properties
new file mode 100644
index 000000000000..8a71ffb2b750
--- /dev/null
+++ b/testsuite/domain/src/test/resources/domain-session-digest/app-groups.properties
@@ -0,0 +1 @@
+myUser=Admin
diff --git a/testsuite/domain/src/test/resources/domain-session-digest/app-users.properties b/testsuite/domain/src/test/resources/domain-session-digest/app-users.properties
new file mode 100644
index 000000000000..546bb28aa089
--- /dev/null
+++ b/testsuite/domain/src/test/resources/domain-session-digest/app-users.properties
@@ -0,0 +1 @@
+myUser=myPassword
diff --git a/testsuite/domain/src/test/resources/domain-session-digest/web.xml b/testsuite/domain/src/test/resources/domain-session-digest/web.xml
new file mode 100644
index 000000000000..d79275eb1157
--- /dev/null
+++ b/testsuite/domain/src/test/resources/domain-session-digest/web.xml
@@ -0,0 +1,48 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<!--
+  ~ JBoss, Home of Professional Open Source.
+  ~ Copyright 2011, Red Hat, Inc., and individual contributors
+  ~ as indicated by the @author tags. See the copyright.txt file in the
+  ~ distribution for a full listing of individual contributors.
+  ~
+  ~ This is free software; you can redistribute it and/or modify it
+  ~ under the terms of the GNU Lesser General Public License as
+  ~ published by the Free Software Foundation; either version 2.1 of
+  ~ the License, or (at your option) any later version.
+  ~
+  ~ This software is distributed in the hope that it will be useful,
+  ~ but WITHOUT ANY WARRANTY; without even the implied warranty of
+  ~ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+  ~ Lesser General Public License for more details.
+  ~
+  ~ You should have received a copy of the GNU Lesser General Public
+  ~ License along with this software; if not, write to the Free
+  ~ Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
+  ~ 02110-1301 USA, or see the FSF site: http://www.fsf.org.
+  -->
+<web-app xmlns="https://jakarta.ee/xml/ns/jakartaee"
+         xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="https://jakarta.ee/xml/ns/jakartaee https://jakarta.ee/xml/ns/jakartaee/web-app_6_0.xsd"
+         version="6.0">
+
+    <security-constraint>
+        <web-resource-collection>
+            <url-pattern>/*</url-pattern>
+        </web-resource-collection>
+        <auth-constraint>
+            <role-name>User</role-name>
+            <role-name>Admin</role-name>
+        </auth-constraint>
+    </security-constraint>
+
+    <security-role>
+        <role-name>abc</role-name>
+    </security-role>
+
+    <login-config>
+        <auth-method>DIGEST</auth-method>
+        <realm-name>ApplicationRealm</realm-name>
+    </login-config>
+    <distributable/>
+</web-app>
diff --git a/testsuite/domain/src/test/resources/host-configs/host-primary.xml b/testsuite/domain/src/test/resources/host-configs/host-primary.xml
index f0b19b9d4e88..c82a09271f42 100644
--- a/testsuite/domain/src/test/resources/host-configs/host-primary.xml
+++ b/testsuite/domain/src/test/resources/host-configs/host-primary.xml
@@ -84,8 +84,8 @@
           <environment-variables>
               <variable name="DOMAIN_TEST_JVM" value="jvm"/>
           </environment-variables>
-            <!--
-            <jvm-options>
+           <!--
+           <jvm-options>
                 <option value="-Xdebug"/>
                 <option value="-Xnoagent"/>
                 <option value="-Djava.compiler=NONE"/>
@@ -93,6 +93,7 @@
 
             </jvm-options>
             -->
+
        </jvm>
  	</jvms>