It may be possible to write your authentication realm that would do this, but it will be easier to do a second lookup.
You could then use Stateful EJB beans to manage the information for the length of the session as a possibility.
[Message sent by forum member 'amattas' (amattas)]
http://forums.java.net/jive/thread.jspa?messageID=232759