Currently you can't use elytron application security domain remapped to the different name than original security domain for webservice deployment. There should be some mechanism in webservice integration that makes this possile, ie. that makes webservices-elytron really transparent.

In current webservice elytron integration, the security domain specified to secure webservice endpoint must be the same name with elytron security domain name .
Reference https://developer.jboss.org/message/977744#977744

This configuration in undertow currently works

<application-security-domains>
    <application-security-domain name="original-name" security-domain="original-name"/>
</application-security-domains>

while this not, this jira is proposal for it to work too so that application can "see" the remapped "new-name" security domain.

<application-security-domains>
    <application-security-domain name="new-name" security-domain="original-name"/>
</application-security-domains>