Both
J2EE (Java) and .NET would follow the role as Web services providers (typically Application infrastructure).
The emergence of WS-I Basic Profile, makes both worlds to agree upon an interoperability standard. This makes a J2EE Application invoking a .NET component using
SOAP and vice versa. In both cases, the message exchanged including security credentials will interoperate as well.
Does it answer your question ?