The way I understand it, this is working as designed.
You only get forwarded to j_security_check if you do not have an authenticated session. If one authenticates in one tab, every tab shares that authenticated session. j_security_check is not accessible on the second tab because you are already logged in.
Try entering a URL for a protected resource and
you should be able to view it in the second tab.