Hi all,

After spending some times for testing, I got the following result:

1. In IIS, I set it to allow Anonymous access and enter a domain a/c DAC1.
2. In Web.config, I set <authentication mode="None" />, some web site claims that it will result in faster performance.
3. Since the COM+ component can only be accessed by DAC1, if I don't put <identity impersonate="true" /> to web.config, I can't make the call success.
4. <authorization><allow users="?" />.....

I still have some questions:

1. Is asp.net process identity (ASPNET/NETWORK SERVICE) = anonymous a/c (i.e. DAC1) when I enable anonymous access? If so, why I still need the impersonate="true"? IIS won't pass this ID to asp.net by default??
I've tried to display the value of WindowsIdentity.GetCurrent in aspx. If impersonate="true", this user will be DAC1, otherwise, this user will be "ASPNET"!!

2. In authorization section, <allow users="?" /> means allow anonymous user, is it different from <allow users="*" /> which means allow everyone?

Thx!!