You are creating an ASP.NET application. The application will be deployed on intranet. Application uses Microsoft Windows authentication. More than 100 users will use the ASP.NET application simultaneously. What setting should be done by the project manager regarding user authentication?
Add the following element to the authentication section of the Web.config file: <allow users="?"/>
Use the Configuration Manager for your project to designate the user's security context.
Write code in the Application_AuthenticateRequest event handler to configure the application to run in the user's security context.
Add the following element to the system.web section of the Web.config file: <identity impersonate="true"/>
Useful resources, deny allow Element for authorization