By default, ASP.NET executes in the security context of a restricted user account on the local machine.
However, at times it becomes necessary to access network resources which require additional permissions.
This can be done away with using impersonation. ASP.NET can then execute the request using the identity of the client making the request.
ASP.NET can also impersonate a specific account you specify in web.config.