Your application uses the process or impersonation identity when it calls COM-based resources, such as serviced components . Client-side authentication and impersonation levels are configured using the comAuthenticationLevel and comImpersonation level attributes on the <processModel> element in Machine.config.
For more information and recommendations, see "Enterprise Services Considerations" in Chapter 17, "Securing Your Application Server."