pageOutput in the web.config file specifies whether the trace log is appended to the Web page for display on the client's browser. If set to false, the output can be viewed in the trace.axd file in the application's root.
Windows, Forms, and Microsoft Passport authentication are offered by .NET.
Authentication is specified using the <authentication> element of the web.config file.
Authentication verifies that a user is who he says he is; authorization determines what actions the user may perform or what resources he may access.
The Page.User property provides information about a user.
Out-of-Process Session management supports storing state information on a server on process on another server.
A data cache is read-only versus read/write for application state data. However, a data cache is much more flexible: An expiration can be assigned to it, and it can be tied to other objects, causing the cache data to be removed if the objects' value changes.
ASP.NET periodically invokes a resource scavenging process that removes less important data from a data cache. Importance is determined by priority. Thus, setting a high priority reduces the chance of the data cache being removed.
As a request or response passes through the HTTP pipeline, an Application object fires a series of events that may be handled by an HTTPmodule or in the global.asax file.