This topic has not yet been written. The content below is from the topic description.
12.1.4. Unauthenticated Identity Not all requests are received in an authenticated format. unauthenticated identity is a login module configuration option that assigns a specific identity (guest, for example) to requests that are made with no associated authentication information. This can be used to allow unprotected servlets to invoke methods on EJBs that do not require a specific role. Such a principal has no associated roles and so can only access either unsecured EJBs or EJB methods that are associated with the unchecked permission constraint. unauthenticatedIdentity: This defines the principal name that should be assigned to requests that contain no authentication information.