In IIS 7, how do I define the Application pool Identity to access project files for a list of groups in the configuration file?

Question

More specifically, what is the correct way to use the Application Pool Identity for file permissions authentication for a list of groups in the configuration file instead of