Does the "run-as" role is effective when that request calling the servlet is not authenticated (no security constraint define for the URL) ?

Basically I would like the servlet being call by an unauthenticated user request, to execute under a certain role or a certain identity (run-as-principal).