The following authentication methods are available in IT systems:

IT systems with the local authentication (LA) method manage the credentials locally on the system. On this type of IT system, a combination of user name & password must therefore be generated and maintained, users & users thus may receive multiple user names with multiple passwords on multiple IT systems of this type.

• IT systems with the local authentication method use individual credentials.
• Users may receive multiple combinations of usernames & passwords.
• Login required on each IT system

IT systems with the single password authentication method (SP) query a central user administration for the correctness of the credentials entered. With this type of IT system, users always use the same user name and password, only the user name has a slightly different form in rare cases (cf. Standard and Domain Login).

• IT systems with the single password authentication method use centrally stored credentials.
• Users receive exactly one combination of user name & password
• Login required on every IT system

IT systems with the Single Sign-On Authentication method (SSO) ask a central identity provider for the correctness of the credentials entered. With this type of IT system, users always use the same user name and password. By means of authorisation, these systems are also able to pass on their login information to other systems.

* IT systems with the single sign-on authentication method use an identity provider to verify credentials.

• Users receive exactly one combination of user name & password
• Login only once within the system families

Kerberos and OAuth / OpenID Connect / SAML are required.