Authentication refers to the way users sign on. If possible administrators should implement Single Sign-On (SSO) with SAML. SSO with SAML reduces the number of passwords users have to remember. It can also be used to enable multi-factor login, which is when users are asked to provide some verification in addition to their passwords, like a code that they receive via text or email.