When configuring external authentication, Authentication Context refers to
the level of authentication requested. For example, PasswordProtectedTransport
specifies that the authentication method must be through a secure,
password-protected transport, enhancing security during the authentication
process.
Under Developer Settings > External Authentication / SSO > Authentication Context, the following options are available:
AuthenticatedTelephony: Telephony services requiring user verification for access.InternetProtocol: Rules for formatting data sent over the internet or networks.InternetProtocolPassword: A password related to an internet protocol for authentication.Kerberos: A protocol using secret-key cryptography for client and server authentication.MobileOneFactorContract: A mobile authentication agreement using one security factor, like a password.MobileOneFactorUnregistered: Mobile authentication without prior registration, using a single factor.MobileTwoFactorContract: An agreement for mobile authentication that requires two security factors.MobileTwoFactorUnregistered: Mobile authentication with two factors, without registration.NomadTelephony: Telephony services for users frequently changing locations or devices.Password: Characters used to verify a user's identity.PasswordProtectedTransport: Protecting data during transmission with a password.PersonalTelephony: Telephony services for individual rather than business use.PGP: Encryption program for secure data transmission.PreviousSession: A session that took place before the current one.SmartCard: A card with an embedded microchip for data storage and processing.SmartCardPKI: Using smart cards in public key infrastructure for digital certificate management.SoftwarePKI: Managing digital certificates with software.SPKI: A framework for managing public keys and digital certificates.SecureRemotePassword: A protocol for secure password authentication over a network.Telephony: Technology for transmitting voice, video, or data over a distance.TimeSyncToken: A device or mechanism for synchronizing time across different devices or systems.TLSClient: Client side of the TLS protocol for secure communication.Unspecified: Not detailed or mentioned explicitly.X509: A standard for public key certificates in secure communication.XMLDSig: A spec for digitally signing XML documents for integrity and authentication.