Perform a weak authentication which is only sufficient to access uncritical assets (e.g., ACP1). The performed authentication reaches the Authentication Assurance Level 1. The system offers all the authentication methods available in the MyID service and usable on the client device.
Perform a strong authentication which is sufficient for more critical assets (e.g., ACP2). The performed authentication reaches the Authentication Assurance Level 2. The system enforces the two-factor authentication but also accepts Soft PKI.
Perform a two-factor authentication which is required for the most critical assets (e.g., ACP3). The performed authentication reaches the Authentication Assurance Level 3. Different options to reach this high authentication level are possible. The selection depends on your client device.
SAML identity provider is an authentication authority that receives a SAML authentication request from a relying party via a web browser, authenticates the user principal and responds to the relying party with a SAML authentication assertion for the principal.