| authentication policy (BC-SEC) |
In SAML 2.0 the authentication policy is set by the service provider and determines if a user must reauthenticate at the identity provider or if the identity provider must authenticate the user without interacting with the user.