Authenticate against your existing Active Directory or other LDAP directory, to avoid needing to manually create and update accounts on the website for people in the directory. Grant permissions within the website based on membership of Active Directory or LDAP groups.