When Single Sign-On technology is enabled, users are not required to enter their application account credentials to connect to the web interface. Authentication is performed using the domain user account.
It is recommended to use Kerberos authentication because it is more secure. If you use NTLM authentication, hackers can gain access to user password hashes by intercepting network traffic.