摘要 |
An authentication system in an embodiment is provided with a service-provider device, an IDaaS-operator device, and a delegated-authentication device. On the basis of a user ID and an SSO request transmitted by a user terminal, the delegated-authentication device, which has authentication account information associated via a second linking ID with SSO account information containing an SSO account identifier that matches the aforementioned user ID, performs a user authentication process. If said authentication process succeeds, the IDaaS-operator device, which has SSO account information containing an SSO account identifier that matches the user ID, authorizes SSO authentication of a service corresponding to a service-account identifier included in service-account information associated via a first linking ID with the abovementioned SSO account information. The service-provider device transmits information related to said service to the user terminal. |