A set of processes that allows:
A user to authenticate to all the appropriate applications by entering a user name and password only once.
An administrator to manage in one central location the user name and password combinations for all users in an enterprise.