Hybrid Data Pipeline supports internal and external authentication. When the default internal authentication system is used, end user credentials are checked against a hash of the password stored in the Hybrid Data Pipeline account database. When external authentication is used, end user credentials are checked against an external authentication service. External authentication services may be supported either through a Java plugin, an LDAP server, a SAML server, or an OIDC server. The following topics provide details and procedures for implementing authentication services.