In the SSO method (Single Sign-On) users need to authenticate only once to access several services.

When a session is opened, the domain controller identifies a user on the Active Directory domain. SN SSO Agent will then collect the user’s information by logging in remotely to the event viewer on the domain controller. SN SSO Agent then relays this information to the firewall through an SSL connection, which updates its table of authenticated users.

SSO agent principle