Description should include
- identity
- identity provider (IdP)
- attributes
- certificates
- tokens
- SSH keys
- smart cards
- account types
- user account
- shared and generic accounts and credentials
- guest accounts
- service accounts
- account policies
- password complexity
- password history
- password reuse
- time of day
- network location
- geofencing
- geotagging
- geolocation
- time-based logins
- access policies
- account permissions
- account audits
- impossible travel time and/or risky login
- disablement.