Current integration with Active Directory uses a combination of username and password. Newer systems rely on PIV smartcard (badge) and a user pin for authentication. Windows nowadays allows direct logins via smartcard. This can be elevated to the application using the same APIs already in place for the username/password methodology.

Reference: