What is one characteristic of a non-authoritative source?

A non-authoritative source is characterized primarily by the type of data it holds. It does not maintain primary identity data; rather, it stores account and entitlement data without being the definitive source for identity attributes. This means that information from non-authoritative sources is typically derived from or dependent on a primary identity source, but it does not independently determine or verify identity characteristics.

Consequently, while non-authoritative sources may include data related to user accounts (such as permissions or roles assigned), they are not the systems where the core identity information is governed. This distinction is critical in identity management because it helps in understanding where to look for accurate identity verification versus supplementary data. Non-authoritative sources can be useful for referencing, but they should not be relied upon for authoritative identity decisions.