You implement forms authentication entirely within ASP.NET, so you have complete control over how authentication is performed. You don't need to rely on any external systems, as you do with Windows or ...