It will be for internal auth only. Having the external auth users enter another code after they have signed would defeat the purpose of SSO.
It will be for internal auth only. Having the external auth users enter another code after they have signed would defeat the purpose of SSO.