If a section requires authentication and you don't have a password for it yet, Faq-O-Matic asks you for your email address (identification), and it mails you a URL. When you access that URL, you've proven that you can read mail at that address, and your password is enabled.

Your administrator may have replaced the authentication system with a local one.

When you authenticate yourself, you are given a cookie*, which provides authentication for you for an hour, so that you don't have to repeatedly enter your password. It expires after an hour so that others can't pretend to be you by stealing your cookie. So, if you've logged in and have been happily editing things and you're asked for authentication again, it may be that your cookie has expired and your password is needed to get a new one.
______________
*For the curious, a cookie is simply a random string like "auth=ck46cc00" stored in the URL. It's not an HTTP cookie.

This is harmless, though a little confusing. Just go ahead and log in using your password. If you've forgotten your password, use the "Set a new password" link.

(This is the behaviour in 2.711. Perhaps it will be improved in future versions.)