This seems to be a question that we get a lot, so I am just going to post this here for anyone who may want to know in the future.
The question is, what authentication types for the K2 Runtime site should be enabled? Does this differ depending on the architecture of the server (standalone versus distributed)?