An apparatus includes HTTP and HTTPS servers and an application, provides a content of the application, according to receiving external access, to the HTTP or HTTPS servers, and includes authentication and management units. The authentication unit provides an authentication screen according to the HTTP or HTTPS servers receiving the access from a web browser in a non-login state, and conducts authentication based on information. The management unit manages session information generated by the HTTP or HTTPS servers when the authentication is successful. When managing the HTTPS server generated session information, the management unit manages identification information indicating that the web browser has been subjected to the authentication accompanying the access to the HTTPS server separately from the session information, the web browser is redirected to the HTTPS server when it is confirmed that the identification information is managed. The HTTP server, instead of the HTTP server, provides the application content.