ZAP can handle pretty much any authentication out there. The best place to start is the Authentication Decision Tree.