Authentication and authorization?

1. What is the difference between authentication and authorization?

Authentication verifies who you are.
Authentication establishes identity.

Authorization is what you are authorized/allowed to do or access.
Authorization decides what privileges a given person or program has.

2. Why is authorization insignificant if we don’t also have authentication?

Without authentication we don’t know who the user is, so we can’t possibly know what privileges that user should have.