Hello,
we have few questions related to Credential-less access method for SSO enabled web applications.
1. How can we effectively map azure ad accounts into the credential-less access method for an application that is already SSO-enabled via AzureAD? specifically, if we are utilizing a REST connection for this application (Generic vault) , what configuration options are available to facilitate this Azure AD account for credential-less method mapping process within the PAM config(bootstrap).
2. Do we need to use the Azure AD connector for Azure SSO enabled web applications? for credential-less access?
3. Considering that we have already mapped the azure portal application for credential-less session using our Azure AD endpoint, are there provisions are best practices for utilizing another Azure AD endpoint for additional web applications (Azure SSO enabled) requiring similar credential-less access methods?