Is it possible for Access Manager to leverage an external OIDC or OAuth token provider to grant access to protected resources?
Here is the scenario, I have a "legacy" Access Manager environment with lots of typical proxied and protected resources, pretty much all protected with classic/standard Username/Password form auth.
Now this site is developing new applications in Azure and using Azure AD as their Identity Provider going forward.
What they'd like to do is use the Azure IdP for all auth and then allow users to access the "legacy" NAM resources without requiring them to authenticate a second time against NAM (we can match up the users and I can use password fetch for identity injection and form fill).
Ideally, they want to do this with OIDC or OAuth. I know I can do this with SAML (or at least pretty sure I can), but I don't see any way to do this scenario with OIDC or OAuth. It seems NAM can only act as the token provider for OIDC or OAuth, not a consumer. Is that true? Or am I missing something here? Is there a way to do implementation this scenario with either OIDC or OAuth?
Matt