In our current environment, everything must be on-premise.
We are using MuleSoft as our integration platform and hosting/serving APIs, and one thing we need to do is to protect those APIs by applying OAuth/OIDC policies.
We have been using AD FS for all the IAM inside the network, and is in the process of installing/configuring Sailpoint which will be integrated with the AD FS eventually.
The original plan was to use the AD FS (with custom code to gap the missing capability for Dynamic Client Registration RFC7591) as the OAuth provider, but we are wondering if we can configure SailPoint on top of the AD FS to use its interface to provide the Dynamic Client Registration and OAuth/OIDC capability for MuleSoft APIs protection and client management.
Appreciate any information you can provide in advance!